140 lines
2.7 KiB
JSON
140 lines
2.7 KiB
JSON
{
|
|
"version": "2.0",
|
|
"description": "MCP Auto-Approval Policy - PERMISSIVE mode with dangerous command blacklist",
|
|
"bash": {
|
|
"mode": "blacklist",
|
|
"whitelist": ["*"],
|
|
"blacklist": [
|
|
"rm -rf /*",
|
|
"rm -rf ~*",
|
|
"rm -rf /Users/*",
|
|
"rm -rf /home/*",
|
|
"rm -rf .git",
|
|
"rm -rf .ssh*",
|
|
"rm -rf .aws*",
|
|
"rm -rf .gnupg*",
|
|
"rm -rf .config*",
|
|
"rm -rf node_modules",
|
|
"sudo *",
|
|
"su *",
|
|
"chmod 777*",
|
|
"chmod -R 777*",
|
|
"chown *",
|
|
"chgrp *",
|
|
"eval *",
|
|
"exec *",
|
|
"dd *",
|
|
"mkfs*",
|
|
"fdisk*",
|
|
"parted*",
|
|
"kill -9 -1",
|
|
"killall -9*",
|
|
"pkill -9*",
|
|
"> /dev/*",
|
|
"shutdown*",
|
|
"reboot*",
|
|
"halt*",
|
|
"poweroff*",
|
|
"init 0*",
|
|
"init 6*",
|
|
"systemctl poweroff*",
|
|
"systemctl reboot*",
|
|
"nc -l*",
|
|
"netcat -l*",
|
|
"ncat -l*",
|
|
"telnet *",
|
|
"*/bin/sh -c*",
|
|
"*/bin/bash -c*",
|
|
"*/bin/zsh -c*",
|
|
"| sh",
|
|
"| bash",
|
|
"| zsh",
|
|
"|sh",
|
|
"|bash",
|
|
"|zsh",
|
|
"$(rm*",
|
|
"`rm*",
|
|
"curl * | sh",
|
|
"curl * | bash",
|
|
"wget * | sh",
|
|
"wget * | bash",
|
|
"git push --force origin main",
|
|
"git push --force origin master",
|
|
"git push -f origin main",
|
|
"git push -f origin master",
|
|
"git reset --hard HEAD~*",
|
|
"git clean -fdx",
|
|
"npm publish*",
|
|
"pip upload*",
|
|
"twine upload*",
|
|
"docker rm -f $(docker ps -aq)",
|
|
"docker system prune -af",
|
|
"xargs rm*",
|
|
"find * -delete",
|
|
"find * -exec rm*",
|
|
":(){:|:&};:",
|
|
"export PATH=",
|
|
"unset PATH"
|
|
]
|
|
},
|
|
"file_paths": {
|
|
"whitelist": ["*"],
|
|
"blacklist": [
|
|
"/etc/*",
|
|
"/var/*",
|
|
"/root/*",
|
|
"/home/*/.ssh/*",
|
|
"/Users/*/Library/*",
|
|
"/Users/*/.ssh/*",
|
|
"/Users/*/.aws/*",
|
|
"/Users/*/.gnupg/*",
|
|
"*/.env",
|
|
"*/secrets/*",
|
|
"*/credentials/*",
|
|
"*/.ssh/*",
|
|
"*/id_rsa*",
|
|
"*/id_ed25519*",
|
|
"*/id_ecdsa*",
|
|
"*/.aws/*",
|
|
"*/.config/gh/hosts.yml",
|
|
"/System/*",
|
|
"/usr/*",
|
|
"/bin/*",
|
|
"/sbin/*",
|
|
"/boot/*"
|
|
]
|
|
},
|
|
"agents": {
|
|
"trusted": [
|
|
"researcher",
|
|
"planner",
|
|
"test-master",
|
|
"implementer",
|
|
"reviewer",
|
|
"doc-master"
|
|
],
|
|
"restricted": [
|
|
"security-auditor"
|
|
]
|
|
},
|
|
"web_tools": {
|
|
"whitelist": [
|
|
"Fetch",
|
|
"WebFetch",
|
|
"WebSearch"
|
|
],
|
|
"allow_all_domains": true,
|
|
"blocked_domains": [
|
|
"localhost",
|
|
"127.0.0.1",
|
|
"0.0.0.0",
|
|
"169.254.169.254",
|
|
"metadata.google.internal",
|
|
"[::1]",
|
|
"10.*",
|
|
"172.16.*",
|
|
"192.168.*"
|
|
]
|
|
}
|
|
}
|