Skip to main content
AutonomousAgent implements strict security measures to prevent unintended access outside the workspace.

Workspace Sandboxing

All file and shell operations are restricted to the workspace directory:

Default Blocked Commands

The shell toolkit blocks dangerous commands by default:
  • rm -rf / and rm -rf /* (destructive patterns)
  • :(){:|:&};: (fork bomb)
  • mkfs (filesystem formatting)
  • dd if=/dev/zero (disk overwrite)
You can add additional blocked commands like sudo via the blocked_commands parameter.

Custom Security Configuration

Tracking File Access

Monitor which files the agent has read: