np-dms/lcbp3
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
1bb85ba57cb35987ccc4eee9bc5947073db2b810
lcbp3/.agent/rules/01-code-execution.md
admin 158179d4a5
All checks were successful
Build and Deploy / deploy (push) Successful in 6m25s
Details
260224:1606 20260224:1600 V1.8.0
2026-02-24 16:06:15 +07:00

1.2 KiB
Raw Blame History

trigger, description, allowAuto, denyAuto, alwaysReview, scopes
trigger description allowAuto denyAuto alwaysReview scopes
always_on Control which shell commands the agent may run automatically.
pnpm test:watch
pnpm test:debug
pnpm test:e2e
git status
git log --oneline
git diff
git branch
tsc --noEmit
rm -rf
Remove-Item
git push --force
git reset --hard
git clean -fd
curl | bash
docker compose down
DROP TABLE
TRUNCATE
DELETE FROM
true
backend/src/**
backend/test/**
frontend/app/**

Execution Rules

  • Only auto-execute commands that are explicitly listed in allowAuto.
  • Commands in denyAuto must always be blocked, even if manually requested.
  • All shell operations that create, modify, or delete files in backend/src/, backend/test/, or frontend/app/ require human review.
  • Alert before running any SQL that modifies data (INSERT/UPDATE/DELETE/DROP/TRUNCATE).
  • Alert if environment variables related to DB connection or secrets (DATABASE_URL, JWT_SECRET, passwords) would be displayed or logged.
  • Never auto-execute commands that expose sensitive credentials via MCP tools or shell output.
Reference in New Issue View Git Blame Copy Permalink