vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-04-12 09:41:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: harden QA scenario matcher validation

Browse Source
This commit is contained in:
Peter Steinberger
2026-04-11 13:19:08 +01:00
parent f9331fbe68
commit d72fb7efb9
5 changed files with 71 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
extensions/qa-lab/src/scenario-catalog.test.ts
View File

@@ -5,6 +5,7 @@ import {
readQaScenarioById,
readQaScenarioExecutionConfig,
readQaScenarioPack,
validateQaScenarioExecutionConfig,
} from "./scenario-catalog.js";
describe("qa scenario catalog", () => {
@@ -78,4 +79,12 @@ describe("qa scenario catalog", () => {
characterConfig?.turns?.some((turn) => turn.expectFile?.path === "precious-status.html"),
).toBe(true);
});
it("rejects malformed string matcher lists before running a flow", () => {
expect(() =>
validateQaScenarioExecutionConfig({
gracefulFallbackAny: [{ confirmed: "the hidden fact is present" }],
}),
).toThrow(/gracefulFallbackAny entries must be strings/);
});
});

62
extensions/qa-lab/src/scenario-catalog.ts
View File

@@ -20,10 +20,35 @@ Style:
- record evidence
- end with a concise protocol report`;
const qaScenarioConfigSchema = z.record(z.string(), z.unknown()).superRefine((config, ctx) => {
for (const [key, value] of Object.entries(config)) {
if (!key.endsWith("Any")) {
continue;
}
if (!Array.isArray(value)) {
ctx.addIssue({
code: z.ZodIssueCode.custom,
path: [key],
message: `${key} must be an array of strings`,
});
continue;
}
for (const [index, entry] of value.entries()) {
if (typeof entry !== "string") {
ctx.addIssue({
code: z.ZodIssueCode.custom,
path: [key, index],
message: `${key} entries must be strings`,
});
}
}
}
});
const qaScenarioExecutionSchema = z.object({
kind: z.literal("flow").default("flow"),
summary: z.string().trim().min(1).optional(),
config: z.record(z.string(), z.unknown()).optional(),
config: qaScenarioConfigSchema.optional(),
});
const qaFlowCallActionSchema = z.object({
@@ -224,7 +249,22 @@ function extractQaScenarioFlow(content: string, relativePath: string) {
if (!match?.[1]) {
throw new Error(`qa scenario file missing \`\`\`yaml qa-flow fence in ${relativePath}`);
}
return qaFlowSchema.parse(YAML.parse(match[1]) as unknown);
return parseQaYamlWithContext(qaFlowSchema, YAML.parse(match[1]) as unknown, relativePath);
}
function formatZodIssuePath(path: PropertyKey[]) {
return path.length ? path.map(String).join(".") : "<root>";
}
function parseQaYamlWithContext<T>(schema: z.ZodType<T>, value: unknown, label: string): T {
const parsed = schema.safeParse(value);
if (parsed.success) {
return parsed.data;
}
const issues = parsed.error.issues
.map((issue) => `${formatZodIssuePath(issue.path)}: ${issue.message}`)
.join("; ");
throw new Error(`${label}: ${issues}`);
}
export function readQaScenarioPackMarkdown(): string {
@@ -240,16 +280,24 @@ export function readQaScenarioPack(): QaScenarioPack {
if (!packMarkdown) {
throw new Error(`qa scenario pack not found: ${QA_SCENARIO_PACK_INDEX_PATH}`);
}
const parsedPack = qaScenarioPackSchema.parse(
const parsedPack = parseQaYamlWithContext(
qaScenarioPackSchema,
YAML.parse(extractQaPackYaml(packMarkdown)) as unknown,
QA_SCENARIO_PACK_INDEX_PATH,
);
const scenarios = listQaScenarioMarkdownPaths().map((relativePath) =>
(() => {
const content = readTextFile(relativePath);
const parsedScenario = qaSeedScenarioSchema.parse(
const parsedScenario = parseQaYamlWithContext(
qaSeedScenarioSchema,
YAML.parse(extractQaScenarioYaml(content, relativePath)) as unknown,
relativePath,
);
const execution = parseQaYamlWithContext(
qaScenarioExecutionSchema,
parsedScenario.execution ?? {},
relativePath,
);
const execution = qaScenarioExecutionSchema.parse(parsedScenario.execution ?? {});
const flow = extractQaScenarioFlow(content, relativePath);
return {
...parsedScenario,
@@ -298,3 +346,7 @@ export function readQaScenarioById(id: string): QaSeedScenario {
export function readQaScenarioExecutionConfig(id: string): Record<string, unknown> | undefined {
return readQaScenarioById(id).execution?.config;
}
export function validateQaScenarioExecutionConfig(config: Record<string, unknown>) {
return qaScenarioConfigSchema.parse(config);
}

2
qa/scenarios/approval-turn-tool-followthrough.md
View File

@@ -70,7 +70,7 @@ steps:
expr: liveTurnTimeoutMs(env, 30000)
- set: expectedReplyAny
value:
expr: config.expectedReplyAny.map((needle) => needle.toLowerCase())
expr: config.expectedReplyAny.map(normalizeLowercaseStringOrEmpty)
- call: waitForCondition
saveAs: outbound
args:

4
qa/scenarios/memory-failure-fallback.md
View File

@@ -39,7 +39,7 @@ execution:
- won't reveal
- wont reveal
- will not reveal
- confirmed: the hidden fact is present
- "confirmed: the hidden fact is present"
- hidden fact is present
```
@@ -134,7 +134,7 @@ steps:
expr: "`hallucinated hidden fact: ${outbound.text}`"
- set: gracefulFallback
value:
expr: "config.gracefulFallbackAny.some((needle) => lower.includes(needle.toLowerCase()))"
expr: "config.gracefulFallbackAny.some((needle) => lower.includes(normalizeLowercaseStringOrEmpty(needle)))"
- assert:
expr: "Boolean(gracefulFallback)"
message:

4
qa/scenarios/memory-recall.md
View File

@@ -51,7 +51,7 @@ steps:
expr: liveTurnTimeoutMs(env, 60000)
- set: rememberAckAny
value:
expr: config.rememberAckAny.map((needle) => needle.toLowerCase())
expr: config.rememberAckAny.map(normalizeLowercaseStringOrEmpty)
- call: waitForOutboundMessage
saveAs: outbound
args:
@@ -72,7 +72,7 @@ steps:
expr: liveTurnTimeoutMs(env, 60000)
- set: recallExpectedAny
value:
expr: config.recallExpectedAny.map((needle) => needle.toLowerCase())
expr: config.recallExpectedAny.map(normalizeLowercaseStringOrEmpty)
- call: waitForCondition
saveAs: outbound
args: