npm.io
0.1.9 • Published 3d ago

@xynogen/pix-gate

Licence
MIT
Version
0.1.9
Deps
1
Size
28 kB
Vulns
0
Weekly
0
SummaryDependencyVersions

pix-gate

Pi extension — permission gate for dangerous bash commands.

What it does

Intercepts every bash tool call and classifies the command against a set of severity rules before it runs. Two rule sets: path rules (block / warn / info) protect the read / write / edit tools from touching private keys, credential files, etc. — block is deny-first (15s timeout), warn is allow-first (30s), info is a blue notify that never blocks. Command rules (critical / dangerous / risky) gate bash invocations: critical (force pushes to main, recursive deletes, dd to disks, etc.) is hard-blocked in non-interactive mode and hard-denied via a 15-second auto-deny dialog in TUI mode; dangerous commands (including any sudo invocation, which is hard-redirected to the sudo_run tool — no bypass) show a 30-second auto-deny confirmation dialog; risky commands show a 60-second allow-first dialog and silently pass in non-interactive mode. Auto-approve patterns and extra rules can be configured in ~/.pi/agent/pix-gate.json. Built-in rules can be replaced entirely by setting disableDefaults: true in the config file.

Install

pi install npm:@xynogen/pix-gate

Also included in @xynogen/pix-core:

pi install npm:@xynogen/pix-core

Reusable exports

The gate is split into a pure rule engine and the interactive prompt, so the classification logic can be reused without the TUI:

  • @xynogen/pix-gate/lib — pure rules: DEFAULT_RULES, buildRules, classify, loadUserConfig, isSudoCommand. No Pi/TUI dependency.
  • @xynogen/pix-gate/promptpromptGateDecision(), the confirm/deny dialog (depends on pi-tui). This is now a thin adapter over the shared @xynogen/pix-pretty/gate-overlay component, so the gate and sudo_run dialogs share one implementation.

pix-skills imports ./lib to gate skill !`cmd` directives with the same rules as the bash tool (auto-deny on match, no prompt).

Configuration

~/.pi/agent/pix-gate.json:

{
  "disableDefaults": false,
  "extraRules": [
    { "pattern": "rm -rf /my-dir", "severity": "critical", "reason": "Deletes project root" }
  ],
  "autoApprove": ["^echo "]
}

Full distro

Source: github.com/xynogen/pix-mono

To install the complete pix suite (all packages + Pi itself):

curl -fsSL https://raw.githubusercontent.com/xynogen/pix-mono/main/scripts/install.sh | sh

License

MIT

Keywords

pipi-packagepi-extensionsecuritypermissiongate