feat: add review_pending_changes tool and enforce absolute path security

- Add new review_pending_changes tool for comprehensive pre-commit reviews - Implement filesystem sandboxing with MCP_PROJECT_ROOT - Enforce absolute paths for all file/directory operations - Add comprehensive git utilities for repository management - Update all tools to use centralized path validation - Add extensive test coverage for new features and security model - Update documentation with new tool and path requirements - Remove obsolete demo and guide files 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-06-09 12:42:18 +04:00
parent 00b365f108
commit 7ee610938b
23 changed files with 1369 additions and 486 deletions
--- a/tools/chat.py
+++ b/tools/chat.py
@@ -20,8 +20,9 @@ class ChatRequest(ToolRequest):
        ...,
        description="Your question, topic, or current thinking to discuss with Gemini",
    )
-    context_files: Optional[List[str]] = Field(
-        default_factory=list, description="Optional files for context"
+    files: Optional[List[str]] = Field(
+        default_factory=list,
+        description="Optional files for context (must be absolute paths)",
    )


@@ -49,10 +50,10 @@ class ChatTool(BaseTool):
                    "type": "string",
                    "description": "Your question, topic, or current thinking to discuss with Gemini",
                },
-                "context_files": {
+                "files": {
                    "type": "array",
                    "items": {"type": "string"},
-                    "description": "Optional files for context",
+                    "description": "Optional files for context (must be absolute paths)",
                },
                "temperature": {
                    "type": "number",
@@ -83,8 +84,8 @@ class ChatTool(BaseTool):
        user_content = request.prompt

        # Add context files if provided
-        if request.context_files:
-            file_content, _ = read_files(request.context_files)
+        if request.files:
+            file_content, _ = read_files(request.files)
            user_content = f"{request.prompt}\n\n=== CONTEXT FILES ===\n{file_content}\n=== END CONTEXT ==="

        # Check token limits