210577de28
Some checks failed
Code Review / ai-code-review (push) Successful in 13s
CD Pipeline / tests (push) Successful in 1m39s
CD Pipeline / build-and-deploy (push) Successful in 4m35s
CD Pipeline / post-deploy-checks (push) Successful in 1m51s
Ansible / Reboot Recovery Contract / validate (push) Has been cancelled
69 lines
2.3 KiB
Python
69 lines
2.3 KiB
Python
"""
|
|
AI technology radar readback.
|
|
|
|
Loads the committed read-only AI technology radar artifact. The radar is an
|
|
operator decision surface only; it does not approve SDK installs, paid API
|
|
calls, production routing, Telegram sends, host writes, or OpenClaw replacement.
|
|
"""
|
|
|
|
from __future__ import annotations
|
|
|
|
import json
|
|
from pathlib import Path
|
|
from typing import Any
|
|
|
|
from src.services.snapshot_paths import default_operations_dir
|
|
|
|
_DEFAULT_OPERATIONS_DIR = default_operations_dir(Path(__file__))
|
|
_SNAPSHOT_NAME = "ai-technology-radar-readback.snapshot.json"
|
|
|
|
|
|
def load_latest_ai_technology_radar_readback(
|
|
operations_dir: Path | None = None,
|
|
) -> dict[str, Any]:
|
|
"""Load the committed AI technology radar readback snapshot."""
|
|
directory = operations_dir or _DEFAULT_OPERATIONS_DIR
|
|
snapshot_path = directory / _SNAPSHOT_NAME
|
|
with snapshot_path.open(encoding="utf-8") as handle:
|
|
payload = json.load(handle)
|
|
|
|
if not isinstance(payload, dict):
|
|
raise ValueError(f"{snapshot_path}: expected JSON object")
|
|
if payload.get("schema_version") != "ai_technology_radar_readback_v1":
|
|
raise ValueError(f"{snapshot_path}: unexpected schema_version")
|
|
|
|
policy = payload.get("policy") or {}
|
|
forbidden_true = [
|
|
key
|
|
for key in [
|
|
"sdk_installation_approved",
|
|
"paid_api_calls_approved",
|
|
"production_routing_approved",
|
|
"telegram_send_approved",
|
|
"model_provider_switch_approved",
|
|
"host_write_approved",
|
|
"openclaw_replacement_approved",
|
|
]
|
|
if policy.get(key) is not False
|
|
]
|
|
if forbidden_true:
|
|
raise ValueError(f"{snapshot_path}: unsafe policy flags: {forbidden_true}")
|
|
if policy.get("read_only") is not True:
|
|
raise ValueError(f"{snapshot_path}: read_only policy must be true")
|
|
|
|
serialized = json.dumps(payload, ensure_ascii=False)
|
|
forbidden_fragments = [
|
|
"/Users/",
|
|
".claude/projects",
|
|
".codex",
|
|
"192.168.",
|
|
"auth.json",
|
|
"conversations",
|
|
"sessions",
|
|
]
|
|
leaked = [fragment for fragment in forbidden_fragments if fragment in serialized]
|
|
if leaked:
|
|
raise ValueError(f"{snapshot_path}: forbidden local or raw-history fragment: {leaked}")
|
|
|
|
return payload
|