j, UdZddlmZddlZddlZddlZddlZddlZddlmZm Z ddl m Z ddl m Z mZmZdZded <d Zded <d Zded <dZded<dZded<dZded<dZded<dZded<dZded<dZded<eeeeeeeeehZded<dZded <ehd!Zded"<Gd#d$eZ ejBd%Z"d&ed'<d(Z#ded)<d*Z$ded+<dd,d8d-Z%d9d.Z&d:d/Z'd0d1d;d2Z(duanu_v2.owner_gemini_trigger_router_audit — task-2641 신규 audit log. 회장 verbatim 12 (2026-05-23) 1:1 박제 — OWNER_GEMINI_TRIGGER_UI_FALLBACK_MISROUTE 재발 방지 router audit. 본 모듈 책임 (spec §3.3, task md §재발 방지): - 신규 audit JSONL schema v1: ``anu_v2.owner_gemini_trigger_router_audit.v1`` - router lifecycle 한 행 = 한 record (freshness 평가 → nudge 결과 → final state) - 회장 verbatim §6 raw token 출력 금지: token_hash_prefix (12 hex char) 만 - 회장 verbatim §8 403 발생 시 X-Accepted-GitHub-Permissions / X-Accepted-OAuth-Scopes / X-OAuth-Scopes / X-RateLimit-Remaining record (raw token redact) - dedupe 보조 helper: nudge_count_for_pr_head — owner_trigger_only validate_decision 의 ``nudge_count_for_pr_head=0`` 검사를 router 진입 시 미리 컴퓨트 one-way isolation: anu_v2/ 외부 import 금지. live cokacdir / gh / merge 호출 0. ) annotationsN)datetimetimezone)Path)AnyFinalIteratorz5memory/events/owner-gemini-trigger-router-audit.jsonlz Final[str]AUDIT_REL_PATHz+anu_v2.owner_gemini_trigger_router_audit.v1 AUDIT_SCHEMAFRESH STATE_FRESH NUDGE_POSTEDSTATE_NUDGE_POSTED NUDGE_DEDUPEDSTATE_NUDGE_DEDUPED NUDGE_FAILEDSTATE_NUDGE_FAILEDGEMINI_EXTERNAL_TRIGGER_STALE#STATE_GEMINI_EXTERNAL_TRIGGER_STALECHAIR_UI_FALLBACK_REQUIRED STATE_CHAIR_UI_FALLBACK_REQUIREDNUDGE_PERMISSION_DENIEDSTATE_NUDGE_PERMISSION_DENIEDNOT_GEMINI_TRIGGERSTATE_NOT_GEMINI_TRIGGERzFinal[frozenset[str]] ALL_STATES)zx-accepted-github-permissionszx-accepted-oauth-scopeszx-oauth-scopeszx-ratelimit-remainingzFinal[tuple[str, ...]]RECORDED_403_HEADERS>reasonschemats_utctask_id pr_number final_state nudge_result token_presentfreshness_statenudge_attemptedcurrent_head_shatoken_hash_prefixtoken_value_loggedgemini_commit_id_observedpermission_header_diagnosticsALLOWED_AUDIT_KEYSceZdZdZy)RouterAuditRedactionErroruCaudit record 에 raw token / Authorization / api_key 누출 의심.N)__name__ __module__ __qualname____doc__J/home/jay/workspace/scripts/../anu_v2/owner_gemini_trigger_router_audit.pyr/r/WsMr5r/z5(?i)(token|authorization|api[_-]?key|secret|password)zFinal[re.Pattern[str]]_REDACT_KEY_REzBearer ghp_ github_pat_ghu_ghs_ghr__REDACT_VALUE_SENTINELSz REDACTED_PLACEHOLDER_depthcdk\rtS|t|tttfr|St|t r7|j }tD]}|j |vstcS|St|trYi}|jD]B\}}t |}tj|r t||<0t|dz||<D|St|tr|Dcgc]}t|dzc}St|trtfd|DS t |} | j } tD]}|j | vstcS| Scc}w#t$r tcYSwxYw)uDdict/list/tuple/str 재귀 redact (token / Authorization / api_key).r@c3>K|]}t|dzyw)rDr@N_redact).0vrAs r6 z_redact..sAqWQvz22As)r? isinstanceboolintfloatstrlowerr>dictitemsr7searchrGlisttuple Exception) datarArPsentinelresultkeyvaluekey_strrItext text_lowers ` r6rGrGmsr {## |z$sE(:; $ / ,H~~5(++ , $**, DJC#hG$$W-"6w")% "Cw  D  $7;> z )' '( K= $##$s0E1/ E66FFct|S)u9public alias — router 코드가 명시적으로 호출.rF)rWs r6redact_diagnosticsr`s 4=r5ct|tsiS|jDcic]\}}t|j |!}}}i}t D]}||vs||||<t |}t|tsiS|Scc}}w)uF403 응답 header dict 에서 RECORDED_403_HEADERS 만 추출 (case-insensitive). 회장 verbatim §8 + spec §2.7 1:1: ``X-Accepted-GitHub-Permissions`` / ``X-Accepted-OAuth-Scopes`` / ``X-OAuth-Scopes`` / ``X-RateLimit-Remaining`` 만 화이트리스트로 캡처. token / Authorization / api_key 절대 0. )rKrQrRrOrPrrG)response_headerskrIloweredout header_keyredacteds r6extract_403_headersrhs & - -=-C-C-EFTQs1v||~q FGFC*2  %j1C O2s|H h % OGs$B )lengthct|tr|s tdtj|j dj }|d|S)uOtoken → SHA256 16진수 앞 ``length`` 자리. spec §3.3 1:1 (12 hex chars).z token must be a non-empty stringutf-8N)rKrO ValueErrorhashlibsha256encode hexdigest)tokenrjdigests r6r)r)sF eS !;<< ^^ELL1 2 < < >F '6?r5chtjtjj dS)Nseconds)timespec)rnowrutc isoformatr4r5r6_now_isorzs# << % / / / CCr5ct|jtz }|rtdt ||j ddur tdt j|d}d}|D]}||vstd|y) uDrecord 에 raw token / Authorization 값 누출 차단 (spec §3.3).zdisallowed audit keys: r*Fz token_value_logged must be False) ensure_asciir8z%audit record contains token sentinel N)setkeysr-r/sortedgetjsondumps)recordextra serialised sentinelsss r6_ensure_no_secret_leakrs  !3 3E '%fUm_ 5  zz&'u4'(JKKF7JJI  ?+7u= r5cJeZdZdZd dZed dZd dZd dZd dZ ddZ y)OwnerGeminiTriggerRouterAudituappend-only audit JSONL for router lifecycle. 한 router.route_for_pr 호출 = 한 record. atomic via ``fcntl.flock(LOCK_EX)``. c`t|j}||_|tz |_yN)rresolve_workspace_rootr _path)selfworkspace_rootroots r6__init__z&OwnerGeminiTriggerRouterAudit.__init__s)N#++-#N* r5c|jSr)rrs r6pathz"OwnerGeminiTriggerRouterAudit.paths zzr5cR|jjjddy)NT)parentsexist_ok)rparentmkdirrs r6_ensure_parentz,OwnerGeminiTriggerRouterAudit._ensure_parents tr?rGr`rhr)rzrr__all__r4r5r6rsy"#  '''U TH jH" Z!!/J/"1Z1!/J/2Q#ZQ/K *K,EzE';*;$-+(%   % ! 0,-6-)*N N *4<*&3/$0j/)*!H *46D$[8[8| r5