Skip to content

Fix terminal security check evaluatePolicy type definition#8226

Merged
RomneyDa merged 1 commit intomainfrom
continuebot/con-4401
Oct 17, 2025
Merged

Fix terminal security check evaluatePolicy type definition#8226
RomneyDa merged 1 commit intomainfrom
continuebot/con-4401

Conversation

@continue
Copy link
Contributor

@continue continue bot commented Oct 14, 2025
edited by cubic-dev-ai bot
Loading

Description

Fixed a typo in the BrowserSerializedContinueConfig type definition where it incorrectly referenced 'evaluatePolicy' instead of 'evaluateToolCallPolicy'.

Root Cause

The Tool interface has a field called evaluateToolCallPolicy, but the BrowserSerializedContinueConfig type was using Omit<Tool, "preprocessArgs", "evaluatePolicy"> instead of the correct Omit<Tool, "preprocessArgs", "evaluateToolCallPolicy">.

This typo meant TypeScript was not properly enforcing the omission of the evaluateToolCallPolicy field when tools were serialized for the browser, which could have led to runtime issues if GUI code attempted to access this function (which should only exist on the core side).

Changes

  • Updated line 1792 in core/index.d.ts to use the correct field name evaluateToolCallPolicy

Testing

  • TypeScript compilation should pass
  • The type now correctly enforces that evaluateToolCallPolicy is omitted from serialized tools

Fixes CON-4401

This agent session was co-authored by nate and Continue.

Summary by cubic

Corrected BrowserSerializedContinueConfig to omit evaluateToolCallPolicy (not evaluatePolicy) so browser-serialized tools don’t expose core-only policy checks. Fixes CON-4401.

@sestinj
Fix typo in BrowserSerializedContinueConfig type definition
1f4f816 
The type incorrectly referenced 'evaluatePolicy' instead of 'evaluateToolCallPolicy',
which is the actual field name in the Tool interface. This prevented TypeScript from
properly enforcing the omission of this field when serializing tools for the browser.

Fixes CON-4401

Generated with [Continue](https://continue.dev)

Co-authored-by: Continue <noreply@continue.dev>
Co-authored-by: nate@continue.dev
@continue continue bot requested a review from a team as a code owner October 14, 2025 04:11
@continue continue bot requested review from RomneyDa and removed request for a team October 14, 2025 04:11
@github-actions
Copy link

github-actions bot commented Oct 14, 2025

⚠️ PR Title Format

Your PR title doesn't follow the conventional commit format, but this won't block your PR from being merged. We recommend using this format for better project organization.

Expected Format:

<type>[optional scope]: <description>

Examples:

  • feat: add changelog generation support
  • fix: resolve login redirect issue
  • docs: update README with new instructions
  • chore: update dependencies

Valid Types:

feat, fix, docs, style, refactor, perf, test, build, ci, chore, revert

This helps with:

  • 📝 Automatic changelog generation
  • 🚀 Automated semantic versioning
  • 📊 Better project history tracking

This is a non-blocking warning - your PR can still be merged without fixing this.

@dosubot dosubot bot added the size:XS This PR changes 0-9 lines, ignoring generated files. label Oct 14, 2025
cubic-dev-ai[bot]
cubic-dev-ai bot reviewed Oct 14, 2025
View reviewed changes
Copy link
Contributor

@cubic-dev-ai cubic-dev-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No issues found across 1 file

@RomneyDa RomneyDa marked this pull request as draft October 14, 2025 05:11
RomneyDa
RomneyDa requested changes Oct 14, 2025
View reviewed changes
Copy link
Collaborator

@RomneyDa RomneyDa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@continue this is a valid change and can stay but doesn't fix whatever redux or other messaging issue is causing dangerous commands to not change the policy

@github-project-automation github-project-automation bot moved this from Todo to In Progress in Issues and PRs Oct 14, 2025
@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Oct 17, 2025
@RomneyDa RomneyDa marked this pull request as ready for review October 17, 2025 21:49
@RomneyDa RomneyDa merged commit 649d022 into main Oct 17, 2025
60 of 62 checks passed
@RomneyDa RomneyDa deleted the continuebot/con-4401 branch October 17, 2025 21:50
@github-project-automation github-project-automation bot moved this from In Progress to Done in Issues and PRs Oct 17, 2025
@github-actions github-actions bot locked and limited conversation to collaborators Oct 17, 2025
@sestinj
Copy link
Contributor

sestinj commented Oct 18, 2025

🎉 This PR is included in version 1.27.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@sestinj
Copy link
Contributor

sestinj commented Oct 21, 2025

🎉 This PR is included in version 1.5.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@sestinj
Copy link
Contributor

sestinj commented Oct 22, 2025

🎉 This PR is included in version 1.30.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@sestinj
Copy link
Contributor

sestinj commented Oct 29, 2025

🎉 This PR is included in version 1.4.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@cubic-dev-ai cubic-dev-ai[bot] cubic-dev-ai[bot] left review comments

@RomneyDa RomneyDa RomneyDa approved these changes

Assignees

No one assigned

Labels

lgtm This PR has been approved by a maintainer released size:XS This PR changes 0-9 lines, ignoring generated files.

Projects

Issues and PRs
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sestinj @RomneyDa