fix(redteam-ctl): use --output-format stream-json --verbose for streaming logs, use --system-prompt-file

noeljackson · noeljackson · commit 4be21abf87a2 · 2026-04-05T11:25:58.000+02:00
diff --git a/redteam/cmd/redteam-ctl/main.go b/redteam/cmd/redteam-ctl/main.go
@@ -2,6 +2,7 @@ package main
 
 import (
 	"context"
+	"encoding/base64"
 	"encoding/json"
 	"flag"
 	"fmt"
@@ -147,38 +148,19 @@ func runStrategy(ctx context.Context, client *codewire.Client, s strategy, promp
 		env.Remove(rmCtx)
 	}()
 
-	// Upload system prompt to the env.
-	logger.Println("uploading system prompt")
-	uploadCtx, uploadCancel := context.WithTimeout(ctx, 30*time.Second)
-	defer uploadCancel()
-	if err := env.Files.Upload(uploadCtx, strings.NewReader(systemPrompt), "/tmp/system-prompt.md"); err != nil {
-		logger.Printf("failed to upload prompt: %v", err)
-		return
-	}
+	// Write system prompt to env and launch Claude Code.
+	logger.Printf("starting claude code (strategy=%s)", s.ID)
 
-	// Also upload seed files if they exist locally.
-	if entries, err := os.ReadDir("seeds"); err == nil {
-		for _, e := range entries {
-			if e.IsDir() {
-				continue
-			}
-			data, err := os.ReadFile(filepath.Join("seeds", e.Name()))
-			if err != nil {
-				continue
-			}
-			seedCtx, seedCancel := context.WithTimeout(ctx, 15*time.Second)
-			env.Files.Upload(seedCtx, strings.NewReader(string(data)), "/tmp/seeds/"+e.Name())
-			seedCancel()
-		}
-		logger.Printf("uploaded %d seed files", len(entries))
+	// Write system prompt to a file, then pass via --system-prompt-file flag.
+	if err := writeFileViaExec(ctx, env, "/tmp/system-prompt.md", systemPrompt); err != nil {
+		logger.Printf("failed to write prompt: %v", err)
+		return
 	}
 
-	// Launch Claude Code with the system prompt file.
-	logger.Printf("starting claude code (strategy=%s)", s.ID)
 	execCtx, execCancel := context.WithTimeout(ctx, 60*time.Second)
 	defer execCancel()
 
-	cmd := `nohup claude --dangerously-skip-permissions --system-prompt /tmp/system-prompt.md -p "Begin your security assessment. Start by reviewing any seed files in /tmp/seeds/ if they exist, then systematically probe the environment. Report all findings." > /tmp/redteam.log 2>&1 & echo $!`
+	cmd := `nohup claude --dangerously-skip-permissions --system-prompt-file /tmp/system-prompt.md -p "Begin your security assessment. Systematically probe the environment. Report all findings." > /tmp/redteam.log 2>&1 & echo $!`
 	result, err := env.Exec(execCtx, codewire.ExecBody{
 		Command: &[]string{"bash", "-c", cmd},
 	})
@@ -247,6 +229,31 @@ func pullLog(env *codewire.Environment, dest string, lastSize *int64, logger *lo
 	*lastSize = newSize
 }
 
+func writeFileViaExec(ctx context.Context, env *codewire.Environment, path, content string) error {
+	execCtx, cancel := context.WithTimeout(ctx, 30*time.Second)
+	defer cancel()
+
+	if path == "" {
+		// Just run as a command (e.g. mkdir).
+		_, err := env.Exec(execCtx, codewire.ExecBody{
+			Command: &[]string{"bash", "-c", content},
+		})
+		return err
+	}
+
+	// Use base64 to handle arbitrary content safely.
+	encoded := base64Encode(content)
+	cmd := fmt.Sprintf("echo '%s' | base64 -d > %s", encoded, path)
+	_, err := env.Exec(execCtx, codewire.ExecBody{
+		Command: &[]string{"bash", "-c", cmd},
+	})
+	return err
+}
+
+func base64Encode(s string) string {
+	return base64.StdEncoding.EncodeToString([]byte(s))
+}
+
 func strategyList(strats []strategy) string {
 	var ids []string
 	for _, s := range strats {
