mrtoth/agent-sandbox
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
61 Commits 1 Branch 0 Tags
38f09ac461c1dee247f1e4189a92a8a7c68f40e2
Commit Graph

11 Commits

Author SHA1 Message Date
mrtoth 38f09ac461 Remove non-functional pattern from claude allowedTools, add working one 2026-04-30 16:54:12 +02:00
mrtoth 105eafef2e Move codex home 2026-04-27 09:32:39 +02:00
mrtoth af731a107f Add pi agent profile 2026-04-27 08:38:15 +02:00
mrtoth c77dbc10c3 Implement profile inheritance 2026-04-26 23:58:21 +02:00
mrtoth 0ea83b2af0 Implement extra-config option 2026-04-24 20:09:27 +02:00
mrtoth a9f5593f03 Extract claude and codex configs into separate profiles 2026-04-24 08:31:37 +02:00
mrtoth 1e9b7735a8 Mount agent-config repo ro in example config 2026-04-22 21:51:15 +02:00
mrtoth 305ac9d927 Accept SRC:DST remap syntax in --ro/--rw 2026-04-22 21:51:00 +02:00
mrtoth 06bb638737 Document all config options with commented examples 2026-04-22 20:55:07 +02:00
mrtoth 25f0037aab Filter environment variables in both sandbox modes 
Whitelist mode now clears the parent env and re-adds a small allowlist
(identity, terminal, locale, proxy, non-GUI XDG, vendor prefixes).
Blacklist mode strips cloud credentials, backup passphrases, dangling
socket pointers, and anything matching *_TOKEN, *_SECRET, *_PASSWORD,
*_PASSPHRASE, *_API_KEY, *_PRIVATE_KEY, *_CLIENT_SECRET; vendor prefix
carve-outs keep ANTHROPIC_API_KEY and friends.

Users can override via --setenv KEY=VALUE and --unsetenv KEY (and the
corresponding TOML keys), or opt out of the built-in policy entirely
with --no-env-filter.
 2026-04-08 09:22:11 +02:00
mrtoth f0711f2894 Ship an example config file 2026-04-07 15:10:10 +02:00