ed
d0bbc70a4e
Before:
- read/write allow rules for AppData/Local/manual_slop/tier2/ and
AppData/Local/manual_slop/tier2_failures/ existed in both the
top-level and the tier2-autonomous agent's permission blocks.
- Bash deny rules covered only AppData/Local/Temp/.
After:
- read/write allow only the Tier 2 clone (C:\\projects\\manual_slop_tier2\\**).
- Bash deny rules: *AppData\\* (broader) + *AppData\\Local\\Temp\\* (kept for clarity).
The broader *AppData\\* rule catches Local, LocalLow, Roaming, and any
other subdir, not just Temp. The narrower Temp rule is kept as a
self-documenting marker for the original 2026-06-17 regression.
Per the user's 2026-06-18 'NEVER USE APPDATA' directive.
Refs: conductor/tracks/tier2_no_appdata_20260618
77 lines
1.9 KiB
Plaintext
77 lines
1.9 KiB
Plaintext
{
|
|
"$schema": "https://opencode.ai/config.json",
|
|
"default_agent": "tier2-autonomous",
|
|
"model": "minimax-coding-plan/MiniMax-M3",
|
|
"permission": {
|
|
"edit": "deny",
|
|
"read": {
|
|
"*": "deny",
|
|
"C:\\projects\\manual_slop_tier2\\**": "allow"
|
|
},
|
|
"write": {
|
|
"*": "deny",
|
|
"C:\\projects\\manual_slop_tier2\\**": "allow"
|
|
},
|
|
"bash": {
|
|
"*": "deny",
|
|
"git status*": "allow",
|
|
"git diff*": "allow",
|
|
"git log*": "allow",
|
|
"git add*": "allow",
|
|
"git commit*": "allow",
|
|
"git switch*": "allow",
|
|
"git branch*": "allow",
|
|
"git fetch*": "allow",
|
|
"git remote*": "allow",
|
|
"git rev-parse*": "allow",
|
|
"git show*": "allow",
|
|
"git config --get*": "allow",
|
|
"ls*": "allow",
|
|
"cat*": "allow",
|
|
"head*": "allow",
|
|
"tail*": "allow",
|
|
"find*": "allow",
|
|
"echo*": "allow",
|
|
"mkdir*": "allow",
|
|
"cp*": "allow",
|
|
"mv*": "allow",
|
|
"rm*": "allow",
|
|
"uv run python scripts/run_tests_batched.py*": "allow",
|
|
"uv run python scripts/tier2/*": "allow",
|
|
"pwsh -File scripts/tier2/*": "allow",
|
|
"*AppData\\*": "deny",
|
|
"*AppData\\Local\\Temp\\*": "deny",
|
|
"git push*": "deny",
|
|
"git checkout*": "deny",
|
|
"git restore*": "deny",
|
|
"git reset*": "deny"
|
|
}
|
|
},
|
|
"agent": {
|
|
"tier2-autonomous": {
|
|
"model": "minimax-coding-plan/MiniMax-M3",
|
|
"temperature": 0.4,
|
|
"permission": {
|
|
"edit": "allow",
|
|
"read": {
|
|
"*": "deny",
|
|
"C:\\projects\\manual_slop_tier2\\**": "allow"
|
|
},
|
|
"write": {
|
|
"*": "deny",
|
|
"C:\\projects\\manual_slop_tier2\\**": "allow"
|
|
},
|
|
"bash": {
|
|
"*": "allow",
|
|
"*AppData\\*": "deny",
|
|
"*AppData\\Local\\Temp\\*": "deny",
|
|
"git push*": "deny",
|
|
"git checkout*": "deny",
|
|
"git restore*": "deny",
|
|
"git reset*": "deny"
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|