api.ts
utils/api.ts
719
Lines
26078
Bytes
10
Exports
41
Imports
10
Keywords
What this is
This page documents one file from the repository and includes its full source so you can read it without leaving the docs site.
Beginner explanation
This file is one piece of the larger system. Its name, directory, imports, and exports show where it fits. Start by reading the exports and related files first.
How it is used
Start from the exports list and related files. Those are the easiest clues for where this file fits into the system.
Expert explanation
Architecturally, this file intersects with integrations. It contains 719 lines, 41 detected imports, and 10 detected exports.
Important relationships
Detected exports
CacheScopeSystemPromptBlocktoolToAPISchemalogAPIPrefixsplitSysPromptPrefixappendSystemContextprependUserContextlogContextMetricsnormalizeToolInputnormalizeToolInputForAPI
Keywords
toolschemainputcachescopetoolsnameinputschemablockpromptresult
Detected imports
@anthropic-ai/sdk@anthropic-ai/sdk/resources/beta/messages/messages.mjscryptosrc/constants/prompts.jssrc/context.jssrc/services/analytics/config.jssrc/services/analytics/growthbook.jssrc/services/analytics/index.jssrc/services/mcp/client.jssrc/services/mcp/types.jssrc/tools/BashTool/BashTool.jssrc/tools/FileEditTool/FileEditTool.jssrc/tools/FileEditTool/utils.jssrc/tools/FileWriteTool/FileWriteTool.jssrc/tools.jssrc/types/ids.jszod/v4../constants/system.js../services/tokenEstimation.js../Tool.js../tools/AgentTool/constants.js../tools/AgentTool/loadAgentsDir.js../tools/ExitPlanModeTool/constants.js../tools/TaskOutputTool/constants.js../types/message.js./agentSwarmsEnabled.js./betas.js./cwd.js./debug.js./envUtils.js./messages.js./model/providers.js./permissions/filesystem.js./plans.js./platform.js./ripgrep.js./slowOperations.js./systemPromptType.js./toolSchemaCache.js./windowsPaths.js./zodToJsonSchema.js
Source notes
This page embeds the full file contents. Small or leaf files are still indexed honestly instead of being over-explained.
Full source
import type Anthropic from '@anthropic-ai/sdk'
import type {
BetaTool,
BetaToolUnion,
} from '@anthropic-ai/sdk/resources/beta/messages/messages.mjs'
import { createHash } from 'crypto'
import { SYSTEM_PROMPT_DYNAMIC_BOUNDARY } from 'src/constants/prompts.js'
import { getSystemContext, getUserContext } from 'src/context.js'
import { isAnalyticsDisabled } from 'src/services/analytics/config.js'
import {
checkStatsigFeatureGate_CACHED_MAY_BE_STALE,
getFeatureValue_CACHED_MAY_BE_STALE,
} from 'src/services/analytics/growthbook.js'
import {
type AnalyticsMetadata_I_VERIFIED_THIS_IS_NOT_CODE_OR_FILEPATHS,
logEvent,
} from 'src/services/analytics/index.js'
import { prefetchAllMcpResources } from 'src/services/mcp/client.js'
import type { ScopedMcpServerConfig } from 'src/services/mcp/types.js'
import { BashTool } from 'src/tools/BashTool/BashTool.js'
import { FileEditTool } from 'src/tools/FileEditTool/FileEditTool.js'
import {
normalizeFileEditInput,
stripTrailingWhitespace,
} from 'src/tools/FileEditTool/utils.js'
import { FileWriteTool } from 'src/tools/FileWriteTool/FileWriteTool.js'
import { getTools } from 'src/tools.js'
import type { AgentId } from 'src/types/ids.js'
import type { z } from 'zod/v4'
import { CLI_SYSPROMPT_PREFIXES } from '../constants/system.js'
import { roughTokenCountEstimation } from '../services/tokenEstimation.js'
import type { Tool, ToolPermissionContext, Tools } from '../Tool.js'
import { AGENT_TOOL_NAME } from '../tools/AgentTool/constants.js'
import type { AgentDefinition } from '../tools/AgentTool/loadAgentsDir.js'
import { EXIT_PLAN_MODE_V2_TOOL_NAME } from '../tools/ExitPlanModeTool/constants.js'
import { TASK_OUTPUT_TOOL_NAME } from '../tools/TaskOutputTool/constants.js'
import type { Message } from '../types/message.js'
import { isAgentSwarmsEnabled } from './agentSwarmsEnabled.js'
import {
modelSupportsStructuredOutputs,
shouldUseGlobalCacheScope,
} from './betas.js'
import { getCwd } from './cwd.js'
import { logForDebugging } from './debug.js'
import { isEnvTruthy } from './envUtils.js'
import { createUserMessage } from './messages.js'
import {
getAPIProvider,
isFirstPartyAnthropicBaseUrl,
} from './model/providers.js'
import {
getFileReadIgnorePatterns,
normalizePatternsToPath,
} from './permissions/filesystem.js'
import {
getPlan,
getPlanFilePath,
persistFileSnapshotIfRemote,
} from './plans.js'
import { getPlatform } from './platform.js'
import { countFilesRoundedRg } from './ripgrep.js'
import { jsonStringify } from './slowOperations.js'
import type { SystemPrompt } from './systemPromptType.js'
import { getToolSchemaCache } from './toolSchemaCache.js'
import { windowsPathToPosixPath } from './windowsPaths.js'
import { zodToJsonSchema } from './zodToJsonSchema.js'
// Extended BetaTool type with strict mode and defer_loading support
type BetaToolWithExtras = BetaTool & {
strict?: boolean
defer_loading?: boolean
cache_control?: {
type: 'ephemeral'
scope?: 'global' | 'org'
ttl?: '5m' | '1h'
}
eager_input_streaming?: boolean
}
export type CacheScope = 'global' | 'org'
export type SystemPromptBlock = {
text: string
cacheScope: CacheScope | null
}
// Fields to filter from tool schemas when swarms are not enabled
const SWARM_FIELDS_BY_TOOL: Record<string, string[]> = {
[EXIT_PLAN_MODE_V2_TOOL_NAME]: ['launchSwarm', 'teammateCount'],
[AGENT_TOOL_NAME]: ['name', 'team_name', 'mode'],
}
/**
* Filter swarm-related fields from a tool's input schema.
* Called at runtime when isAgentSwarmsEnabled() returns false.
*/
function filterSwarmFieldsFromSchema(
toolName: string,
schema: Anthropic.Tool.InputSchema,
): Anthropic.Tool.InputSchema {
const fieldsToRemove = SWARM_FIELDS_BY_TOOL[toolName]
if (!fieldsToRemove || fieldsToRemove.length === 0) {
return schema
}
// Clone the schema to avoid mutating the original
const filtered = { ...schema }
const props = filtered.properties
if (props && typeof props === 'object') {
const filteredProps = { ...(props as Record<string, unknown>) }
for (const field of fieldsToRemove) {
delete filteredProps[field]
}
filtered.properties = filteredProps
}
return filtered
}
export async function toolToAPISchema(
tool: Tool,
options: {
getToolPermissionContext: () => Promise<ToolPermissionContext>
tools: Tools
agents: AgentDefinition[]
allowedAgentTypes?: string[]
model?: string
/** When true, mark this tool with defer_loading for tool search */
deferLoading?: boolean
cacheControl?: {
type: 'ephemeral'
scope?: 'global' | 'org'
ttl?: '5m' | '1h'
}
},
): Promise<BetaToolUnion> {
// Session-stable base schema: name, description, input_schema, strict,
// eager_input_streaming. These are computed once per session and cached to
// prevent mid-session GrowthBook flips (tengu_tool_pear, tengu_fgts) or
// tool.prompt() drift from churning the serialized tool array bytes.
// See toolSchemaCache.ts for rationale.
//
// Cache key includes inputJSONSchema when present. StructuredOutput instances
// share the name 'StructuredOutput' but carry different schemas per workflow
// call — name-only keying returned a stale schema (5.4% → 51% err rate, see
// PR#25424). MCP tools also set inputJSONSchema but each has a stable schema,
// so including it preserves their GB-flip cache stability.
const cacheKey =
'inputJSONSchema' in tool && tool.inputJSONSchema
? `${tool.name}:${jsonStringify(tool.inputJSONSchema)}`
: tool.name
const cache = getToolSchemaCache()
let base = cache.get(cacheKey)
if (!base) {
const strictToolsEnabled =
checkStatsigFeatureGate_CACHED_MAY_BE_STALE('tengu_tool_pear')
// Use tool's JSON schema directly if provided, otherwise convert Zod schema
let input_schema = (
'inputJSONSchema' in tool && tool.inputJSONSchema
? tool.inputJSONSchema
: zodToJsonSchema(tool.inputSchema)
) as Anthropic.Tool.InputSchema
// Filter out swarm-related fields when swarms are not enabled
// This ensures external non-EAP users don't see swarm features in the schema
if (!isAgentSwarmsEnabled()) {
input_schema = filterSwarmFieldsFromSchema(tool.name, input_schema)
}
base = {
name: tool.name,
description: await tool.prompt({
getToolPermissionContext: options.getToolPermissionContext,
tools: options.tools,
agents: options.agents,
allowedAgentTypes: options.allowedAgentTypes,
}),
input_schema,
}
// Only add strict if:
// 1. Feature flag is enabled
// 2. Tool has strict: true
// 3. Model is provided and supports it (not all models support it right now)
// (if model is not provided, assume we can't use strict tools)
if (
strictToolsEnabled &&
tool.strict === true &&
options.model &&
modelSupportsStructuredOutputs(options.model)
) {
base.strict = true
}
// Enable fine-grained tool streaming via per-tool API field.
// Without FGTS, the API buffers entire tool input parameters before sending
// input_json_delta events, causing multi-minute hangs on large tool inputs.
// Gated to direct api.anthropic.com: proxies (LiteLLM etc.) and Bedrock/Vertex
// with Claude 4.5 reject this field with 400. See GH#32742, PR #21729.
if (
getAPIProvider() === 'firstParty' &&
isFirstPartyAnthropicBaseUrl() &&
(getFeatureValue_CACHED_MAY_BE_STALE('tengu_fgts', false) ||
isEnvTruthy(process.env.CLAUDE_CODE_ENABLE_FINE_GRAINED_TOOL_STREAMING))
) {
base.eager_input_streaming = true
}
cache.set(cacheKey, base)
}
// Per-request overlay: defer_loading and cache_control vary by call
// (tool search defers different tools per turn; cache markers move).
// Explicit field copy avoids mutating the cached base and sidesteps
// BetaTool.cache_control's `| null` clashing with our narrower type.
const schema: BetaToolWithExtras = {
name: base.name,
description: base.description,
input_schema: base.input_schema,
...(base.strict && { strict: true }),
...(base.eager_input_streaming && { eager_input_streaming: true }),
}
// Add defer_loading if requested (for tool search feature)
if (options.deferLoading) {
schema.defer_loading = true
}
if (options.cacheControl) {
schema.cache_control = options.cacheControl
}
// CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS is the kill switch for beta API
// shapes. Proxy gateways (ANTHROPIC_BASE_URL → LiteLLM → Bedrock) reject
// fields like defer_loading with "Extra inputs are not permitted". The gates
// above each field are scattered and not all provider-aware, so this strips
// everything not in the base-tool allowlist at the one choke point all tool
// schemas pass through — including fields added in the future.
// cache_control is allowlisted: the base {type: 'ephemeral'} shape is
// standard prompt caching (Bedrock/Vertex supported); the beta sub-fields
// (scope, ttl) are already gated upstream by shouldIncludeFirstPartyOnlyBetas
// which independently respects this kill switch.
// github.com/anthropics/claude-code/issues/20031
if (isEnvTruthy(process.env.CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS)) {
const allowed = new Set([
'name',
'description',
'input_schema',
'cache_control',
])
const stripped = Object.keys(schema).filter(k => !allowed.has(k))
if (stripped.length > 0) {
logStripOnce(stripped)
return {
name: schema.name,
description: schema.description,
input_schema: schema.input_schema,
...(schema.cache_control && { cache_control: schema.cache_control }),
}
}
}
// Note: We cast to BetaTool but the extra fields are still present at runtime
// and will be serialized in the API request, even though they're not in the SDK's
// BetaTool type definition. This is intentional for beta features.
return schema as BetaTool
}
let loggedStrip = false
function logStripOnce(stripped: string[]): void {
if (loggedStrip) return
loggedStrip = true
logForDebugging(
`[betas] Stripped from tool schemas: [${stripped.join(', ')}] (CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS=1)`,
)
}
/**
* Log stats about first block for analyzing prefix matching config
* (see https://console.statsig.com/4aF3Ewatb6xPVpCwxb5nA3/dynamic_configs/claude_cli_system_prompt_prefixes)
*/
export function logAPIPrefix(systemPrompt: SystemPrompt): void {
const [firstSyspromptBlock] = splitSysPromptPrefix(systemPrompt)
const firstSystemPrompt = firstSyspromptBlock?.text
logEvent('tengu_sysprompt_block', {
snippet: firstSystemPrompt?.slice(
0,
20,
) as AnalyticsMetadata_I_VERIFIED_THIS_IS_NOT_CODE_OR_FILEPATHS,
length: firstSystemPrompt?.length ?? 0,
hash: (firstSystemPrompt
? createHash('sha256').update(firstSystemPrompt).digest('hex')
: '') as AnalyticsMetadata_I_VERIFIED_THIS_IS_NOT_CODE_OR_FILEPATHS,
})
}
/**
* Split system prompt blocks by content type for API matching and cache control.
* See https://console.statsig.com/4aF3Ewatb6xPVpCwxb5nA3/dynamic_configs/claude_cli_system_prompt_prefixes
*
* Behavior depends on feature flags and options:
*
* 1. MCP tools present (skipGlobalCacheForSystemPrompt=true):
* Returns up to 3 blocks with org-level caching (no global cache on system prompt):
* - Attribution header (cacheScope=null)
* - System prompt prefix (cacheScope='org')
* - Everything else concatenated (cacheScope='org')
*
* 2. Global cache mode with boundary marker (1P only, boundary found):
* Returns up to 4 blocks:
* - Attribution header (cacheScope=null)
* - System prompt prefix (cacheScope=null)
* - Static content before boundary (cacheScope='global')
* - Dynamic content after boundary (cacheScope=null)
*
* 3. Default mode (3P providers, or boundary missing):
* Returns up to 3 blocks with org-level caching:
* - Attribution header (cacheScope=null)
* - System prompt prefix (cacheScope='org')
* - Everything else concatenated (cacheScope='org')
*/
export function splitSysPromptPrefix(
systemPrompt: SystemPrompt,
options?: { skipGlobalCacheForSystemPrompt?: boolean },
): SystemPromptBlock[] {
const useGlobalCacheFeature = shouldUseGlobalCacheScope()
if (useGlobalCacheFeature && options?.skipGlobalCacheForSystemPrompt) {
logEvent('tengu_sysprompt_using_tool_based_cache', {
promptBlockCount: systemPrompt.length,
})
// Filter out boundary marker, return blocks without global scope
let attributionHeader: string | undefined
let systemPromptPrefix: string | undefined
const rest: string[] = []
for (const prompt of systemPrompt) {
if (!prompt) continue
if (prompt === SYSTEM_PROMPT_DYNAMIC_BOUNDARY) continue // Skip boundary
if (prompt.startsWith('x-anthropic-billing-header')) {
attributionHeader = prompt
} else if (CLI_SYSPROMPT_PREFIXES.has(prompt)) {
systemPromptPrefix = prompt
} else {
rest.push(prompt)
}
}
const result: SystemPromptBlock[] = []
if (attributionHeader) {
result.push({ text: attributionHeader, cacheScope: null })
}
if (systemPromptPrefix) {
result.push({ text: systemPromptPrefix, cacheScope: 'org' })
}
const restJoined = rest.join('\n\n')
if (restJoined) {
result.push({ text: restJoined, cacheScope: 'org' })
}
return result
}
if (useGlobalCacheFeature) {
const boundaryIndex = systemPrompt.findIndex(
s => s === SYSTEM_PROMPT_DYNAMIC_BOUNDARY,
)
if (boundaryIndex !== -1) {
let attributionHeader: string | undefined
let systemPromptPrefix: string | undefined
const staticBlocks: string[] = []
const dynamicBlocks: string[] = []
for (let i = 0; i < systemPrompt.length; i++) {
const block = systemPrompt[i]
if (!block || block === SYSTEM_PROMPT_DYNAMIC_BOUNDARY) continue
if (block.startsWith('x-anthropic-billing-header')) {
attributionHeader = block
} else if (CLI_SYSPROMPT_PREFIXES.has(block)) {
systemPromptPrefix = block
} else if (i < boundaryIndex) {
staticBlocks.push(block)
} else {
dynamicBlocks.push(block)
}
}
const result: SystemPromptBlock[] = []
if (attributionHeader)
result.push({ text: attributionHeader, cacheScope: null })
if (systemPromptPrefix)
result.push({ text: systemPromptPrefix, cacheScope: null })
const staticJoined = staticBlocks.join('\n\n')
if (staticJoined)
result.push({ text: staticJoined, cacheScope: 'global' })
const dynamicJoined = dynamicBlocks.join('\n\n')
if (dynamicJoined) result.push({ text: dynamicJoined, cacheScope: null })
logEvent('tengu_sysprompt_boundary_found', {
blockCount: result.length,
staticBlockLength: staticJoined.length,
dynamicBlockLength: dynamicJoined.length,
})
return result
} else {
logEvent('tengu_sysprompt_missing_boundary_marker', {
promptBlockCount: systemPrompt.length,
})
}
}
let attributionHeader: string | undefined
let systemPromptPrefix: string | undefined
const rest: string[] = []
for (const block of systemPrompt) {
if (!block) continue
if (block.startsWith('x-anthropic-billing-header')) {
attributionHeader = block
} else if (CLI_SYSPROMPT_PREFIXES.has(block)) {
systemPromptPrefix = block
} else {
rest.push(block)
}
}
const result: SystemPromptBlock[] = []
if (attributionHeader)
result.push({ text: attributionHeader, cacheScope: null })
if (systemPromptPrefix)
result.push({ text: systemPromptPrefix, cacheScope: 'org' })
const restJoined = rest.join('\n\n')
if (restJoined) result.push({ text: restJoined, cacheScope: 'org' })
return result
}
export function appendSystemContext(
systemPrompt: SystemPrompt,
context: { [k: string]: string },
): string[] {
return [
...systemPrompt,
Object.entries(context)
.map(([key, value]) => `${key}: ${value}`)
.join('\n'),
].filter(Boolean)
}
export function prependUserContext(
messages: Message[],
context: { [k: string]: string },
): Message[] {
if (process.env.NODE_ENV === 'test') {
return messages
}
if (Object.entries(context).length === 0) {
return messages
}
return [
createUserMessage({
content: `<system-reminder>\nAs you answer the user's questions, you can use the following context:\n${Object.entries(
context,
)
.map(([key, value]) => `# ${key}\n${value}`)
.join('\n')}
IMPORTANT: this context may or may not be relevant to your tasks. You should not respond to this context unless it is highly relevant to your task.\n</system-reminder>\n`,
isMeta: true,
}),
...messages,
]
}
/**
* Log metrics about context and system prompt size
*/
export async function logContextMetrics(
mcpConfigs: Record<string, ScopedMcpServerConfig>,
toolPermissionContext: ToolPermissionContext,
): Promise<void> {
// Early return if logging is disabled
if (isAnalyticsDisabled()) {
return
}
const [{ tools: mcpTools }, tools, userContext, systemContext] =
await Promise.all([
prefetchAllMcpResources(mcpConfigs),
getTools(toolPermissionContext),
getUserContext(),
getSystemContext(),
])
// Extract individual context sizes and calculate total
const gitStatusSize = systemContext.gitStatus?.length ?? 0
const claudeMdSize = userContext.claudeMd?.length ?? 0
// Calculate total context size
const totalContextSize = gitStatusSize + claudeMdSize
// Get file count using ripgrep (rounded to nearest power of 10 for privacy)
const currentDir = getCwd()
const ignorePatternsByRoot = getFileReadIgnorePatterns(toolPermissionContext)
const normalizedIgnorePatterns = normalizePatternsToPath(
ignorePatternsByRoot,
currentDir,
)
const fileCount = await countFilesRoundedRg(
currentDir,
AbortSignal.timeout(1000),
normalizedIgnorePatterns,
)
// Calculate tool metrics
let mcpToolsCount = 0
let mcpServersCount = 0
let mcpToolsTokens = 0
let nonMcpToolsCount = 0
let nonMcpToolsTokens = 0
const nonMcpTools = tools.filter(tool => !tool.isMcp)
mcpToolsCount = mcpTools.length
nonMcpToolsCount = nonMcpTools.length
// Extract unique server names from MCP tool names (format: mcp__servername__toolname)
const serverNames = new Set<string>()
for (const tool of mcpTools) {
const parts = tool.name.split('__')
if (parts.length >= 3 && parts[1]) {
serverNames.add(parts[1])
}
}
mcpServersCount = serverNames.size
// Estimate tool tokens locally for analytics (avoids N API calls per session)
// Use inputJSONSchema (plain JSON Schema) when available, otherwise convert Zod schema
for (const tool of mcpTools) {
const schema =
'inputJSONSchema' in tool && tool.inputJSONSchema
? tool.inputJSONSchema
: zodToJsonSchema(tool.inputSchema)
mcpToolsTokens += roughTokenCountEstimation(jsonStringify(schema))
}
for (const tool of nonMcpTools) {
const schema =
'inputJSONSchema' in tool && tool.inputJSONSchema
? tool.inputJSONSchema
: zodToJsonSchema(tool.inputSchema)
nonMcpToolsTokens += roughTokenCountEstimation(jsonStringify(schema))
}
logEvent('tengu_context_size', {
git_status_size: gitStatusSize,
claude_md_size: claudeMdSize,
total_context_size: totalContextSize,
project_file_count_rounded: fileCount,
mcp_tools_count: mcpToolsCount,
mcp_servers_count: mcpServersCount,
mcp_tools_tokens: mcpToolsTokens,
non_mcp_tools_count: nonMcpToolsCount,
non_mcp_tools_tokens: nonMcpToolsTokens,
})
}
// TODO: Generalize this to all tools
export function normalizeToolInput<T extends Tool>(
tool: T,
input: z.infer<T['inputSchema']>,
agentId?: AgentId,
): z.infer<T['inputSchema']> {
switch (tool.name) {
case EXIT_PLAN_MODE_V2_TOOL_NAME: {
// Always inject plan content and file path for ExitPlanModeV2 so hooks/SDK get the plan.
// The V2 tool reads plan from file instead of input, but hooks/SDK
const plan = getPlan(agentId)
const planFilePath = getPlanFilePath(agentId)
// Persist file snapshot for CCR sessions so the plan survives pod recycling
void persistFileSnapshotIfRemote()
return plan !== null ? { ...input, plan, planFilePath } : input
}
case BashTool.name: {
// Validated upstream, won't throw
const parsed = BashTool.inputSchema.parse(input)
const { command, timeout, description } = parsed
const cwd = getCwd()
let normalizedCommand = command.replace(`cd ${cwd} && `, '')
if (getPlatform() === 'windows') {
normalizedCommand = normalizedCommand.replace(
`cd ${windowsPathToPosixPath(cwd)} && `,
'',
)
}
// Replace \\; with \; (commonly needed for find -exec commands)
normalizedCommand = normalizedCommand.replace(/\\\\;/g, '\\;')
// Logging for commands that are only echoing a string. This is to help us understand how often Claude talks via bash
if (/^echo\s+["']?[^|&;><]*["']?$/i.test(normalizedCommand.trim())) {
logEvent('tengu_bash_tool_simple_echo', {})
}
// Check for run_in_background (may not exist in schema if CLAUDE_CODE_DISABLE_BACKGROUND_TASKS is set)
const run_in_background =
'run_in_background' in parsed ? parsed.run_in_background : undefined
// SAFETY: Cast is safe because input was validated by .parse() above.
// TypeScript can't narrow the generic T based on switch(tool.name), so it
// doesn't know the return type matches T['inputSchema']. This is a fundamental
// TS limitation with generics, not bypassable without major refactoring.
return {
command: normalizedCommand,
description,
...(timeout !== undefined && { timeout }),
...(description !== undefined && { description }),
...(run_in_background !== undefined && { run_in_background }),
...('dangerouslyDisableSandbox' in parsed &&
parsed.dangerouslyDisableSandbox !== undefined && {
dangerouslyDisableSandbox: parsed.dangerouslyDisableSandbox,
}),
} as z.infer<T['inputSchema']>
}
case FileEditTool.name: {
// Validated upstream, won't throw
const parsedInput = FileEditTool.inputSchema.parse(input)
// This is a workaround for tokens claude can't see
const { file_path, edits } = normalizeFileEditInput({
file_path: parsedInput.file_path,
edits: [
{
old_string: parsedInput.old_string,
new_string: parsedInput.new_string,
replace_all: parsedInput.replace_all,
},
],
})
// SAFETY: See comment in BashTool case above
return {
replace_all: edits[0]!.replace_all,
file_path,
old_string: edits[0]!.old_string,
new_string: edits[0]!.new_string,
} as z.infer<T['inputSchema']>
}
case FileWriteTool.name: {
// Validated upstream, won't throw
const parsedInput = FileWriteTool.inputSchema.parse(input)
// Markdown uses two trailing spaces as a hard line break — don't strip.
const isMarkdown = /\.(md|mdx)$/i.test(parsedInput.file_path)
// SAFETY: See comment in BashTool case above
return {
file_path: parsedInput.file_path,
content: isMarkdown
? parsedInput.content
: stripTrailingWhitespace(parsedInput.content),
} as z.infer<T['inputSchema']>
}
case TASK_OUTPUT_TOOL_NAME: {
// Normalize legacy parameter names from AgentOutputTool/BashOutputTool
const legacyInput = input as Record<string, unknown>
const taskId =
legacyInput.task_id ?? legacyInput.agentId ?? legacyInput.bash_id
const timeout =
legacyInput.timeout ??
(typeof legacyInput.wait_up_to === 'number'
? legacyInput.wait_up_to * 1000
: undefined)
// SAFETY: See comment in BashTool case above
return {
task_id: taskId ?? '',
block: legacyInput.block ?? true,
timeout: timeout ?? 30000,
} as z.infer<T['inputSchema']>
}
default:
return input
}
}
// Strips fields that were added by normalizeToolInput before sending to API
// (e.g., plan field from ExitPlanModeV2 which has an empty input schema)
export function normalizeToolInputForAPI<T extends Tool>(
tool: T,
input: z.infer<T['inputSchema']>,
): z.infer<T['inputSchema']> {
switch (tool.name) {
case EXIT_PLAN_MODE_V2_TOOL_NAME: {
// Strip injected fields before sending to API (schema expects empty object)
if (
input &&
typeof input === 'object' &&
('plan' in input || 'planFilePath' in input)
) {
const { plan, planFilePath, ...rest } = input as Record<string, unknown>
return rest as z.infer<T['inputSchema']>
}
return input
}
case FileEditTool.name: {
// Strip synthetic old_string/new_string/replace_all from OLD sessions
// that were resumed from transcripts written before PR #20357, where
// normalizeToolInput used to synthesize these. Needed so old --resume'd
// transcripts don't send whole-file copies to the API. New sessions
// don't need this (synthesis moved to emission time).
if (input && typeof input === 'object' && 'edits' in input) {
const { old_string, new_string, replace_all, ...rest } =
input as Record<string, unknown>
return rest as z.infer<T['inputSchema']>
}
return input
}
default:
return input
}
}