tool output rename and tooling upgrade

Author: ppipada

.golangci.yml

@@ -1,4 +1,4 @@
-# All linters are checked and included either in enable or disable as of v2.8.0 of golangci-lint.
+# All linters are checked and included either in enable or disable as of v2.9.0 of golangci-lint.
 # gofumpt and golines are used as formatters.
 version: "2"
 run:

.tool-versions

@@ -1,3 +1,3 @@
-golang 1.25.5
-golangci-lint 2.8.0
-task 3.45.5
+golang 1.25.7
+golangci-lint 2.9.0
+task 3.48.0

README.md

@@ -108,7 +108,7 @@ The registry provides:
 
 ## Tool outputs
 
-- `Registry.Call` returns `[]spec.ToolStoreOutputUnion`.
+- `Registry.Call` returns `[]spec.ToolOutputUnion`.
 
 - The call wrapper can modify the union to support two common patterns:
   - Structured JSON-as-text (most tools)

exectool/config.go

@@ -0,0 +1,77 @@
+package exectool
+
+import (
+	"maps"
+	"time"
+
+	"github.com/flexigpt/llmtools-go/internal/fspolicy"
+)
+
+// ExecutionPolicy provides policy / hardening knobs (host-configured).
+// All limits are clamped to executil hard maximums (downstream enforcement).
+type ExecutionPolicy struct {
+	// If true, skip heuristic checks (fork-bomb/backgrounding).
+	// NOTE: hard-blocked commands are ALWAYS blocked.
+	AllowDangerous bool
+
+	Timeout          time.Duration
+	MaxOutputBytes   int64
+	MaxCommands      int
+	MaxCommandLength int
+}
+
+type execToolConfig struct {
+	allowedRoots    []string
+	workBaseDir     string
+	blockSymlinks   bool
+	blockedCommands map[string]struct{}
+
+	executionPolicy ExecutionPolicy
+	runScriptPolicy RunScriptPolicy
+}
+
+type execToolPolicy struct {
+	fsPolicy        fspolicy.FSPolicy
+	blockedCommands map[string]struct{}
+
+	executionPolicy ExecutionPolicy
+	runScriptPolicy RunScriptPolicy
+}
+
+// Clone returns an independent copy of the policy snapshot.
+func (p *execToolPolicy) Clone() *execToolPolicy {
+	if p == nil {
+		return nil
+	}
+
+	cp := new(execToolPolicy)
+	*cp = *p // copy all value fields (and slice/map headers)
+
+	if p.blockedCommands != nil {
+		cp.blockedCommands = make(map[string]struct{}, len(p.blockedCommands))
+		maps.Copy(cp.blockedCommands, p.blockedCommands)
+	} else {
+		cp.blockedCommands = nil
+	}
+
+	if c := p.executionPolicy.Clone(); c != nil {
+		cp.executionPolicy = *c
+	}
+
+	if c := p.runScriptPolicy.Clone(); c != nil {
+		cp.runScriptPolicy = *c
+	}
+
+	return cp
+}
+
+// Clone returns an independent copy of the ExecutionPolicy.
+// (All fields are value types, so a plain copy is sufficient.)
+func (p *ExecutionPolicy) Clone() *ExecutionPolicy {
+	if p == nil {
+		return nil
+	}
+	cp := new(ExecutionPolicy)
+	*cp = *p
+	return cp
+}

exectool/exectool.go

@@ -15,85 +15,6 @@ import (
 	"github.com/flexigpt/llmtools-go/spec"
 )
 
-// ExecutionPolicy provides policy / hardening knobs (host-configured).
-// All limits are clamped to executil hard maximums (downstream enforcement).
-type ExecutionPolicy struct {
-	// If true, skip heuristic checks (fork-bomb/backgrounding).
-	// NOTE: hard-blocked commands are ALWAYS blocked.
-	AllowDangerous bool
-
-	Timeout          time.Duration
-	MaxOutputBytes   int64
-	MaxCommands      int
-	MaxCommandLength int
-}
-
-// Clone returns an independent copy of the ExecutionPolicy.
-// (All fields are value types, so a plain copy is sufficient.)
-func (p *ExecutionPolicy) Clone() *ExecutionPolicy {
-	if p == nil {
-		return nil
-	}
-	cp := new(ExecutionPolicy)
-	*cp = *p
-	return cp
-}
-
-func DefaultExecutionPolicy() ExecutionPolicy {
-	return ExecutionPolicy{
-		AllowDangerous:   false,
-		Timeout:          executil.DefaultTimeout,
-		MaxOutputBytes:   executil.DefaultMaxOutputBytes,
-		MaxCommands:      executil.DefaultMaxCommands,
-		MaxCommandLength: executil.DefaultMaxCommandLength,
-	}
-}
-
-type execToolConfig struct {
-	allowedRoots    []string
-	workBaseDir     string
-	blockSymlinks   bool
-	blockedCommands map[string]struct{}
-
-	executionPolicy ExecutionPolicy
-	runScriptPolicy RunScriptPolicy
-}
-
-type execToolPolicy struct {
-	fsPolicy        fspolicy.FSPolicy
-	blockedCommands map[string]struct{}
-
-	executionPolicy ExecutionPolicy
-	runScriptPolicy RunScriptPolicy
-}
-
-// Clone returns an independent copy of the policy snapshot.
-func (p *execToolPolicy) Clone() *execToolPolicy {
-	if p == nil {
-		return nil
-	}
-
-	cp := new(execToolPolicy)
-	*cp = *p // copy all value fields (and slice/map headers)
-
-	if p.blockedCommands != nil {
-		cp.blockedCommands = make(map[string]struct{}, len(p.blockedCommands))
-		maps.Copy(cp.blockedCommands, p.blockedCommands)
-	} else {
-		cp.blockedCommands = nil
-	}
-
-	if c := p.executionPolicy.Clone(); c != nil {
-		cp.executionPolicy = *c
-	}
-
-	if c := p.runScriptPolicy.Clone(); c != nil {
-		cp.runScriptPolicy = *c
-	}
-
-	return cp
-}
-
 // ExecTool is an instance-owned execution tool runner.
 // It centralizes:
 //   - path sandboxing (workBaseDir, allowedRoots, blockSymlinks)
@@ -273,3 +194,13 @@ func (et *ExecTool) snapshotPolicy() *execToolPolicy {
 	}
 	return p.Clone()
 }
+
+func DefaultExecutionPolicy() ExecutionPolicy {
+	return ExecutionPolicy{
+		AllowDangerous:   false,
+		Timeout:          executil.DefaultTimeout,
+		MaxOutputBytes:   executil.DefaultMaxOutputBytes,
+		MaxCommands:      executil.DefaultMaxCommands,
+		MaxCommandLength: executil.DefaultMaxCommandLength,
+	}
+}

fstool/fstool.go

@@ -121,8 +121,8 @@ func (ft *FSTool) MIMEForPath(ctx context.Context, args MIMEForPathArgs) (*MIMEF
 func (ft *FSTool) ReadFile(
 	ctx context.Context,
 	args ReadFileArgs,
-) ([]spec.ToolStoreOutputUnion, error) {
-	return toolutil.WithRecoveryResp(func() ([]spec.ToolStoreOutputUnion, error) {
+) ([]spec.ToolOutputUnion, error) {
+	return toolutil.WithRecoveryResp(func() ([]spec.ToolOutputUnion, error) {
 		p := ft.snapshotPolicy()
 		return readFile(ctx, args, p)
 	})

fstool/helpers_test.go

@@ -128,14 +128,6 @@ func evalTestSymlinksBestEffort(p string) string {
 	return p
 }
 
-func stringSliceAsSet(in []string) map[string]int {
-	m := make(map[string]int, len(in))
-	for _, s := range in {
-		m[s]++
-	}
-	return m
-}
-
 func equalStringMultisets(a, b []string) bool {
 	ma := stringSliceAsSet(a)
 	mb := stringSliceAsSet(b)
@@ -150,6 +142,14 @@ func equalStringMultisets(a, b []string) bool {
 	return true
 }
 
+func stringSliceAsSet(in []string) map[string]int {
+	m := make(map[string]int, len(in))
+	for _, s := range in {
+		m[s]++
+	}
+	return m
+}
+
 func wantErrContains(substr string) func(error) bool {
 	return func(err error) bool {
 		return err != nil && strings.Contains(err.Error(), substr)

fstool/readfile.go

@@ -63,7 +63,7 @@ func readFile(
 	ctx context.Context,
 	args ReadFileArgs,
 	p fspolicy.FSPolicy,
-) ([]spec.ToolStoreOutputUnion, error) {
+) ([]spec.ToolOutputUnion, error) {
 	if err := ctx.Err(); err != nil {
 		return nil, err
 	}
@@ -114,10 +114,10 @@ func readFile(
 				return nil, err
 			}
 
-			return []spec.ToolStoreOutputUnion{
+			return []spec.ToolOutputUnion{
 				{
-					Kind: spec.ToolStoreOutputKindText,
-					TextItem: &spec.ToolStoreOutputText{
+					Kind: spec.ToolOutputKindText,
+					TextItem: &spec.ToolOutputText{
 						Text: text,
 					},
 				},
@@ -144,10 +144,10 @@ func readFile(
 			)
 		}
 
-		return []spec.ToolStoreOutputUnion{
+		return []spec.ToolOutputUnion{
 			{
-				Kind: spec.ToolStoreOutputKindText,
-				TextItem: &spec.ToolStoreOutputText{
+				Kind: spec.ToolOutputKindText,
+				TextItem: &spec.ToolOutputText{
 					Text: data,
 				},
 			},
@@ -181,10 +181,10 @@ func readFile(
 	}
 
 	if strings.HasPrefix(mt, "image/") {
-		return []spec.ToolStoreOutputUnion{
+		return []spec.ToolOutputUnion{
 			{
-				Kind: spec.ToolStoreOutputKindImage,
-				ImageItem: &spec.ToolStoreOutputImage{
+				Kind: spec.ToolOutputKindImage,
+				ImageItem: &spec.ToolOutputImage{
 					Detail:    spec.ImageDetailAuto,
 					ImageName: baseName,
 					ImageMIME: mt,
@@ -194,10 +194,10 @@ func readFile(
 		}, nil
 	}
 
-	return []spec.ToolStoreOutputUnion{
+	return []spec.ToolOutputUnion{
 		{
-			Kind: spec.ToolStoreOutputKindFile,
-			FileItem: &spec.ToolStoreOutputFile{
+			Kind: spec.ToolOutputKindFile,
+			FileItem: &spec.ToolOutputFile{
 				FileName: baseName,
 				FileMIME: mt,
 				FileData: data, // base64-encoded

internal/integration/fs_image_test.go

@@ -41,7 +41,7 @@ func TestE2E_FS_MIME_Delete_And_ImageFlows(t *testing.T) {
 	}
 
 	readBin := callRaw(t, h.r, "readfile", fstool.ReadFileArgs{Path: binRel, Encoding: "binary"})
-	fileItem := requireKind(t, readBin, spec.ToolStoreOutputKindFile)
+	fileItem := requireKind(t, readBin, spec.ToolOutputKindFile)
 	if fileItem.FileItem == nil || fileItem.FileItem.FileData == "" {
 		t.Fatalf("expected file output with base64 data, got: %+v", fileItem)
 	}
@@ -118,7 +118,7 @@ func TestE2E_FS_MIME_Delete_And_ImageFlows(t *testing.T) {
 
 	// "readfile(binary)" should emit an image output for image/*.
 	readImg := callRaw(t, h.r, "readfile", fstool.ReadFileArgs{Path: "pixel.png", Encoding: "binary"})
-	imageItem := requireKind(t, readImg, spec.ToolStoreOutputKindImage)
+	imageItem := requireKind(t, readImg, spec.ToolOutputKindImage)
 	if imageItem.ImageItem == nil || imageItem.ImageItem.ImageData == "" {
 		t.Fatalf("expected image output with base64 data, got: %+v", imageItem)
 	}

internal/integration/helpers_test.go

@@ -123,7 +123,7 @@ func callJSON[T any](t *testing.T, r *llmtools.Registry, slug string, args any)
 	t.Helper()
 
 	rawOut := callRaw(t, r, slug, args)
-	if len(rawOut) != 1 || rawOut[0].Kind != spec.ToolStoreOutputKindText || rawOut[0].TextItem == nil {
+	if len(rawOut) != 1 || rawOut[0].Kind != spec.ToolOutputKindText || rawOut[0].TextItem == nil {
 		t.Fatalf("expected single text output for %s, got: %+v", slug, rawOut)
 	}
 	var decoded T
@@ -133,7 +133,7 @@ func callJSON[T any](t *testing.T, r *llmtools.Registry, slug string, args any)
 	return decoded
 }
 
-func callRaw(t *testing.T, r *llmtools.Registry, slug string, args any) []spec.ToolStoreOutputUnion {
+func callRaw(t *testing.T, r *llmtools.Registry, slug string, args any) []spec.ToolOutputUnion {
 	t.Helper()
 
 	in, err := json.Marshal(args)
@@ -159,27 +159,27 @@ func funcIDBySlug(t *testing.T, r *llmtools.Registry, slug string) spec.FuncID {
 	return ""
 }
 
-func requireSingleTextOutput(t *testing.T, out []spec.ToolStoreOutputUnion) string {
+func requireSingleTextOutput(t *testing.T, out []spec.ToolOutputUnion) string {
 	t.Helper()
-	if len(out) != 1 || out[0].Kind != spec.ToolStoreOutputKindText || out[0].TextItem == nil {
+	if len(out) != 1 || out[0].Kind != spec.ToolOutputKindText || out[0].TextItem == nil {
 		t.Fatalf("expected single text output, got: %+v", out)
 	}
 	return out[0].TextItem.Text
 }
 
 func requireKind(
 	t *testing.T,
-	out []spec.ToolStoreOutputUnion,
-	kind spec.ToolStoreOutputKind,
-) spec.ToolStoreOutputUnion {
+	out []spec.ToolOutputUnion,
+	kind spec.ToolOutputKind,
+) spec.ToolOutputUnion {
 	t.Helper()
 	for _, item := range out {
 		if item.Kind == kind {
 			return item
 		}
 	}
 	t.Fatalf("expected output kind %q, got: %+v", kind, out)
-	return spec.ToolStoreOutputUnion{}
+	return spec.ToolOutputUnion{}
 }
 
 func debugJSON(t *testing.T, v any) string {