feat: add cloudtrail tracking to execute_bash #2535

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merged

brandonskiser merged 1 commit into aws:main from abhraina-aws:ct

Aug 11, 2025

+124 −40

Contributor

abhraina-aws commented Aug 8, 2025

Issue #, if available:
Cloudtrail logs were not having QCLI identifier if we used execute_bash tool.

Description of changes:
Added the code to enable these identifires.

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

brandonskiser requested changes

View reviewed changes

crates/chat-cli/src/cli/chat/tools/execute/mod.rs Outdated Show resolved Hide resolved

crates/chat-cli/src/cli/chat/tools/execute/mod.rs Outdated Show resolved Hide resolved

crates/chat-cli/src/cli/chat/tools/execute/mod.rs

    
                  #[test]

                  fn test_cloudtrail_tracking_with_existing_env() {

                      // Set an existing AWS_EXECUTION_ENV value

                      unsafe {

Contributor

brandonskiser Aug 8, 2025

Let's not use unsafe - tests run in multiple threads within the same process. Instead, pass the Os type for getting and setting env vars

Contributor

kensave Aug 11, 2025

Are we still going to keep the unsafe?

Contributor Author

abhraina-aws Aug 12, 2025

There is more context here. According to him unsafe here is not unsafe. I had added a non unsafe version but that was very complicated. So he referred to this method.

brandonskiser reviewed

View reviewed changes

crates/chat-cli/src/cli/chat/tools/execute/mod.rs Outdated Show resolved Hide resolved

crates/chat-cli/src/cli/chat/tools/execute/mod.rs

+                  }
+                  #[tokio::test]
+                  async fn test_cloudtrail_tracking_with_existing_env() {

Contributor

brandonskiser Aug 8, 2025

don't construct Os like this, you could just do Os::new then follow with an unsafe set_var (note that this is safe because the test instance uses an in-memory hashmap)

crates/chat-cli/src/cli/chat/tools/execute/mod.rs Outdated Show resolved Hide resolved

crates/chat-cli/src/cli/chat/tools/mod.rs Outdated

                   Ok(())
               }
+              /// Helper function to set up environment variables with user agent metadata for CloudTrail tracking
+              pub fn user_agent_env_vars(os: &Os) -> std::collections::HashMap<String, String> {

Contributor

brandonskiser Aug 8, 2025

if this is including all env vars, probably better to instead call it env_vars_with_user_agent

brandonskiser approved these changes

View reviewed changes


          feat: add CloudTrail tracking to execute_bash tool

e670124

- Add CloudTrail user agent metadata to execute_bash tool for tracking
- Consolidate CloudTrail constants in consts.rs to eliminate duplication
- Create shared env_vars_with_user_agent() function used by both use_aws and execute_bash
- Add comprehensive tests for CloudTrail tracking functionality
- Support both Unix and Windows platforms with proper environment variable handling
- Maintain backward compatibility and thread-safe implementation

abhraina-aws force-pushed the ct branch from 05c0ec3 to e670124 Compare

August 9, 2025 01:50

kensave approved these changes

View reviewed changes

brandonskiser merged commit 6279b47 into aws:main

1 check passed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet