Skip to content

Broaden command knowledge, refine high-traffic tools, harden risk (1.2.0)#4

Merged
gmpassos merged 1 commit into
masterfrom
feature/expand-command-knowledge
Jun 29, 2026
Merged

Broaden command knowledge, refine high-traffic tools, harden risk (1.2.0)#4
gmpassos merged 1 commit into
masterfrom
feature/expand-command-knowledge

Conversation

@gmpassos

Copy link
Copy Markdown
Contributor

Summary

Expands and deepens the command knowledge base and security detectors so an AI-agent / remote-executor consumer (e.g. omnyshell's :ai) reasons correctly about far more commands, and so genuinely dangerous tools no longer classify as "unknown → safe → read-only".

dart analyze clean · dart format applied · 394 tests pass (unit / regression / integration).

Breadth (new coverage)

  • New plugins: DiskKnowledge, VcsKnowledge, ModernCliKnowledge, IacKnowledge (+ new infrastructure category).
  • ~370 new commands across network inspection/transfer/cloud (incl. nmap, ip, ss, tcpdump, rclone, tailscale, cloud CLIs), build/test tooling (cmake, bazel, pytest, vite…), package/version managers (bun, uv, poetry, nix, rustup…), containers/orchestration (buildah, skopeo, minikube, kubectx…), databases, editors, crypto/secrets, process/hardware inspection, and archive/compression.

Depth (per-subcommand/argument refinement)

  • kubectl/oc (read vs write vs delete[highRisk] vs exec), terraform/tofu/terragrunt/pulumi (plan read-only → apply mediumRisk → destroy/-auto-approve highRisk), systemctl (status read-only; reboot/poweroff highRisk), vault, npm/pnpm/yarn/bun run/exec, docker rm/prune, aws/gcloud/az delete-tokens, ansible-playbook --become.

Risk hardening (previously slipped through as safe)

  • Disk-format/wipe (mkfs/mkfs.*/wipefs/blkdiscard) and dd of=/dev/...critical (through wrappers like sudo); secure-delete srm/wipe; kernel-module / power / privileged-config tools; find / -delete; recursive chmod/chown on a system root; kill/pkill/killall catastrophic forms (PID 1 / -1 / pkill . / -u root); inline interpreter eval (python -c, node -e, osascript -e, deno eval, …).
  • command -v/-V lookups no longer inherit the target's capabilities/risk (new WrapperSpec.lookupFlags), so command -v mkfs.ext4 is no longer a false critical.
  • Normalization: batcatbat, fdfindfd, ripgreprg.

Notes

  • Bumps version to 1.2.0 (see CHANGELOG).
  • Consumer side (separate repo): omnyshell enables KnowledgeRiskDetector on its :ai shield so KB critical ratings hard-block; that change is not part of this PR.

🤖 Generated with Claude Code

…risk (1.2.0)

Expands and deepens the command knowledge base and security detectors so an
AI-agent/remote-executor consumer reasons correctly about far more commands and
no longer classifies genuinely dangerous tools as safe.

Breadth:
- New plugins: DiskKnowledge, VcsKnowledge, ModernCliKnowledge, IacKnowledge
  (+ new `infrastructure` category). ~370 new commands across network
  inspection/transfer/cloud, build/test tooling, package/version managers,
  containers/orchestration, databases, editors, crypto/secrets, process/
  hardware inspection and archive/compression.

Depth (per-subcommand/argument refinement):
- kubectl/oc, terraform/tofu/terragrunt/pulumi, systemctl (narrowed), vault,
  npm/pnpm/yarn/bun run, docker rm/prune, aws/gcloud/az delete-tokens,
  ansible-playbook --become.

Risk hardening (previously "unknown/safe -> read-only"):
- Disk-format/wipe (mkfs/mkfs.*/wipefs/blkdiscard) and `dd of=/dev/...` are
  critical (through wrappers); secure-delete srm/wipe; kernel-module, power,
  privileged-config tools; `find / -delete`; recursive chmod/chown on a system
  root; kill/pkill/killall catastrophic forms; inline interpreter eval
  (python -c, node -e, ...). `command -v`/`-V` lookups no longer inherit the
  target's capabilities/risk (adds WrapperSpec.lookupFlags).
- Normalization: batcat->bat, fdfind->fd, ripgrep->rg.

dart analyze clean; 394 tests pass (unit/regression/integration).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
@codecov

codecov Bot commented Jun 29, 2026

Copy link
Copy Markdown

@gmpassos gmpassos merged commit 459dd39 into master Jun 29, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant