- Add default deny_read_paths/deny_read_regexes to host_sandbox_policy.json - Generate deny rules for ~/.ssh, ~/.aws, ~/.kube, keychains, .env, etc. - Readonly sandbox: global read + deny sensitive + write only /dev/null - Workspace-write sandbox: global read + deny sensitive + writable paths - Keep workspace files readable by re-allowing workspace subpath after deny - Backend API validates path authorization against deny list - Path auth dialog hint explains readable paths behavior |
||
|---|---|---|
| .. | ||
| __init__.py | ||
| approval.py | ||
| files.py | ||
| misc.py | ||
| permission.py | ||
| settings.py | ||
| terminal.py | ||