import crypto from "crypto";
import path from "path";
import fs from "fs";
import { fileURLToPath } from "url";
import { dirname } from "path";
import { lockWorkspaceRoot } from "../../core/path-resolver.js";
import { bootstrapPlanHandler } from "../../tools/bootstrap_tool.js";
const REPO_ROOT = process.cwd();
try {
lockWorkspaceRoot(REPO_ROOT);
} catch (e) {
// Ignore if already locked in some environments, but normally we lock it here
}
const __filename = fileURLToPath(import.meta.url);
// Mock environment
const SECRET = "test-secret-123";
process.env.ATLAS-GATE_BOOTSTRAP_SECRET = SECRET;
const PLAN_CONTENT = `<!--
ATLAS-GATE_PLAN_HASH: PENDING_HASH
ROLE: ANTIGRAVITY
STATUS: APPROVED
-->
# Plan Metadata
This is the foundation plan that bootstraps the ATLAS-GATE MCP governance system.
---
# Scope & Constraints
This plan is scoped to the ATLAS-GATE MCP server repository and establishes baseline governance.
Operations MUST NOT:
- Modify files outside the workspace
- Execute arbitrary shell commands
- Delete files
---
# Phase Definitions
## Phase: BOOTSTRAP_FOUNDATION
Phase ID: BOOTSTRAP_PHASE
Objective: Establish the foundation governance and audit systems.
Allowed operations: CREATE, MODIFY
Forbidden operations: DELETE
Required intent artifacts: Foundation governance specification
Verification commands: npm run verify
Expected outcomes: System operational
Failure stop conditions: Any system failure
---
# Path Allowlist
- .atlas-gate/
- docs/
- core/
- tools/
---
# Verification Gates
- System must start without errors
---
# Forbidden Actions
- DELETE operations on critical files
- Modification of files outside allowlist
---
# Rollback / Failure Policy
On failure:
1. Revert changes
2. Log to audit trail
3. Require manual review
`;
// Payload
const payload = {
repoIdentifier: path.basename(REPO_ROOT),
timestamp: Date.now(),
nonce: crypto.randomUUID(),
action: "BOOTSTRAP_CREATE_FOUNDATION_PLAN"
};
// Sign
const hmac = crypto.createHmac("sha256", SECRET);
hmac.update(JSON.stringify(payload));
const signature = hmac.digest("hex");
async function testBootstrap() {
console.log("Running Bootstrap Test...");
try {
const result = await bootstrapPlanHandler({
path: REPO_ROOT,
planContent: PLAN_CONTENT,
payload,
signature
});
console.log("SUCCESS:", result);
// Verify file exists
const resultObj = JSON.parse(result.content[0].text);
if (fs.existsSync(resultObj.planPath)) {
console.log("Plan file verified on disk.");
} else {
console.error("Plan file MISSING from disk.");
process.exit(1);
}
// Verify governance state
const govState = JSON.parse(fs.readFileSync(path.join(REPO_ROOT, ".atlas-gate", "governance.json"), "utf8"));
if (govState.bootstrap_enabled === false && govState.approved_plans_count === 1) {
console.log("Governance state updated correctly.");
} else {
console.error("Governance state NOT updated:", govState);
process.exit(1);
}
} catch (err) {
console.error("FAILURE:", err);
process.exit(1);
}
}
// Reset state for test
const govPath = path.join(REPO_ROOT, ".atlas-gate", "governance.json");
fs.writeFileSync(govPath, JSON.stringify({
bootstrap_enabled: true,
approved_plans_count: 0
}, null, 2));
testBootstrap();
