Skip to content

Epic: shell execution hardening #618

New issue
New issue
Closed
2 of 2 issues completed
#668
Closed
Epic: shell execution hardening#618
2 of 2 issues completed
#668
Labels
P1Important priorityepicMilestone-level tracking issuesecuritySecurity hardeningtoolsTool execution and MCP integration
@bug-ops

Description

@bug-ops
bug-ops
opened on Feb 19, 2026

Summary

Shell sandbox relies on heuristic substring matching, bypassable via shell metacharacters ($IFS, backtick expansion, base64 encoding). Path canonicalization fallback on nonexistent paths is also exploitable.

Child Issues

Sub-issues

Metadata

Metadata

Assignees

No one assigned

    Labels

    P1Important priorityepicMilestone-level tracking issuesecuritySecurity hardeningtoolsTool execution and MCP integration

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions