jasoncouture/llama-shears
1
0
Fork 0
Code Issues 14 Pull requests Projects Releases Packages 6 Wiki Activity Actions

Unsafe tools (shell, background processes) gated behind explicit permission #24

New issue
Open
opened 2026-05-07 01:30:04 -04:00 by jasoncouture · 1 comment
jasoncouture commented 2026-05-07 01:30:04 -04:00 (Migrated from github.com)
Copy link

Shell execution and background-process tools — gated behind explicit permission (per-agent, per-call, or both). The kind of capability that's amazing when it's wanted and catastrophic when an agent reaches for it without authorization.

Depends on the tool security model (#23).

Tracked in TASKS.md.

Shell execution and background-process tools — gated behind explicit permission (per-agent, per-call, or both). The kind of capability that's amazing when it's wanted and catastrophic when an agent reaches for it without authorization. Depends on the tool security model (#23). Tracked in [TASKS.md](../blob/main/TASKS.md).
jcouturest commented 2026-05-26 15:10:22 -04:00 (Migrated from github.com)
Copy link

Tool metadata was updated to surface the various metadata hints, which will enable this.
Additionally, a tool security model was added recently, and #23 ( Completed in #109 ) is done.

The hints currently surfaced from MCP to the internal representation are:
readOnlyHint
destructiveHint
idempotentHint
openWorldHint

Tool metadata was updated to surface the various metadata hints, which will enable this. Additionally, a tool security model was added recently, and #23 ( Completed in #109 ) is done. The hints currently surfaced from MCP to the internal representation are: `readOnlyHint` `destructiveHint` `idempotentHint` `openWorldHint`
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
No results found.
Labels
Clear labels   
bug
Something isn't working

  
commercial
Commercial / paid offering

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
feature
Net-new functionality

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
wontfix
This will not be worked on

No labels
bug
commercial
documentation
duplicate
enhancement
feature
good first issue
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
jasoncouture/llama-shears#24
No description provided.