Skip to content

fix(cli): harden extension registration and discovery workflows #2499

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mnriem merged 31 commits into from
May 13, 2026
+846 −60
Merged

fix(cli): harden extension registration and discovery workflows #2499

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
31 commits
Select commit Hold shift + click to select a range
0b244a8
chore: update community catalog with latest extension versions
DyanGalih May 7, 2026
730918e
fix(cli): harden extension registration with project-level tracking i…
DyanGalih May 8, 2026
c953140
test(cli): add comprehensive unit tests for extension registration logic
DyanGalih May 8, 2026
4af789a
chore: remove out-of-scope catalog changes
DyanGalih May 8, 2026
0fd9a14
refactor: address PR feedback for extension registration hardening
DyanGalih May 8, 2026
019acae
fix: harden extension registration defensive logic and add comprehens…
DyanGalih May 8, 2026
51d19ce
fix: sanitize installed to strings, guard unregister_hooks dict, hand…
DyanGalih May 8, 2026
ba34237
fix(cli): persist sanitization results and harden hook registration
DyanGalih May 11, 2026
f7785b5
Harden extension registration to always persist sanitization results
DyanGalih May 11, 2026
6da7a6c
Hardening extension registration: support mapping entries, improve pe…
DyanGalih May 11, 2026
0c83a00
fix(cli): harden extension update and unregistration workflows
DyanGalih May 11, 2026
2279905
fix(cli): move update sentinels outside try block to prevent NameErro…
DyanGalih May 11, 2026
1c4d01f
fix(cli): sanitize hook event lists in register_hooks to prevent crashes
DyanGalih May 12, 2026
353f2b6
fix(cli): deduplicate hook entries and harden rollback hooks-restore …
DyanGalih May 12, 2026
f71a37a
test(cli): add regression tests for extension update and rollback har…
DyanGalih May 12, 2026
cdda39a
fix(cli): deduplicate installed list by id in register_extension
DyanGalih May 12, 2026
d8a091e
fix(cli): consolidate and harden extension update rollback logic
DyanGalih May 12, 2026
b1074a2
fix(cli): initialize backup_registry_entry before try block to preven…
DyanGalih May 12, 2026
bad7c92
fix(tests): return Path from download_extension mock and add Path import
DyanGalih May 12, 2026
1f0e3d2
fix(cli): normalize get_project_config() return to dict; deduplicate …
DyanGalih May 12, 2026
614b9f5
fix(cli): normalize hooks/installed/settings in get_project_config();…
DyanGalih May 12, 2026
07a6e02
fix(cli): set modified=True on hook coercion in rollback; sanitize ho…
DyanGalih May 12, 2026
160ecd5
fix(cli): filter non-dict hook entries in get_project_config(); remov…
DyanGalih May 12, 2026
921f65d
fix(cli): gate extensions.yml rollback on backup_hooks is not None; u…
DyanGalih May 12, 2026
91d10c7
fix(cli): move _AgentReg import outside try block; assert result.exce…
DyanGalih May 12, 2026
bc957de
fix(extensions): normalize empty-file config; clarify comment; assert…
DyanGalih May 12, 2026
2e77b19
fix(extensions): consistent key order in default config; deep-copy ba…
DyanGalih May 12, 2026
808c73a
test: fix misleading comment; assert exit_code==1 in rollback test
DyanGalih May 13, 2026
cc37aba
test: clean up duplicate imports in hardening tests
DyanGalih May 13, 2026
22efd6a
refactor(extensions): extract _sanitize_installed_list helper; streng…
DyanGalih May 13, 2026
ff5e189
fix(extensions): validate extension IDs in _sanitize_installed_list; …
DyanGalih May 13, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
100 changes: 63 additions & 37 deletions src/specify_cli/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4874,6 +4874,10 @@ def extension_update(
failed_updates = []
registrar = CommandRegistrar()
hook_executor = HookExecutor(project_root)
from .agents import CommandRegistrar as _AgentReg # used in backup and rollback paths

# UNSET sentinel: backup not yet captured (exception before backup step)
UNSET = object()

for update in updates_available:
extension_id = update["id"]
Expand All @@ -4887,8 +4891,9 @@ def extension_update(
backup_config_dir = backup_base / "config"

# Store backup state
backup_registry_entry = None
backup_hooks = None # None means no hooks key in config; {} means hooks key existed
backup_registry_entry = None # None means registry entry not yet captured
backup_installed = UNSET # Original installed list from extensions.yml
backup_hooks = None # None means backup step 4 not yet reached; {} or {...} means backup was captured
backed_up_command_files = {}

try:
Expand All @@ -4913,8 +4918,7 @@ def extension_update(
shutil.copy2(cfg_file, backup_config_dir / cfg_file.name)

# 3. Backup command files for all agents
from .agents import CommandRegistrar as _AgentReg
registered_commands = backup_registry_entry.get("registered_commands", {})
registered_commands = backup_registry_entry.get("registered_commands", {}) if isinstance(backup_registry_entry, dict) else {}
for agent_name, cmd_names in registered_commands.items():
Comment on lines 4920 to 4922
Copy link
Copy Markdown
Contributor Author

@DyanGalih DyanGalih May 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

✅ Fixed in commit 91d10c7. Moved the _AgentReg import to just outside the try block, alongside the other module-level setup:

registrar = CommandRegistrar()
hook_executor = HookExecutor(project_root)
from .agents import CommandRegistrar as _AgentReg  # used in backup and rollback paths

The inline import inside step 3 was removed. Rollback can now always reference _AgentReg regardless of which step raised the exception.

if agent_name not in registrar.AGENT_CONFIGS:
continue
Expand All @@ -4939,14 +4943,20 @@ def extension_update(
shutil.copy2(prompt_file, backup_prompt_path)
backed_up_command_files[str(prompt_file)] = str(backup_prompt_path)

# 4. Backup hooks from extensions.yml
# Use backup_hooks=None to indicate config had no "hooks" key (don't create on restore)
# Use backup_hooks={} to indicate config had "hooks" key with no hooks for this extension
# 4. Backup hooks and installed list from extensions.yml
# get_project_config() always normalizes installed->[] and hooks->{},
# so no sentinel is needed to distinguish key-absent from key-empty.
config = hook_executor.get_project_config()
Comment thread
mnriem marked this conversation as resolved.
if "hooks" in config:
backup_hooks = {} # Config has hooks key - preserve this fact
for hook_name, hook_list in config["hooks"].items():
ext_hooks = [h for h in hook_list if h.get("extension") == extension_id]
if isinstance(config, dict):
import copy
# Deep-copy so nested mapping entries (e.g. version-pin dicts)
# are not affected by in-place mutations during the update.
backup_installed = copy.deepcopy(config.get("installed", []))
backup_hooks = {}
for hook_name, hook_list in config.get("hooks", {}).items():
if not isinstance(hook_list, list):
continue
ext_hooks = [h for h in hook_list if isinstance(h, dict) and h.get("extension") == extension_id]
if ext_hooks:
backup_hooks[hook_name] = ext_hooks

Expand Down Expand Up @@ -5099,35 +5109,51 @@ def extension_update(
original_file.parent.mkdir(parents=True, exist_ok=True)
shutil.copy2(backup_file, original_file)

# Restore hooks in extensions.yml
# - backup_hooks=None means original config had no "hooks" key
# - backup_hooks={} or {...} means config had hooks key
config = hook_executor.get_project_config()
if "hooks" in config:
# Restore metadata in extensions.yml (hooks and installed list).
# Only run if backup step 4 was reached (backup_hooks is not None);
# otherwise we have no safe baseline to restore from and could corrupt
# the config by removing pre-existing hooks.
if backup_hooks is not None:
config = hook_executor.get_project_config()
if not isinstance(config, dict):
config = {}

modified = False

if backup_hooks is None:
# Original config had no "hooks" key; remove it entirely
del config["hooks"]
# 1. Restore hooks in extensions.yml
if not isinstance(config.get("hooks"), dict):
config["hooks"] = {}
modified = True
else:
# Remove any hooks for this extension added by failed install
for hook_name, hooks_list in config["hooks"].items():
original_len = len(hooks_list)
config["hooks"][hook_name] = [
h for h in hooks_list
if h.get("extension") != extension_id
]
if len(config["hooks"][hook_name]) != original_len:
modified = True

# Add back the backed up hooks if any
if backup_hooks:
for hook_name, hooks in backup_hooks.items():
if hook_name not in config["hooks"]:
config["hooks"][hook_name] = []
config["hooks"][hook_name].extend(hooks)
modified = True

# Remove any hooks for this extension added by the failed install
for hook_name in list(config["hooks"].keys()):
hooks_list = config["hooks"][hook_name]
if not isinstance(hooks_list, list):
config["hooks"][hook_name] = []
modified = True
continue

original_len = len(hooks_list)
config["hooks"][hook_name] = [
h for h in hooks_list
if isinstance(h, dict) and h.get("extension") != extension_id
]
if len(config["hooks"][hook_name]) != original_len:
modified = True

# Add back the backed-up hooks
if backup_hooks:
for hook_name, hooks in backup_hooks.items():
if not isinstance(config["hooks"].get(hook_name), list):
config["hooks"][hook_name] = []
config["hooks"][hook_name].extend(hooks)
modified = True

# 2. Restore installed list in extensions.yml
if backup_installed is not UNSET:
if config.get("installed") != backup_installed:
config["installed"] = backup_installed
modified = True

if modified:
hook_executor.save_project_config(config)
Expand Down
200 changes: 177 additions & 23 deletions src/specify_cli/extensions.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1190,7 +1190,7 @@ def install_from_directory(
# was used during project initialisation (feature parity).
registered_skills = self._register_extension_skills(manifest, dest_dir)

# Register hooks
# Register hooks and update installed list in extensions.yml
hook_executor = HookExecutor(self.project_root)
hook_executor.register_hooks(manifest)
Comment thread
mnriem marked this conversation as resolved.
Comment thread
mnriem marked this conversation as resolved.
Comment thread
mnriem marked this conversation as resolved.

Comment thread
mnriem marked this conversation as resolved.
Comment thread
mnriem marked this conversation as resolved.
Comment thread
mnriem marked this conversation as resolved.
Expand Down Expand Up @@ -2481,7 +2481,32 @@ def get_project_config(self) -> Dict[str, Any]:
}

try:
return yaml.safe_load(self.config_file.read_text(encoding="utf-8")) or {}
result = yaml.safe_load(self.config_file.read_text(encoding="utf-8"))
# Coerce non-dict root (including None for an empty file) to the
# fully-normalized default so callers always get guaranteed fields.
if not isinstance(result, dict):
return {
"installed": [],
"settings": {"auto_execute_hooks": True},
"hooks": {},
}
# Normalize nested fields so read-only callers like get_hooks_for_event()
# never see non-dict hooks or non-list installed (Feedback)
if not isinstance(result.get("hooks"), dict):
result["hooks"] = {}
if not isinstance(result.get("installed"), list):
result["installed"] = []
if not isinstance(result.get("settings"), dict):
result["settings"] = {"auto_execute_hooks": True}
# Sanitize hook event values: coerce non-list values to [] and filter
# non-dict items so get_hooks_for_event() can safely call .get() (Feedback)
for event_key in list(result["hooks"]):
event_val = result["hooks"][event_key]
if not isinstance(event_val, list):
result["hooks"][event_key] = []
else:
result["hooks"][event_key] = [h for h in event_val if isinstance(h, dict)]
return result
Comment thread
mnriem marked this conversation as resolved.
except (yaml.YAMLError, OSError, UnicodeError):
return {
"installed": [],
Expand All @@ -2501,25 +2526,141 @@ def save_project_config(self, config: Dict[str, Any]):
encoding="utf-8",
)

def register_extension(self, extension_id: str):
"""Add extension to the installed list in project config.

Args:
extension_id: ID of extension to register
"""
config = self.get_project_config()

# Ensure config is a dict (defensive)
if not isinstance(config, dict):
config = {}
Comment thread
mnriem marked this conversation as resolved.

raw_installed = config.get("installed")
sanitized = self._sanitize_installed_list(raw_installed, add_id=extension_id)

if sanitized != raw_installed:
config["installed"] = sanitized
self.save_project_config(config)
Comment thread
mnriem marked this conversation as resolved.
Comment thread
mnriem marked this conversation as resolved.

def unregister_extension(self, extension_id: str):
"""Remove extension from the installed list in project config.

Args:
extension_id: ID of extension to unregister
"""
config = self.get_project_config()

if not isinstance(config, dict):
config = {}

raw_installed = config.get("installed")
sanitized = self._sanitize_installed_list(raw_installed, remove_id=extension_id)

# Always persist if sanitized state differs from raw config (ensures normalization)
if sanitized != raw_installed:
config["installed"] = sanitized
self.save_project_config(config)

@staticmethod
def _sanitize_installed_list(
raw: object,
*,
add_id: str = "",
remove_id: str = "",
) -> list:
"""Normalize, deduplicate, and optionally add/remove an extension id.

Shared by register_extension() and unregister_extension() to prevent
the two paths from drifting.

Args:
raw: The raw value from config["installed"] (may be non-list).
add_id: If non-empty, ensure this id is present (plain-string fallback).
remove_id: If non-empty, remove this id from the list.

Returns:
A sanitized, deduplicated, alphabetically-sorted list.
"""
_VALID_ID = re.compile(r'^[a-z0-9-]+$')

installed = raw if isinstance(raw, list) else []

# Keep only entries whose resolved id is a non-empty string matching
# the extension-id format (^[a-z0-9-]+$), same rule ExtensionManifest enforces.
def _valid_entry(x: object) -> bool:
if isinstance(x, str):
return bool(_VALID_ID.match(x.strip()))
if isinstance(x, dict):
eid = x.get("id")
return isinstance(eid, str) and bool(_VALID_ID.match(eid.strip()))
return False

valid = [x for x in installed if _valid_entry(x)]

# Deduplicate by id: prefer dict (richer metadata) over plain string
seen: dict = {} # id -> entry (dict preferred over str)
for x in valid:
eid = x.strip() if isinstance(x, str) else x.get("id", "").strip()
if eid not in seen or isinstance(x, dict):
seen[eid] = x

# Validate add_id against the same regex before inserting
if add_id and _VALID_ID.match(add_id.strip()) and add_id not in seen:
seen[add_id] = add_id

if remove_id:
seen.pop(remove_id, None)
Comment thread
mnriem marked this conversation as resolved.

def _sort_key(x: object) -> str:
return x if isinstance(x, str) else x.get("id", "") # type: ignore[return-value]

return sorted(seen.values(), key=_sort_key)

def register_hooks(self, manifest: ExtensionManifest):
"""Register extension hooks in project config.

Args:
manifest: Extension manifest with hooks to register
"""
# Always ensure the extension is in the installed list
self.register_extension(manifest.id)

if not hasattr(manifest, "hooks") or not manifest.hooks:
return

config = self.get_project_config()

# Ensure hooks dict exists
if "hooks" not in config:
# Ensure config is a dict (defensive)
changed = False
if not isinstance(config, dict):
config = {}
changed = True

# Ensure hooks dict exists and is a mapping
if "hooks" not in config or not isinstance(config["hooks"], dict):
config["hooks"] = {}
Comment thread
mnriem marked this conversation as resolved.
changed = True
else:
# Sanitize existing hook lists to prevent crashes in downstream code (Feedback)
for h_name in list(config["hooks"].keys()):
h_list = config["hooks"][h_name]
if not isinstance(h_list, list):
config["hooks"][h_name] = []
changed = True
else:
sanitized_h_list = [h for h in h_list if isinstance(h, dict)]
if len(sanitized_h_list) != len(h_list):
config["hooks"][h_name] = sanitized_h_list
changed = True

# Register each hook
for hook_name, hook_config in manifest.hooks.items():
if hook_name not in config["hooks"]:
if hook_name not in config["hooks"] or not isinstance(config["hooks"][hook_name], list):
config["hooks"][hook_name] = []
changed = True

# Add hook entry
hook_entry = {
Expand All @@ -2534,40 +2675,53 @@ def register_hooks(self, manifest: ExtensionManifest):
"condition": hook_config.get("condition"),
}

# Check if already registered
existing = [
h
for h in config["hooks"][hook_name]
if h.get("extension") == manifest.id
# Deduplicate: remove all existing entries for this extension on this
# hook event, then append the single canonical entry. This prevents
# multiple hooks firing when hand-edited or older versions leave
# duplicate entries behind. (Feedback from review)
original_list = config["hooks"][hook_name]
deduped = [
h for h in original_list
if not (isinstance(h, dict) and h.get("extension") == manifest.id)
]
deduped.append(hook_entry)
if deduped != original_list:
config["hooks"][hook_name] = deduped
changed = True

if not existing:
config["hooks"][hook_name].append(hook_entry)
else:
# Update existing
for i, h in enumerate(config["hooks"][hook_name]):
if h.get("extension") == manifest.id:
config["hooks"][hook_name][i] = hook_entry

self.save_project_config(config)
if changed:
self.save_project_config(config)

def unregister_hooks(self, extension_id: str):
"""Remove extension hooks from project config.

Args:
extension_id: ID of extension to unregister
"""
# Always remove from installed list (Feedback from review)
self.unregister_extension(extension_id)

Comment thread
mnriem marked this conversation as resolved.
config = self.get_project_config()

Comment thread
mnriem marked this conversation as resolved.
if "hooks" not in config:
if not isinstance(config, dict):
config = {}
# We don't save yet, as there are no hooks to unregister,
# but unregister_extension above might have already saved a normalized config.
return

if "hooks" not in config or not isinstance(config["hooks"], dict):
return
Comment thread
mnriem marked this conversation as resolved.

# Remove hooks for this extension
for hook_name in config["hooks"]:
for hook_name in list(config["hooks"].keys()):
hook_list = config["hooks"][hook_name]
if not isinstance(hook_list, list):
config["hooks"][hook_name] = []
continue
config["hooks"][hook_name] = [
h
for h in config["hooks"][hook_name]
if h.get("extension") != extension_id
for h in hook_list
if isinstance(h, dict) and h.get("extension") != extension_id
]
Comment thread
mnriem marked this conversation as resolved.

# Clean up empty hook arrays
Expand Down
Loading
Loading