Blacklist

• Blocks dangerous commands like rm -rf /, shutdown, sudo, dd if=/dev/zero
• Applies in BOTH execution policy modes
• Configurable via plugin settings

Whitelist

• When "Allow Only" mode is enabled, only explicitly listed commands can run
• Example: git, npm, ls, cat (comma-separated)
• Empty whitelist with "Allow Only" mode blocks all commands

Sandbox Mode

• Restricts command execution to a specified project root directory
• Prevents access to files outside the sandbox
• Blocks absolute paths and parent directory traversal (..)

Test Mode (Dry Run)

When enabled, the plugin validates commands against all security checks but never executes them. Returns:

• "COMMAND ALLOWED: The command '...' passes all security checks." if all checks pass
• Security error messages if any check fails

Test mode works independently of "Allow Automatic Execution" - it runs AFTER security checks complete.

Safety Switches

Allow Automatic Execution (Master Kill Switch)

• OFF (default): All commands blocked before any security checks
• ON: Commands proceed through security validation
• Prevents accidental command execution by default

Tools Provided

1. run_shell_command

Executes shell commands with full security validation.

Parameters:

• command (string): The command to execute
• cwd (optional string): Subdirectory to run in (must be inside sandbox)
• timeout (optional number): Execution timeout in milliseconds

Returns: Command output, errors, or security rejection messages

2. get_whitelist

Retrieves current allowed commands configuration.

Parameters: None

Returns: List of whitelisted commands with count, or status if whitelist not active

3. get_blacklist

Retrieves current forbidden commands configuration.

Parameters: None

Returns: List of blacklisted commands with count

Configuration Options

Usage Examples

Basic Command

With Subdirectory

Test Mode Validation

When Test Mode is enabled:

• Blacklist check runs first
• Whitelist check runs second (if applicable)
• Sandbox validation runs third
• Returns "COMMAND ALLOWED" without executing

Configuration for This Session

Updated Features

• Added get_whitelist tool - Retrieves current whitelist configuration
• Added get_blacklist tool - Retrieves current blacklist configuration
• Added Test Mode (Dry Run) - Validates commands without execution
• Test Mode works independently - Runs after security checks, regardless of Allow Automatic Execution setting

Security Check Order

• Allow Automatic Execution check
• Blacklist check
• Whitelist check (if "Allow Only" mode)
• Sandbox validation
• Test Mode check (returns without executing if enabled)
• Environment setup
• Command execution (only if all checks pass AND testMode is OFF)

Author

• Author: Techstat
• License: MIT
• AI: Vibe-Coded additions via Qwen3 Coder Next Bartowski Q4 Quant.