/*!
 * child_env.rs — Runner helper utilities (OOB strict, quiet exit policies)
 */

pub fn pre_run_reset_oob_if_strict() {
    if crate::config::env::oob_strict_fail() {
        crate::runtime::observe::reset();
    }
}

pub fn post_run_exit_if_oob_strict_triggered() -> ! {
    if crate::config::env::oob_strict_fail() && crate::runtime::observe::oob_seen() {
        eprintln!("[gate-c][oob-strict] Out-of-bounds observed → exit(1)");
        std::process::exit(1);
    }
    // If not strict or no OOB, return to caller path; caller should exit(…) itself.
    // This function is defined as diverging only when it actually exits above; otherwise it does nothing.
    // To keep signature simple for callers, they should not rely on this returning.
    std::process::exit(0)
}

/// Apply a consistent child environment for selfhost/core wrapper executions.
/// - Forces JSON-only quiet pipe
/// - Disables plugins to avoid host-side side effects
/// - Disables file-based using resolution (namespace-first policy)
/// - Skips nyash.toml env injection to reduce drift
pub fn apply_core_wrapper_env(cmd: &mut std::process::Command) {
    // Remove noisy or recursive toggles
    cmd.env_remove("NYASH_USE_NY_COMPILER");
    cmd.env_remove("NYASH_CLI_VERBOSE");
    // Enforce quiet JSON capture
    cmd.env("NYASH_JSON_ONLY", "1");
    // Restrict environment to avoid plugin/using drift
    cmd.env("NYASH_DISABLE_PLUGINS", "1");
    cmd.env("NYASH_SKIP_TOML_ENV", "1");
    cmd.env("NYASH_USING_AST", "0");
    cmd.env("NYASH_ALLOW_USING_FILE", "0");
    cmd.env("HAKO_ALLOW_USING_FILE", "0");
}