Security Guardrails
Blocked Operations (NEVER do these)
The following are blocked without exception:
- •Reading or writing
.envfiles - •Accessing files matching:
*secret*,*credential*,*password*,.aws/*,.ssh/*,*token* - •Running destructive IaC commands without explicit user request
See reference/blocked-patterns.md for complete list.
Ask First (require user confirmation)
These operations require explicit user approval:
- •Network requests (WebFetch)
- •Git push, merge, rebase operations
- •Infrastructure commands: terraform plan/apply, kubectl apply, ansible-playbook
See reference/ask-patterns.md for complete list.
When Uncertain
If unsure whether an operation is safe:
- •Stop and explain what you're about to do
- •List what files/systems will be affected
- •Wait for explicit user confirmation
Never assume permission. When in doubt, ask.