Skip to content

[TASK] CommandRunner protocol + CommandRunnerImpl with allowlist #39

Open
Open
[TASK] CommandRunner protocol + CommandRunnerImpl with allowlist#39
Labels
area:plugin-apiPlugin API contracts and core typessafety:external-cliSpawns external processestype:taskConcrete implementation task
Milestone
v0.1
@kirich1409

Description

@kirich1409
kirich1409
opened on Apr 22, 2026

Context

CommandRunner accepts only (tool: String, args: [String]). Impl in private target validates against static allowlist and rejects suspicious tool paths.

Acceptance criteria

  • Protocol accepts argv-array, no shell-string.
  • Impl allowlist: git, hf, ollama, pod, brew, docker, colima, simctl, xcrun.
  • Rejects if resolved tool lives under /tmp, /var/tmp, ~/Downloads, ~/Desktop.

Files to touch (estimate)

best-effort estimate; agent refines during implementation

Implementation notes

  • Research report §S8.

Dependencies

None.

Safety checklist

See .github/ISSUE_TEMPLATE/task.yml — tick applicable invariants in the issue if any destructive path is touched.

Definition of Done

  • Acceptance criteria satisfied and verifiable
  • Tests added or updated
  • No build / lint / test regressions
  • Self-review against research-report invariants
  • Code review approved

Metadata

Metadata

Assignees

No one assigned

    Labels

    area:plugin-apiPlugin API contracts and core typessafety:external-cliSpawns external processestype:taskConcrete implementation task

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions