np-dms/lcbp3
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9c835ec4ac5ef869d65ecb62053e2661ecb2ad78
lcbp3/.agent/rules/01-code-execution.md
T
admin 6b89df874e
CI / CD Pipeline / deploy (push) Has been cancelled
Details
CI / CD Pipeline / build (push) Has been cancelled
Details
690401:0823 Update agent rules
2026-04-01 08:23:31 +07:00

1.2 KiB
Raw Blame History

trigger, description, allowAuto, denyAuto, alwaysReview, scopes
trigger description allowAuto denyAuto alwaysReview scopes
always_on Control which shell commands the agent may run automatically.
pnpm test:watch
pnpm test:debug
pnpm test:e2e
git status
git log --oneline
git diff
git branch
tsc --noEmit
rm -rf
Remove-Item
git push --force
git reset --hard
git clean -fd
curl | bash
docker compose down
DROP TABLE
TRUNCATE
DELETE FROM
pnpm migration:*
npm run migration:*
npx auth secret
true
backend/src/**
backend/test/**
frontend/app/**

Execution Rules

  • Only auto-execute commands that are explicitly listed in allowAuto.
  • Commands in denyAuto must always be blocked, even if manually requested.
  • All shell operations that create, modify, or delete files in backend/src/, backend/test/, or frontend/app/ require human review.
  • Alert before running any SQL that modifies data (INSERT/UPDATE/DELETE/DROP/TRUNCATE).
  • Alert if environment variables related to DB connection or secrets (DATABASE_URL, JWT_SECRET, passwords) would be displayed or logged.
  • Never auto-execute commands that expose sensitive credentials via MCP tools or shell output.
Reference in New Issue View Git Blame Copy Permalink