I guarantee you these controls are breakable the way you describe them.
replyThats okay though! I realize this is a prototype/hobbyist solution which is unlikely to be attacked by a skilled adversary. Love the project!
If later on you want this to become safe for sensitive workloads you need to be way less confident. Just my 2¢.
I know, it's for local use, it's not hosted anywhere so the only adversary is yourself :)
replyWhat if the agent were to create an alias to 'rm -rf' on my machine? I guess that would not have been blocked by your blacklist, right?
replyWell it can't use text editor, so it would have to use echo 'rm -rf' with a shell redirection to a file, which would be detected.
reply