Integrate JailJS for CSP-restricted execution in browser extension

Major changes: - Migrate browser-extension to use web-ui package (85% code reduction) - Add JailJS content script with ES6+ transform support - Expose DOM constructors (Event, KeyboardEvent, etc.) to JailJS - Support top-level await by wrapping code in async IIFE - Add returnFile() support in JailJS execution - Refactor KeyStore into pluggable storage-adapter pattern - Make ChatPanel configurable with sandboxUrlProvider and additionalTools - Update jailjs to 0.1.1 Files deleted (33 duplicate files): - All browser-extension components, dialogs, state, tools, utils - Now using web-ui versions via @mariozechner/pi-web-ui Files added: - packages/browser-extension/src/content.ts (JailJS content script) - packages/web-ui/src/state/storage-adapter.ts - packages/web-ui/src/state/key-store.ts Browser extension now has only 5 source files (down from 38).
2026-04-16 03:01:56 +00:00 · 2025-10-05 16:58:31 +02:00 · 2025-10-05 16:58:31 +02:00 · aaea0f4600
commit aaea0f4600
parent f2eecb78d2
61 changed files with 633 additions and 9270 deletions
--- a/packages/web-ui/src/tools/javascript-repl.ts
+++ b/packages/web-ui/src/tools/javascript-repl.ts
@ -12,6 +12,7 @@ export async function executeJavaScript(
 	code: string,
 	attachments: Attachment[] = [],
 	signal?: AbortSignal,
+	sandboxUrlProvider?: () => string,
 ): Promise<{ output: string; files?: SandboxFile[] }> {
 	if (!code) {
 		throw new Error("Code parameter is required");
@ -24,6 +25,9 @@ export async function executeJavaScript(

 	// Create a SandboxedIframe instance for execution
 	const sandbox = new SandboxIframe();
+	if (sandboxUrlProvider) {
+		sandbox.sandboxUrlProvider = sandboxUrlProvider;
+	}
 	sandbox.style.display = "none";
 	document.body.appendChild(sandbox);

@ -93,11 +97,13 @@ const javascriptReplSchema = Type.Object({

 export function createJavaScriptReplTool(): AgentTool<typeof javascriptReplSchema, JavaScriptReplToolResult> & {
 	attachmentsProvider?: () => Attachment[];
+	sandboxUrlProvider?: () => string;
 } {
 	return {
 		label: "JavaScript REPL",
 		name: "javascript_repl",
 		attachmentsProvider: () => [], // default to empty array
+		sandboxUrlProvider: undefined, // optional, for browser extensions
 		description: `Execute JavaScript code in a sandboxed browser environment with full modern browser capabilities.

 Environment: Modern browser with ALL Web APIs available:
@ -173,7 +179,7 @@ Global variables:
 		parameters: javascriptReplSchema,
 		execute: async function (_toolCallId: string, args: Static<typeof javascriptReplSchema>, signal?: AbortSignal) {
 			const attachments = this.attachmentsProvider?.() || [];
-			const result = await executeJavaScript(args.code, attachments, signal);
+			const result = await executeJavaScript(args.code, attachments, signal, this.sandboxUrlProvider);
 			// Convert files to JSON-serializable with base64 payloads
 			const files = (result.files || []).map((f) => {
 				const toBase64 = (input: string | Uint8Array): { base64: string; size: number } => {