Fix third-party package URL confirmation

Author: ruibaby

src/commands/plugin/__test__/plugin-entry.spec.ts

@@ -73,7 +73,15 @@ test("tryRunPluginCommand dispatches single-plugin upgrade commands", async () =
 
   await expect(
     tryRunPluginCommand(
-      ["plugin", "upgrade", "demo-plugin", "--url", "https://example.com/plugin.jar", "--json"],
+      [
+        "plugin",
+        "upgrade",
+        "demo-plugin",
+        "--url",
+        "https://example.com/plugin.jar",
+        "--yes",
+        "--json",
+      ],
       runtimeMock as never,
     ),
   ).resolves.toBe(true);
@@ -285,7 +293,7 @@ test("tryRunPluginCommand dispatches install subcommands from urls", async () =>
 
   await expect(
     tryRunPluginCommand(
-      ["plugin", "install", "--url", "https://example.com/plugin.jar", "--json"],
+      ["plugin", "install", "--url", "https://example.com/plugin.jar", "--yes", "--json"],
       runtimeMock as never,
     ),
   ).resolves.toBe(true);
@@ -297,6 +305,29 @@ test("tryRunPluginCommand dispatches install subcommands from urls", async () =>
   });
 });
 
+test("tryRunPluginCommand rejects third-party install urls without --yes outside interactive terminals", async () => {
+  silenceStdout();
+
+  const runtimeMock = createPluginRuntimeMock({
+    console: {
+      plugin: {
+        plugin: {
+          installPluginFromUri: vi.fn(),
+        },
+      },
+    },
+  });
+
+  await expect(
+    tryRunPluginCommand(
+      ["plugin", "install", "--url", "https://example.com/plugin.jar", "--json"],
+      runtimeMock as never,
+    ),
+  ).rejects.toThrow(/requires confirmation in interactive mode.*or use --yes/i);
+
+  expect(runtimeMock.getClientsForOptions).not.toHaveBeenCalled();
+});
+
 test("tryRunPluginCommand dispatches install subcommands from files", async () => {
   silenceStdout();
 

src/commands/plugin/index.ts

@@ -21,6 +21,7 @@ import { CliError } from "../../utils/errors.js";
 import { parseBooleanOption } from "../../utils/options.js";
 import { printJson } from "../../utils/output.js";
 import { loadFileAsJar } from "../../utils/package-file.js";
+import { confirmThirdPartyPackageSource } from "../../utils/remote-source.js";
 import { RuntimeContext } from "../../utils/runtime.js";
 import { printPlugin, printPluginList } from "./format.js";
 
@@ -670,13 +671,28 @@ function buildPluginCli(runtime: RuntimeContext): CAC {
     .option("--url <url>", "Remote JAR URL")
     .option("--uri <uri>", "Remote JAR URI")
     .option("--file <path>", "Local JAR file path")
+    .option("-y, --yes", "Skip third-party URL confirmation")
     .action(async (options: PluginCommandOptions) => {
       if (options.online) {
         throw new CliError("`halo plugin install` does not support --online. Use --url or --file.");
       }
 
-      const { clients } = await runtime.getClientsForOptions(options);
       const source = resolvePluginInstallSource(options);
+      if (
+        source.url &&
+        !(await confirmThirdPartyPackageSource(
+          source.url,
+          {
+            commandPath: "halo plugin install",
+            actionLabel: "installing plugin",
+          },
+          options,
+        ))
+      ) {
+        return;
+      }
+
+      const { clients } = await runtime.getClientsForOptions(options);
       const response = source.url
         ? await clients.console.plugin.plugin.installPluginFromUri({
             installFromUriRequest: { uri: source.url },
@@ -721,8 +737,22 @@ function buildPluginCli(runtime: RuntimeContext): CAC {
         return;
       }
 
-      const { clients } = await runtime.getClientsForOptions(options);
       const source = resolvePluginUpgradeSource(options);
+      if (
+        source.kind === "url" &&
+        !(await confirmThirdPartyPackageSource(
+          source.url,
+          {
+            commandPath: "halo plugin upgrade",
+            actionLabel: `upgrading plugin ${target.name}`,
+          },
+          options,
+        ))
+      ) {
+        return;
+      }
+
+      const { clients } = await runtime.getClientsForOptions(options);
 
       let response;
 

src/commands/theme/__test__/theme-entry.spec.ts

@@ -241,7 +241,7 @@ test("tryRunThemeCommand dispatches install subcommands from urls", async () =>
 
   await expect(
     tryRunThemeCommand(
-      ["theme", "install", "--url", "https://example.com/theme.zip", "--json"],
+      ["theme", "install", "--url", "https://example.com/theme.zip", "--yes", "--json"],
       runtimeMock as never,
     ),
   ).resolves.toBe(true);
@@ -253,6 +253,29 @@ test("tryRunThemeCommand dispatches install subcommands from urls", async () =>
   });
 });
 
+test("tryRunThemeCommand rejects third-party install urls without --yes outside interactive terminals", async () => {
+  silenceStdout();
+
+  const runtimeMock = createThemeRuntimeMock({
+    console: {
+      theme: {
+        theme: {
+          installThemeFromUri: vi.fn(),
+        },
+      },
+    },
+  });
+
+  await expect(
+    tryRunThemeCommand(
+      ["theme", "install", "--url", "https://example.com/theme.zip", "--json"],
+      runtimeMock as never,
+    ),
+  ).rejects.toThrow(/requires confirmation in interactive mode.*or use --yes/i);
+
+  expect(runtimeMock.getClientsForOptions).not.toHaveBeenCalled();
+});
+
 test("tryRunThemeCommand rejects unknown online install flags during parsing", async () => {
   silenceStdout();
 
@@ -335,7 +358,15 @@ test("tryRunThemeCommand dispatches upgrade subcommands from urls", async () =>
 
   await expect(
     tryRunThemeCommand(
-      ["theme", "upgrade", "demo-theme", "--url", "https://example.com/theme.zip", "--json"],
+      [
+        "theme",
+        "upgrade",
+        "demo-theme",
+        "--url",
+        "https://example.com/theme.zip",
+        "--yes",
+        "--json",
+      ],
       runtimeMock as never,
     ),
   ).resolves.toBe(true);

src/commands/theme/index.ts

@@ -16,6 +16,7 @@ import { confirmDangerousAction } from "../../utils/confirmation.js";
 import { CliError } from "../../utils/errors.js";
 import { printJson } from "../../utils/output.js";
 import { loadFileAsZip } from "../../utils/package-file.js";
+import { confirmThirdPartyPackageSource } from "../../utils/remote-source.js";
 import { RuntimeContext } from "../../utils/runtime.js";
 import { printTheme, printThemeList } from "./format.js";
 
@@ -592,13 +593,28 @@ function buildThemeCli(runtime: RuntimeContext): CAC {
     .option("--url <url>", "Remote ZIP URL")
     .option("--uri <uri>", "Remote ZIP URI")
     .option("--file <path>", "Local ZIP file path")
+    .option("-y, --yes", "Skip third-party URL confirmation")
     .action(async (options: ThemeCommandOptions) => {
       if (options.online) {
         throw new CliError("`halo theme install` does not support --online. Use --url or --file.");
       }
 
-      const { clients } = await runtime.getClientsForOptions(options);
       const source = resolveThemeInstallSource(options);
+      if (
+        source.url &&
+        !(await confirmThirdPartyPackageSource(
+          source.url,
+          {
+            commandPath: "halo theme install",
+            actionLabel: "installing theme",
+          },
+          options,
+        ))
+      ) {
+        return;
+      }
+
+      const { clients } = await runtime.getClientsForOptions(options);
       const formData = new FormData();
       if (source.file) {
         formData.append("file", await loadFileAsZip(source.file));
@@ -648,8 +664,22 @@ function buildThemeCli(runtime: RuntimeContext): CAC {
         return;
       }
 
-      const { clients } = await runtime.getClientsForOptions(options);
       const source = resolvePluginUpgradeSource(options);
+      if (
+        source.kind === "url" &&
+        !(await confirmThirdPartyPackageSource(
+          source.url,
+          {
+            commandPath: "halo theme upgrade",
+            actionLabel: `upgrading theme ${target.name}`,
+          },
+          options,
+        ))
+      ) {
+        return;
+      }
+
+      const { clients } = await runtime.getClientsForOptions(options);
       let response;
 
       try {

src/utils/__test__/remote-source.spec.ts

@@ -0,0 +1,99 @@
+import { afterEach, expect, test, vi } from "vitest";
+
+vi.mock("@inquirer/prompts", () => ({
+  confirm: vi.fn(),
+}));
+
+import { confirm } from "@inquirer/prompts";
+
+import {
+  confirmThirdPartyPackageSource,
+  requiresThirdPartyPackageSourceConfirmation,
+} from "../remote-source.js";
+
+afterEach(() => {
+  vi.restoreAllMocks();
+});
+
+test("requiresThirdPartyPackageSourceConfirmation skips halo.run URLs", () => {
+  expect(
+    requiresThirdPartyPackageSourceConfirmation("https://www.halo.run/plugins/demo-plugin.jar"),
+  ).toBe(false);
+});
+
+test("requiresThirdPartyPackageSourceConfirmation skips file URIs", () => {
+  expect(requiresThirdPartyPackageSourceConfirmation("file:///tmp/demo-plugin.jar")).toBe(false);
+});
+
+test("requiresThirdPartyPackageSourceConfirmation flags third-party URLs", () => {
+  expect(
+    requiresThirdPartyPackageSourceConfirmation("https://downloads.example.com/demo-plugin.jar"),
+  ).toBe(true);
+});
+
+test("confirmThirdPartyPackageSource skips prompting with --yes", async () => {
+  await expect(
+    confirmThirdPartyPackageSource(
+      "https://downloads.example.com/demo-plugin.jar",
+      {
+        commandPath: "halo plugin install",
+        actionLabel: "installing plugin",
+      },
+      { yes: true },
+    ),
+  ).resolves.toBe(true);
+
+  expect(confirm).not.toHaveBeenCalled();
+});
+
+test("confirmThirdPartyPackageSource requires --yes outside interactive terminals", async () => {
+  Object.defineProperty(process.stdin, "isTTY", {
+    value: false,
+    configurable: true,
+  });
+  Object.defineProperty(process.stdout, "isTTY", {
+    value: false,
+    configurable: true,
+  });
+
+  await expect(
+    confirmThirdPartyPackageSource(
+      "https://downloads.example.com/demo-plugin.jar",
+      {
+        commandPath: "halo plugin install",
+        actionLabel: "installing plugin",
+      },
+      {},
+    ),
+  ).rejects.toThrow(/requires confirmation in interactive mode.*or use --yes/i);
+});
+
+test("confirmThirdPartyPackageSource returns false when user cancels", async () => {
+  Object.defineProperty(process.stdin, "isTTY", {
+    value: true,
+    configurable: true,
+  });
+  Object.defineProperty(process.stdout, "isTTY", {
+    value: true,
+    configurable: true,
+  });
+
+  vi.mocked(confirm).mockResolvedValue(false);
+  const stdoutSpy = vi.spyOn(process.stdout, "write").mockImplementation(() => true);
+
+  await expect(
+    confirmThirdPartyPackageSource(
+      "https://downloads.example.com/demo-plugin.jar",
+      {
+        commandPath: "halo plugin install",
+        actionLabel: "installing plugin",
+      },
+      {},
+    ),
+  ).resolves.toBe(false);
+
+  expect(stdoutSpy).toHaveBeenCalledWith(
+    "Warning: remote package URL is not hosted on www.halo.run: https://downloads.example.com/demo-plugin.jar\n",
+  );
+  expect(stdoutSpy).toHaveBeenCalledWith("Cancelled installing plugin.\n");
+});