continuedev
diff --git a/‎.github/workflows/cli-pr-checks.yml‎
Lines changed: 16 additions & 0 deletions b/‎.github/workflows/cli-pr-checks.yml‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎.vscode/settings.json‎
Lines changed: 2 additions & 1 deletion b/‎.vscode/settings.json‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎binary/package-lock.json‎
Lines changed: 12 additions & 6 deletions b/‎binary/package-lock.json‎
Lines changed: 12 additions & 6 deletions
diff --git a/‎core/autocomplete/CompletionProvider.ts‎
Lines changed: 6 additions & 1 deletion b/‎core/autocomplete/CompletionProvider.ts‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎core/autocomplete/prefiltering/index.ts‎
Lines changed: 1 addition & 1 deletion b/‎core/autocomplete/prefiltering/index.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎core/commands/slash/built-in-legacy/onboard.ts‎
Lines changed: 2 additions & 5 deletions b/‎core/commands/slash/built-in-legacy/onboard.ts‎
Lines changed: 2 additions & 5 deletions
diff --git a/‎core/context/providers/FileContextProvider.ts‎
Lines changed: 16 additions & 0 deletions b/‎core/context/providers/FileContextProvider.ts‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎core/context/providers/OpenFilesContextProvider.ts‎
Lines changed: 15 additions & 1 deletion b/‎core/context/providers/OpenFilesContextProvider.ts‎
Lines changed: 15 additions & 1 deletion
diff --git a/‎core/context/providers/ProblemsContextProvider.ts‎
Lines changed: 10 additions & 1 deletion b/‎core/context/providers/ProblemsContextProvider.ts‎
Lines changed: 10 additions & 1 deletion
diff --git a/‎core/indexing/continueignore.ts‎
Lines changed: 26 additions & 0 deletions b/‎core/indexing/continueignore.ts‎
Lines changed: 26 additions & 0 deletions
@@ -25,6 +25,14 @@ jobs:
           cache: "npm"
           cache-dependency-path: extensions/cli/package-lock.json
 
+      - name: Setup packages
+        uses: ./.github/actions/setup-packages
+      - name: Setup core component
+        uses: ./.github/actions/setup-component
+        with:
+          component: core
+          include-root: true
+
       - name: Install dependencies
         run: |
           cd extensions/cli
@@ -53,6 +61,14 @@ jobs:
           cache: "npm"
           cache-dependency-path: extensions/cli/package-lock.json
 
+      - name: Setup packages
+        uses: ./.github/actions/setup-packages
+      - name: Setup core component
+        uses: ./.github/actions/setup-component
+        with:
+          component: core
+          include-root: true
+
       - name: Install dependencies
         run: |
           cd extensions/cli
 
@@ -42,7 +42,8 @@
     "extensions/vscode/e2e/_output": true,
     "extensions/vscode/e2e/storage": true,
     "extensions/vscode/e2e/vsix": true,
-    "extensions/.continue-debug": true
+    "extensions/.continue-debug": true,
+    "extensions/cli/dist/**": true
     // "sync/**": true
   },
   "editor.formatOnSave": true,
 
@@ -6,12 +6,13 @@ import { DEFAULT_AUTOCOMPLETE_OPTS } from "../util/parameters.js";
 import { shouldCompleteMultiline } from "./classification/shouldCompleteMultiline.js";
 import { ContextRetrievalService } from "./context/ContextRetrievalService.js";
 
+import { isSecurityConcern } from "../indexing/ignore.js";
 import { BracketMatchingService } from "./filtering/BracketMatchingService.js";
 import { CompletionStreamer } from "./generation/CompletionStreamer.js";
 import { postprocessCompletion } from "./postprocessing/index.js";
 import { shouldPrefilter } from "./prefiltering/index.js";
-import { renderPromptWithTokenLimit } from "./templating/index.js";
 import { getAllSnippetsWithoutRace } from "./snippets/index.js";
+import { renderPromptWithTokenLimit } from "./templating/index.js";
 import { GetLspDefinitionsFunction } from "./types.js";
 import { AutocompleteDebouncer } from "./util/AutocompleteDebouncer.js";
 import { AutocompleteLoggingService } from "./util/AutocompleteLoggingService.js";
@@ -150,6 +151,10 @@ export class CompletionProvider {
         return undefined;
       }
 
+      if (isSecurityConcern(input.filepath)) {
+        return undefined;
+      }
+
       const options = await this._getAutocompleteOptions(llm);
 
       // Debounce
 
@@ -4,7 +4,7 @@ import { IDE } from "../..";
 import {
   getGlobalContinueIgArray,
   getWorkspaceContinueIgArray,
-} from "../../indexing/ignore";
+} from "../../indexing/continueignore";
 import { getConfigJsonPath } from "../../util/paths";
 import { findUriInDirs } from "../../util/uri";
 import { HelperVars } from "../util/HelperVars";
 
@@ -1,11 +1,8 @@
 import ignore from "ignore";
 
 import type { FileType, IDE, SlashCommand } from "../../..";
-import {
-  DEFAULT_IGNORE,
-  getGlobalContinueIgArray,
-  gitIgArrayFromFile,
-} from "../../../indexing/ignore";
+import { getGlobalContinueIgArray } from "../../../indexing/continueignore";
+import { DEFAULT_IGNORE, gitIgArrayFromFile } from "../../../indexing/ignore";
 import { renderChatMessage } from "../../../util/messageContent";
 import {
   findUriInDirs,
 
@@ -6,6 +6,7 @@ import {
   ContextSubmenuItem,
   LoadSubmenuItemsArgs,
 } from "../../";
+import { isSecurityConcern } from "../../indexing/ignore";
 import { walkDirs } from "../../indexing/walkDir";
 import {
   getShortestUniqueRelativeUriPaths,
@@ -36,6 +37,21 @@ class FileContextProvider extends BaseContextProvider {
       await extras.ide.getWorkspaceDirs(),
     );
 
+    if (isSecurityConcern(relativePathOrBasename)) {
+      return [
+        {
+          description: last2Parts,
+          content:
+            "Content redacted, this file cannot be viewed for security reasons",
+          name: baseName,
+          uri: {
+            type: "file",
+            value: fileUri,
+          },
+        },
+      ];
+    }
+
     return [
       {
         name: baseName,
 
@@ -3,6 +3,7 @@ import {
   ContextProviderDescription,
   ContextProviderExtras,
 } from "../../index.js";
+import { isSecurityConcern } from "../../indexing/ignore.js";
 import { getUriDescription } from "../../util/uri.js";
 import { BaseContextProvider } from "../index.js";
 
@@ -27,10 +28,23 @@ class OpenFilesContextProvider extends BaseContextProvider {
 
     return await Promise.all(
       openFiles.map(async (filepath: string) => {
-        const content = await ide.readFile(filepath);
         const { relativePathOrBasename, last2Parts, baseName } =
           getUriDescription(filepath, workspaceDirs);
 
+        if (isSecurityConcern(filepath)) {
+          return {
+            description: last2Parts,
+            content:
+              "Content redacted, this file cannot be viewed for security reasons",
+            name: baseName,
+            uri: {
+              type: "file",
+              value: filepath,
+            },
+          };
+        }
+        const content = await ide.readFile(filepath);
+
         return {
           description: last2Parts,
           content: `\`\`\`${relativePathOrBasename}\n${content}\n\`\`\``,
 
@@ -3,6 +3,7 @@ import {
   ContextProviderDescription,
   ContextProviderExtras,
 } from "../../index.js";
+import { isSecurityConcern } from "../../indexing/ignore.js";
 import { getUriDescription } from "../../util/uri.js";
 import { BaseContextProvider } from "../index.js";
 
@@ -28,6 +29,14 @@ class ProblemsContextProvider extends BaseContextProvider {
           problem.filepath,
           workspaceDirs,
         );
+        if (isSecurityConcern(relativePathOrBasename)) {
+          return {
+            description: "Problems in current file",
+            content:
+              "Content was redacted because the file is detected as a potential security concern",
+            name: `Warnings in ${baseName}`,
+          };
+        }
         const content = await ide.readFile(problem.filepath);
         const lines = content.split("\n");
         const rangeContent = lines
@@ -40,7 +49,7 @@ class ProblemsContextProvider extends BaseContextProvider {
         return {
           description: "Problems in current file",
           content: `\`\`\`${relativePathOrBasename}\n${rangeContent}\n\`\`\`\n${problem.message}\n\n`,
-          name: `Warning in ${baseName}`,
+          name: `Warnings in ${baseName}`,
         };
       }),
     );
 
@@ -0,0 +1,26 @@
+import fs from "fs";
+import { IDE } from "..";
+import { getGlobalContinueIgnorePath } from "../util/paths";
+import { gitIgArrayFromFile } from "./ignore";
+
+export const getGlobalContinueIgArray = () => {
+  const contents = fs.readFileSync(getGlobalContinueIgnorePath(), "utf8");
+  return gitIgArrayFromFile(contents);
+};
+
+export const getWorkspaceContinueIgArray = async (ide: IDE) => {
+  const dirs = await ide.getWorkspaceDirs();
+  return await dirs.reduce(
+    async (accPromise, dir) => {
+      const acc = await accPromise;
+      try {
+        const contents = await ide.readFile(`${dir}/.continueignore`);
+        return [...acc, ...gitIgArrayFromFile(contents)];
+      } catch (err) {
+        console.error(err);
+        return acc;
+      }
+    },
+    Promise.resolve([] as string[]),
+  );
+};