As it stands it's difficult to allow agents to use "find" in an untrusted manner because the -exec flag allows find to run any subcommand.
I'd like to propose a Cargo "feature" that disables the use of these flags:
-exec-execdir-delete-fprint-fprint0-fprintf-fls
This would build a find that has consistent, "readonly" behavior, that would be easier to trust.
As it stands it's difficult to allow agents to use "find" in an untrusted manner because the
-execflag allows find to run any subcommand.I'd like to propose a Cargo "feature" that disables the use of these flags:
-exec-execdir-delete-fprint-fprint0-fprintf-flsThis would build a find that has consistent, "readonly" behavior, that would be easier to trust.