Class: Rubino::CLI::TrustGate

Inherits:

Object

Object
Rubino::CLI::TrustGate

show all

Defined in:: lib/rubino/cli/trust_gate.rb

Overview

The interactive folder-trust checkpoint. Asks ONCE per directory, before that directory’s AGENTS.md / project context + .rubino/skills are honored, and remembers the answer in Rubino::Trust so it’s never re-asked.

Modelled on VS Code Workspace Trust + Claude Code’s trust dialog. Declining is non-destructive (VS Code “Restricted Mode”): the session still runs, it just runs WITHOUT that directory’s project context/skills (the assembler consults Rubino::Trust.trusted? before injecting them).

Skipped entirely — no prompt, treated as allowed for the duration — when:

- the dir is already trusted,
- the dir has nothing to gate (no context file, no .rubino/skills),
- --ignore-rules was passed (project context is off regardless), or
- the run is non-interactive (-q / no TTY): we never block automation.

Instance Method Summary collapse

#ensure_trust(dir) ⇒ Object

Ensures dir has a trust decision.
#initialize(ui: nil, interactive: true, ignore_rules: false) ⇒ TrustGate constructor

A new instance of TrustGate.

Constructor Details

#initialize(ui: nil, interactive: true, ignore_rules: false) ⇒ `TrustGate`

Returns a new instance of TrustGate.

# File 'lib/rubino/cli/trust_gate.rb', line 20

def initialize(ui: nil, interactive: true, ignore_rules: false)
  @ui = ui || Rubino.ui
  @interactive = interactive
  @ignore_rules = ignore_rules
end

Instance Method Details

#ensure_trust(dir) ⇒ `Object`

Ensures dir has a trust decision. Returns true when the directory’s project context/skills may be loaded, false when it must run in restricted mode. Prompts at most once, then remembers a “yes”.

# File 'lib/rubino/cli/trust_gate.rb', line 29

def ensure_trust(dir)
  return true if Rubino::Trust.trusted?(dir)
  return true if @ignore_rules            # context already suppressed
  return true unless gateworthy?(dir)     # nothing to gate → no ceremony

  # Non-interactive: never block. We also do NOT remember it (the user
  # never vouched), so context stays withheld this run — Restricted Mode
  # by default for automation, matching VS Code's headless behaviour.
  return false unless @interactive

  prompt(dir)
end