Skip to content

Still struggling with shell executions #8861

New issue
New issue
Open
Open
Still struggling with shell executions#8861
Assignees
rekram1-node
Labels
windows
@klonuo

Description

@klonuo
klonuo
opened on Jan 16, 2026

Question

These are my permissions:

{
  "$schema": "https://opencode.ai/config.json",
  "permission": {
    "ls*": "allow",
    "cat*": "allow",
    "head*": "allow",
    "sed*": "allow",
    "find*": "allow",
    "wc*": "allow",
    "grep*": "allow",
    "rg*": "allow",
    "mkdir*": "allow",
    "python*": "deny",
    "python3*": "deny",
    "pip*": "deny",
    "pip3*": "deny",
    "uv*": "deny",
    "dbt*": "deny",
    "npm*": "deny",
    "npx*": "deny",
    "pnpm*": "deny",
    "pnpx*": "deny",
    "yarn*": "deny",
    "bash": "ask",
    "rm": "ask",
    "xargs": "ask",
    "git push": "ask",
    "git rebase": "ask",
    "git reset": "ask",
    "git commit": "ask",
    "git clean": "ask",
    "bun": "ask",
    "node": "ask",
    "doom_loop": "ask",
    "external_directory": "allow"
  }
}

From the documentation I just can't understand what could be wrong and why the build agent still executes commands, i.e.:

Image

In my AGENTS.md for both project and system I've set this line:

# app Development Guidelines

IMPORTANT: You are in WSL2 shell, while the project is on Windows filesystem. You are allowed to only perform file read/write operations without running bash commands!!!

This example wasn't erosive, but it executes commands which can ruin virtualenv or node environment, which is why I'm writing, but also general concern.

Each model will try to find it's way on the path!

So how to use build mode, and not to worry about possible shell executions?

Metadata

Metadata

Assignees

Labels

windows

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions