fix(gateway): bind system.run approvals to exec approvals

2026-04-26 16:06:16 +00:00 · 2026-02-14 13:02:48 +01:00
parent 233483d2b9
commit 318379cdba
12 changed files with 437 additions and 3 deletions
--- a/src/gateway/server-methods/nodes.ts
+++ b/src/gateway/server-methods/nodes.ts
@@ -10,6 +10,7 @@ import {
  verifyNodeToken,
 } from "../../infra/node-pairing.js";
 import { isNodeCommandAllowed, resolveNodeCommandAllowlist } from "../node-command-policy.js";
+import { sanitizeSystemRunParamsForForwarding } from "../node-invoke-system-run-approval.js";
 import {
  ErrorCodes,
  errorShape,
@@ -361,7 +362,7 @@ export const nodeHandlers: GatewayRequestHandlers = {
      );
    });
  },
-  "node.invoke": async ({ params, respond, context }) => {
+  "node.invoke": async ({ params, respond, context, client }) => {
    if (!validateNodeInvokeParams(params)) {
      respondInvalidParams({
        respond,
@@ -417,10 +418,28 @@ export const nodeHandlers: GatewayRequestHandlers = {
        );
        return;
      }
+      const forwardedParams =
+        command === "system.run"
+          ? sanitizeSystemRunParamsForForwarding({
+              rawParams: p.params,
+              client,
+              execApprovalManager: context.execApprovalManager,
+            })
+          : ({ ok: true, params: p.params } as const);
+      if (!forwardedParams.ok) {
+        respond(
+          false,
+          undefined,
+          errorShape(ErrorCodes.INVALID_REQUEST, forwardedParams.message, {
+            details: forwardedParams.details ?? null,
+          }),
+        );
+        return;
+      }
      const res = await context.nodeRegistry.invoke({
        nodeId,
        command,
-        params: p.params,
+        params: forwardedParams.params,
        timeoutMs: p.timeoutMs,
        idempotencyKey: p.idempotencyKey,
      });