feat(safety): gate sensitive tools behind elevation and immutable denylist

2026-02-17 23:51:04 -08:00
parent 9345a864f4
commit 540f6780e6
10 changed files with 279 additions and 3 deletions
@@ -593,6 +593,21 @@ hooks:
    - notify
 ```

+For unrestricted deployments, pair hooks with agent-level sensitive gating:
+
+```yaml
+agents:
+  # deny_without_elevation | confirm_without_elevation
+  sensitive_mode: deny_without_elevation
+  immutable_denylist:
+    - tool: shell.exec
+      args_pattern: "git push origin main"
+      reason: "direct main pushes are blocked"
+    - tool: shell.exec
+      args_pattern: "git reset --hard"
+      reason: "destructive hard reset is blocked"
+```
+
 ## Browser Automation Tools

 Flynn ships these browser tools: