grokkit/internal/recipe/loader.go

package recipe

import (
	"bytes"
	"fmt"
	"os"
	"regexp"
	"strings"
	"text/template"

	"gopkg.in/yaml.v3"
)

// Global safe read-only whitelist
var safeReadOnlyCommands = map[string]bool{
	"ls":                            true,
	"pwd":                           true,
	"cat":                           true,
	"tree":                          true,
	"git status":                    true,
	"git log":                       true,
	"find":                          true,
	"grep":                          true,
	"cndump -s":                     true,
	"tea repos list -o csv -lm 100": true,
	"tea repos search -o csv":       true,
}

var (
	// stepRe still finds the headings (this one is solid)
	stepRe = regexp.MustCompile(`(?m)^### Step (\d+): (.+)$`)
)

func Load(path string, userParams map[string]any) (*Recipe, error) {
	b, err := os.ReadFile(path)
	if err != nil {
		return nil, err
	}

	parts := bytes.SplitN(b, []byte("---"), 3)
	if len(parts) < 3 {
		return nil, fmt.Errorf("missing YAML frontmatter")
	}

	var r Recipe
	if err := yaml.Unmarshal(parts[1], &r); err != nil {
		return nil, fmt.Errorf("yaml parse: %w", err)
	}

	// === SAFETY CHECK: reject dangerous allowed_shell_commands ===
	for _, cmd := range r.AllowedShellCommands {
		trimmed := strings.TrimSpace(strings.ToLower(cmd))
		if !safeReadOnlyCommands[trimmed] && !strings.HasPrefix(trimmed, "git status") && !strings.HasPrefix(trimmed, "git log") {
			return nil, fmt.Errorf("\u001B[31mERROR: Recipe contains unsafe shell command: %q\u001B[0m Remove or replace the dangerous command and try again", cmd)
		}
	}

	// Apply defaults + user --param overrides
	if r.Parameters == nil {
		r.Parameters = make(map[string]Parameter)
	}
	r.ResolvedParams = make(map[string]any)
	for name, p := range r.Parameters {
		if v, ok := userParams[name]; ok {
			r.ResolvedParams[name] = v
		} else if p.Default != nil {
			r.ResolvedParams[name] = p.Default
		}
	}

	// Render templates with resolved values
	tpl, err := template.New("recipe").Parse(string(parts[2]))
	if err != nil {
		return nil, err
	}
	var rendered bytes.Buffer
	if err := tpl.Execute(&rendered, r.ResolvedParams); err != nil {
		return nil, err
	}
	body := rendered.String()

	// Extract Overview
	if idx := strings.Index(body, "## Execution Steps"); idx != -1 {
		r.Overview = strings.TrimSpace(body[:idx])
	}

	// Extract steps with robust multi-line parsing
	matches := stepRe.FindAllStringSubmatch(body, -1)
	for i, m := range matches {
		stepNum := i + 1
		title := m[2]

		start := strings.Index(body, m[0])
		end := len(body)
		if i+1 < len(matches) {
			nextStart := strings.Index(body[start:], matches[i+1][0])
			end = start + nextStart
		}

		section := body[start:end]

		step := Step{Number: stepNum, Title: title}

		// Simple, reliable label-based parsing (handles multi-line + blank lines)
		labels := []string{"**Objective:**", "**Instructions:**", "**Expected output:**"}
		for _, label := range labels {
			labelStart := strings.Index(section, label)
			if labelStart == -1 {
				continue
			}
			contentStart := labelStart + len(label)
			contentEnd := len(section)

			// Find next label or end of section
			for _, nextLabel := range labels {
				next := strings.Index(section[contentStart:], nextLabel)
				if next != -1 {
					contentEnd = contentStart + next
					break
				}
			}

			content := strings.TrimSpace(section[contentStart:contentEnd])

			switch label {
			case "**Objective:**":
				step.Objective = content
			case "**Instructions:**":
				step.Instructions = content
			case "**Expected output:**":
				step.Expected = content
			}
		}

		r.Steps = append(r.Steps, step)
	}

	// Final summary (everything after last step)
	if len(matches) > 0 {
		lastMatch := matches[len(matches)-1][0]
		lastIdx := strings.LastIndex(body, lastMatch)
		r.FinalSummaryPrompt = strings.TrimSpace(body[lastIdx+len(lastMatch):])
	}

	return &r, nil
}
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`package recipe`

			`import (`
			`"bytes"`
			`"fmt"`
			`"os"`
			`"regexp"`
			`"strings"`
			`"text/template"`

			`"gopkg.in/yaml.v3"`
			`)`

feat(recipe): add safety whitelist for allowed shell commands Implement a read-only command whitelist in the recipe loader to reject potentially dangerous shell commands, ensuring only safe operations like ls, pwd, cat, etc., are permitted. This enhances security by preventing execution of unauthorized commands in recipes. 2026-03-07 17:11:13 +00:00			`// Global safe read-only whitelist`
			`var safeReadOnlyCommands = map[string]bool{`
			`"ls": true,`
			`"pwd": true,`
			`"cat": true,`
			`"tree": true,`
			`"git status": true,`
			`"git log": true,`
			`"find": true,`
			`"grep": true,`
			`"cndump -s": true,`
			`"tea repos list -o csv -lm 100": true,`
			`"tea repos search -o csv": true,`
			`}`

feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`var (`
refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00			`// stepRe still finds the headings (this one is solid)`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			stepRe = regexp.MustCompile(`(?m)^### Step (\d+): (.+)$`)
			`)`

feat(recipe): implement LLM-powered recipe execution Add support for executing recipe steps via Grok API streaming, including parameter defaults from YAML, model selection via flags/config, previous step context, and a final summary prompt. Update runner to handle client and model, and refine loader to apply user params with fallbacks. 2026-03-06 20:32:04 +00:00			`func Load(path string, userParams map[string]any) (*Recipe, error) {`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`b, err := os.ReadFile(path)`
			`if err != nil {`
			`return nil, err`
			`}`

			`parts := bytes.SplitN(b, []byte("---"), 3)`
			`if len(parts) < 3 {`
			`return nil, fmt.Errorf("missing YAML frontmatter")`
			`}`

			`var r Recipe`
			`if err := yaml.Unmarshal(parts[1], &r); err != nil {`
			`return nil, fmt.Errorf("yaml parse: %w", err)`
			`}`

feat(recipe): add safety whitelist for allowed shell commands Implement a read-only command whitelist in the recipe loader to reject potentially dangerous shell commands, ensuring only safe operations like ls, pwd, cat, etc., are permitted. This enhances security by preventing execution of unauthorized commands in recipes. 2026-03-07 17:11:13 +00:00			`// === SAFETY CHECK: reject dangerous allowed_shell_commands ===`
			`for _, cmd := range r.AllowedShellCommands {`
			`trimmed := strings.TrimSpace(strings.ToLower(cmd))`
			`if !safeReadOnlyCommands[trimmed] && !strings.HasPrefix(trimmed, "git status") && !strings.HasPrefix(trimmed, "git log") {`
refactor(recipe): simplify path resolution and remove shell command execution - Consolidate resolveWorkDir and remove resolvePackagePath for cleaner path handling. - Eliminate executeShellCommands and related logic to disable shell execution in recipes. - Simplify error messaging in loader for unsafe commands. 2026-03-07 17:34:59 +00:00			`return nil, fmt.Errorf("\u001B[31mERROR: Recipe contains unsafe shell command: %q\u001B[0m Remove or replace the dangerous command and try again", cmd)`
feat(recipe): add safety whitelist for allowed shell commands Implement a read-only command whitelist in the recipe loader to reject potentially dangerous shell commands, ensuring only safe operations like ls, pwd, cat, etc., are permitted. This enhances security by preventing execution of unauthorized commands in recipes. 2026-03-07 17:11:13 +00:00			`}`
			`}`

refactor(recipe): add ResolvedParams for better param handling Introduce ResolvedParams field to Recipe struct for storing resolved parameter values from defaults and user overrides. Update loader to populate and use it for template rendering. Adjust runner to use ResolvedParams for root path and generalize file discovery. 2026-03-07 00:07:21 +00:00			`// Apply defaults + user --param overrides`
feat(recipe): implement LLM-powered recipe execution Add support for executing recipe steps via Grok API streaming, including parameter defaults from YAML, model selection via flags/config, previous step context, and a final summary prompt. Update runner to handle client and model, and refine loader to apply user params with fallbacks. 2026-03-06 20:32:04 +00:00			`if r.Parameters == nil {`
			`r.Parameters = make(map[string]Parameter)`
			`}`
refactor(recipe): add ResolvedParams for better param handling Introduce ResolvedParams field to Recipe struct for storing resolved parameter values from defaults and user overrides. Update loader to populate and use it for template rendering. Adjust runner to use ResolvedParams for root path and generalize file discovery. 2026-03-07 00:07:21 +00:00			`r.ResolvedParams = make(map[string]any)`
feat(recipe): implement LLM-powered recipe execution Add support for executing recipe steps via Grok API streaming, including parameter defaults from YAML, model selection via flags/config, previous step context, and a final summary prompt. Update runner to handle client and model, and refine loader to apply user params with fallbacks. 2026-03-06 20:32:04 +00:00			`for name, p := range r.Parameters {`
			`if v, ok := userParams[name]; ok {`
refactor(recipe): add ResolvedParams for better param handling Introduce ResolvedParams field to Recipe struct for storing resolved parameter values from defaults and user overrides. Update loader to populate and use it for template rendering. Adjust runner to use ResolvedParams for root path and generalize file discovery. 2026-03-07 00:07:21 +00:00			`r.ResolvedParams[name] = v`
feat(recipe): implement LLM-powered recipe execution Add support for executing recipe steps via Grok API streaming, including parameter defaults from YAML, model selection via flags/config, previous step context, and a final summary prompt. Update runner to handle client and model, and refine loader to apply user params with fallbacks. 2026-03-06 20:32:04 +00:00			`} else if p.Default != nil {`
refactor(recipe): add ResolvedParams for better param handling Introduce ResolvedParams field to Recipe struct for storing resolved parameter values from defaults and user overrides. Update loader to populate and use it for template rendering. Adjust runner to use ResolvedParams for root path and generalize file discovery. 2026-03-07 00:07:21 +00:00			`r.ResolvedParams[name] = p.Default`
feat(recipe): implement LLM-powered recipe execution Add support for executing recipe steps via Grok API streaming, including parameter defaults from YAML, model selection via flags/config, previous step context, and a final summary prompt. Update runner to handle client and model, and refine loader to apply user params with fallbacks. 2026-03-06 20:32:04 +00:00			`}`
			`}`

refactor(recipe): add ResolvedParams for better param handling Introduce ResolvedParams field to Recipe struct for storing resolved parameter values from defaults and user overrides. Update loader to populate and use it for template rendering. Adjust runner to use ResolvedParams for root path and generalize file discovery. 2026-03-07 00:07:21 +00:00			`// Render templates with resolved values`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`tpl, err := template.New("recipe").Parse(string(parts[2]))`
			`if err != nil {`
			`return nil, err`
			`}`
			`var rendered bytes.Buffer`
refactor(recipe): add ResolvedParams for better param handling Introduce ResolvedParams field to Recipe struct for storing resolved parameter values from defaults and user overrides. Update loader to populate and use it for template rendering. Adjust runner to use ResolvedParams for root path and generalize file discovery. 2026-03-07 00:07:21 +00:00			`if err := tpl.Execute(&rendered, r.ResolvedParams); err != nil {`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`return nil, err`
			`}`
refactor(recipe): improve loading and execution logic - Enhance recipe parsing in loader.go: extract overview, use split-based step extraction to avoid duplicates, refine final summary handling, and clean up comments/templates. - Refine runner.go prompts: add Grok system message, simplify user prompts for conciseness, adjust result joining with separators, and remove unnecessary text. 2026-03-06 20:46:30 +00:00			`body := rendered.String()`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00
refactor(recipe): improve loading and execution logic - Enhance recipe parsing in loader.go: extract overview, use split-based step extraction to avoid duplicates, refine final summary handling, and clean up comments/templates. - Refine runner.go prompts: add Grok system message, simplify user prompts for conciseness, adjust result joining with separators, and remove unnecessary text. 2026-03-06 20:46:30 +00:00			`// Extract Overview`
			`if idx := strings.Index(body, "## Execution Steps"); idx != -1 {`
			`r.Overview = strings.TrimSpace(body[:idx])`
feat(recipe): implement LLM-powered recipe execution Add support for executing recipe steps via Grok API streaming, including parameter defaults from YAML, model selection via flags/config, previous step context, and a final summary prompt. Update runner to handle client and model, and refine loader to apply user params with fallbacks. 2026-03-06 20:32:04 +00:00			`}`

refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00			`// Extract steps with robust multi-line parsing`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`matches := stepRe.FindAllStringSubmatch(body, -1)`
			`for i, m := range matches {`
			`stepNum := i + 1`
			`title := m[2]`

			`start := strings.Index(body, m[0])`
			`end := len(body)`
			`if i+1 < len(matches) {`
refactor(recipe): improve loading and execution logic - Enhance recipe parsing in loader.go: extract overview, use split-based step extraction to avoid duplicates, refine final summary handling, and clean up comments/templates. - Refine runner.go prompts: add Grok system message, simplify user prompts for conciseness, adjust result joining with separators, and remove unnecessary text. 2026-03-06 20:46:30 +00:00			`nextStart := strings.Index(body[start:], matches[i+1][0])`
			`end = start + nextStart`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`}`
refactor(recipe): improve loading and execution logic - Enhance recipe parsing in loader.go: extract overview, use split-based step extraction to avoid duplicates, refine final summary handling, and clean up comments/templates. - Refine runner.go prompts: add Grok system message, simplify user prompts for conciseness, adjust result joining with separators, and remove unnecessary text. 2026-03-06 20:46:30 +00:00
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`section := body[start:end]`

			`step := Step{Number: stepNum, Title: title}`
refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00
			`// Simple, reliable label-based parsing (handles multi-line + blank lines)`
			`labels := []string{"Objective:", "Instructions:", "Expected output:"}`
			`for _, label := range labels {`
			`labelStart := strings.Index(section, label)`
			`if labelStart == -1 {`
			`continue`
			`}`
			`contentStart := labelStart + len(label)`
			`contentEnd := len(section)`

			`// Find next label or end of section`
			`for _, nextLabel := range labels {`
			`next := strings.Index(section[contentStart:], nextLabel)`
			`if next != -1 {`
			`contentEnd = contentStart + next`
			`break`
			`}`
			`}`

			`content := strings.TrimSpace(section[contentStart:contentEnd])`

			`switch label {`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`case "Objective:":`
refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00			`step.Objective = content`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`case "Instructions:":`
refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00			`step.Instructions = content`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`case "Expected output:":`
refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00			`step.Expected = content`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`}`
			`}`
refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00			`r.Steps = append(r.Steps, step)`
			`}`

refactor(recipe): enhance parsing for multi-line step content Replace regex-based sub-section extraction with label-indexed parsing to handle multi-line content, blank lines, and ensure reliability without duplicates. Add clarifying comments for templates and summary extraction. 2026-03-06 21:48:35 +00:00			`// Final summary (everything after last step)`
refactor(recipe): improve loading and execution logic - Enhance recipe parsing in loader.go: extract overview, use split-based step extraction to avoid duplicates, refine final summary handling, and clean up comments/templates. - Refine runner.go prompts: add Grok system message, simplify user prompts for conciseness, adjust result joining with separators, and remove unnecessary text. 2026-03-06 20:46:30 +00:00			`if len(matches) > 0 {`
			`lastMatch := matches[len(matches)-1][0]`
			`lastIdx := strings.LastIndex(body, lastMatch)`
			`r.FinalSummaryPrompt = strings.TrimSpace(body[lastIdx+len(lastMatch):])`
			`}`
feat(recipe): add recipe system for Result[T] refactoring Implement recipe loading, parsing, and running infrastructure. Add initial result-refactor recipe for converting Go error handling to monadic Result[T] style. Includes markdown recipe definition, YAML frontmatter parsing, step extraction, and basic runner. 2026-03-06 18:35:58 +00:00
			`return &r, nil`
			`}`