From 835c6345edbf4ff72e64d4d52622ecdfa4c3beab Mon Sep 17 00:00:00 2001 From: Sage Date: Mon, 20 Apr 2026 10:35:13 +0000 Subject: [PATCH] Add readonly perms --- modules/home/terminal/opencode/default.nix | 25 ++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/modules/home/terminal/opencode/default.nix b/modules/home/terminal/opencode/default.nix index b1e928f..1fa74cc 100644 --- a/modules/home/terminal/opencode/default.nix +++ b/modules/home/terminal/opencode/default.nix @@ -33,12 +33,37 @@ "permission" = { "bash" = { "*" = "ask"; + "*>*" = "ask"; "rm *" = "deny"; "rmdir *" = "deny"; "unlink *" = "deny"; "*rm *" = "ask"; "*rmdir *" = "ask"; "*unlink *" = "ask"; + "awk *>*" = "ask"; + "*-exec*" = "ask"; + "git status" = "allow"; + "git log" = "allow"; + "git diff" = "allow"; + "git show" = "allow"; + "ls *" = "allow"; + "head *" = "allow"; + "tail *" = "allow"; + "sort *" = "allow"; + "uniq *" = "allow"; + "grep *" = "allow"; + "find *" = "allow"; + "rg *" = "allow"; + "fd *" = "allow"; + "cat *" = "allow"; + "wc *" = "allow"; + "jq *" = "allow"; + "file *" = "allow"; + "diff *" = "allow"; + "awk *" = "allow"; + "pwd *" = "allow"; + "cut *" = "allow"; + "tr *" = "allow"; }; }; };