@probelabs/probe 0.6.0-rc255 → 0.6.0-rc257

package/README.md

@@ -91,7 +91,7 @@ const agent = new ProbeAgent({
   sessionId: 'my-session',  // Optional: for conversation continuity
   path: '/path/to/your/project',
   provider: 'anthropic',   // or 'openai', 'google'
-  model: 'claude-3-5-sonnet-20241022',  // Optional: override model
+  model: 'claude-sonnet-4-6',  // Optional: override model
   allowEdit: true,         // Optional: enable edit + create tools for code modification
   debug: true,            // Optional: enable debug logging
   allowedTools: ['*'],    // Optional: filter available tools (see Tool Filtering below)
@@ -128,7 +128,7 @@ export GOOGLE_API_KEY=your_google_key
 export FORCE_PROVIDER=anthropic
 
 # Optional: Override model name
-export MODEL_NAME=claude-3-5-sonnet-20241022
+export MODEL_NAME=claude-sonnet-4-6
 ```
 
 **ProbeAgent Features:**
@@ -204,12 +204,12 @@ const agent = new ProbeAgent({
         region: 'us-west-2',
         accessKeyId: process.env.AWS_ACCESS_KEY_ID,
         secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY,
-        model: 'anthropic.claude-sonnet-4-20250514-v1:0'
+        model: 'anthropic.claude-sonnet-4-6'
       },
       {
         provider: 'openai',
         apiKey: process.env.OPENAI_API_KEY,
-        model: 'gpt-4o'
+        model: 'gpt-5.2'
       }
     ],
     maxTotalAttempts: 15  // Maximum attempts across all providers
@@ -919,7 +919,7 @@ const extractTool = tools.createExtractTool();
 
 // Create a ChatOpenAI instance with tools
 const model = new ChatOpenAI({
-  modelName: "gpt-4o",
+  modelName: "gpt-5.2",
   temperature: 0.7
 }).withTools([searchTool, queryTool, extractTool]);
 

package/build/agent/FallbackManager.js

@@ -41,10 +41,10 @@ export const FALLBACK_STRATEGIES = {
  * Default model mappings for each provider
  */
 const DEFAULT_MODELS = {
-  anthropic: 'claude-sonnet-4-5-20250929',
-  openai: 'gpt-4o',
-  google: 'gemini-2.0-flash-exp',
-  bedrock: 'anthropic.claude-sonnet-4-20250514-v1:0'
+  anthropic: 'claude-sonnet-4-6',
+  openai: 'gpt-5.2',
+  google: 'gemini-2.5-flash',
+  bedrock: 'anthropic.claude-sonnet-4-6'
 };
 
 /**

package/build/agent/ProbeAgent.js

@@ -83,7 +83,8 @@ import {
   isJsonSchemaDefinition,
   createSchemaDefinitionCorrectionPrompt,
   validateAndFixMermaidResponse,
-  tryAutoWrapForSimpleSchema
+  tryAutoWrapForSimpleSchema,
+  tryExtractValidJsonPrefix
 } from './schemaUtils.js';
 import { removeThinkingTags, extractThinkingContent } from './xmlParsingUtils.js';
 import { predefinedPrompts } from './shared/prompts.js';
@@ -718,7 +719,7 @@ export class ProbeAgent {
           // Set provider to claude-code
           this.clientApiProvider = 'claude-code';
           this.provider = null;
-          this.model = this.clientApiModel || 'claude-3-5-sonnet-20241022';
+          this.model = this.clientApiModel || 'claude-sonnet-4-6';
           this.apiType = 'claude-code';
         } else if (codexAvailable) {
           if (this.debug) {
@@ -728,7 +729,7 @@ export class ProbeAgent {
           // Set provider to codex
           this.clientApiProvider = 'codex';
           this.provider = null;
-          this.model = this.clientApiModel || 'gpt-4o';
+          this.model = this.clientApiModel || 'gpt-5.2';
           this.apiType = 'codex';
         } else {
           // Neither API keys nor CLI commands available
@@ -1040,7 +1041,7 @@ export class ProbeAgent {
       // Claude Code engine will be initialized lazily in getEngine()
       // Set minimal defaults for compatibility
       this.provider = null;
-      this.model = modelName || 'claude-3-5-sonnet-20241022';
+      this.model = modelName || 'claude-sonnet-4-6';
       this.apiType = 'claude-code';
       if (this.debug) {
         console.log('[DEBUG] Claude Code engine selected - will use built-in access if available');
@@ -1498,7 +1499,7 @@ export class ProbeAgent {
       apiKey: apiKey,
       ...(apiUrl && { baseURL: apiUrl }),
     });
-    this.model = modelName || 'claude-sonnet-4-5-20250929';
+    this.model = modelName || 'claude-sonnet-4-6';
     this.apiType = 'anthropic';
     
     if (this.debug) {
@@ -1515,7 +1516,7 @@ export class ProbeAgent {
       apiKey: apiKey,
       ...(apiUrl && { baseURL: apiUrl }),
     });
-    this.model = modelName || 'gpt-5-thinking';
+    this.model = modelName || 'gpt-5.2';
     this.apiType = 'openai';
     
     if (this.debug) {
@@ -1645,7 +1646,7 @@ export class ProbeAgent {
     }
     
     this.provider = createAmazonBedrock(config);
-    this.model = modelName || 'anthropic.claude-sonnet-4-20250514-v1:0';
+    this.model = modelName || 'anthropic.claude-sonnet-4-6';
     this.apiType = 'bedrock';
 
     if (this.debug) {
@@ -1714,7 +1715,7 @@ export class ProbeAgent {
           sessionId: this.options?.sessionId,
           debug: this.debug,
           allowedTools: this.allowedTools,  // Pass tool filtering configuration
-          model: this.model  // Pass model name (e.g., gpt-4o, o3, etc.)
+          model: this.model  // Pass model name (e.g., gpt-5.2, o3, etc.)
         });
         if (this.debug) {
           console.log('[DEBUG] Using Codex CLI engine with Probe tools');
@@ -3027,8 +3028,9 @@ Follow these instructions carefully:
       // +1 for schema formatting
       // +2 for potential Mermaid validation retries (can be multiple diagrams)
       // +1 for potential JSON correction
-      const baseMaxIterations = this.maxIterations || MAX_TOOL_ITERATIONS;
-      const maxIterations = options.schema ? baseMaxIterations + 4 : baseMaxIterations;
+      // _maxIterationsOverride: used by correction calls to cap iterations (issue #447)
+      const baseMaxIterations = options._maxIterationsOverride || this.maxIterations || MAX_TOOL_ITERATIONS;
+      const maxIterations = (options._maxIterationsOverride) ? baseMaxIterations : (options.schema ? baseMaxIterations + 4 : baseMaxIterations);
 
       // Check if we're using CLI-based engines which handle their own agentic loop
       const isClaudeCode = this.clientApiProvider === 'claude-code' || process.env.USE_CLAUDE_CODE === 'true';
@@ -3247,9 +3249,7 @@ Follow these instructions carefully:
         if (!maxResponseTokens) {
           // Use model-based defaults if not explicitly configured
           maxResponseTokens = 4000;
-          if (this.model && this.model.includes('opus') || this.model && this.model.includes('sonnet') || this.model && this.model.startsWith('gpt-4-')) {
-            maxResponseTokens = 8192;
-          } else if (this.model && this.model.startsWith('gpt-4o')) {
+          if (this.model && this.model.includes('opus') || this.model && this.model.includes('sonnet') || this.model && this.model.startsWith('gpt-4') || this.model && this.model.startsWith('gpt-5')) {
             maxResponseTokens = 8192;
           } else if (this.model && this.model.startsWith('gemini')) {
             maxResponseTokens = 32000;
@@ -4693,11 +4693,14 @@ Convert your previous response content into actual JSON data that follows this s
                 0
               );
               
+              // Strip schema from correction options to prevent inflated iteration budget (issue #447)
+              const { schema: _unusedSchema1, ...schemaDefCorrectionOptions } = options;
               finalResult = await this.answer(schemaDefinitionPrompt, [], {
-                ...options,
+                ...schemaDefCorrectionOptions,
                 _schemaFormatted: true,
                 _skipValidation: true,  // Skip validation in recursive correction calls to prevent loops
-                _completionPromptProcessed: true  // Prevent cascading completion prompts in retry calls
+                _completionPromptProcessed: true,  // Prevent cascading completion prompts in retry calls
+                _maxIterationsOverride: 3  // Correction should complete in 1-2 iterations (issue #447)
               });
               finalResult = cleanSchemaResponse(finalResult);
               validation = validateJsonResponse(finalResult);
@@ -4753,12 +4756,15 @@ Convert your previous response content into actual JSON data that follows this s
                 );
               }
               
+              // Strip schema from correction options to prevent inflated iteration budget (issue #447)
+              const { schema: _unusedSchema2, ...correctionOptions } = options;
               finalResult = await this.answer(correctionPrompt, [], {
-                ...options,
+                ...correctionOptions,
                 _schemaFormatted: true,
                 _skipValidation: true,  // Skip validation in recursive correction calls to prevent loops
                 _disableTools: true,    // Only allow attempt_completion - prevent AI from using search/query tools
-                _completionPromptProcessed: true  // Prevent cascading completion prompts in retry calls
+                _completionPromptProcessed: true,  // Prevent cascading completion prompts in retry calls
+                _maxIterationsOverride: 3  // Correction should complete in 1-2 iterations (issue #447)
               });
               finalResult = cleanSchemaResponse(finalResult);
               

package/build/agent/bashDefaults.js

@@ -1,6 +1,14 @@
 /**
  * Default allow and deny patterns for bash command execution
  * @module agent/bashDefaults
+ *
+ * Pattern syntax: colon-separated parts matching command + args.
+ *   'git:push'        — matches 'git push', 'git push origin main', etc.
+ *   'git:push:--force' — matches 'git push --force ...'
+ *   'git:branch:*'     — wildcard matches any arg (or no arg) at that position
+ *
+ * NOTE: 'X' and 'X:*' are functionally identical — the shorter form is preferred.
+ * A pattern only checks the parts it specifies; extra args are ignored.
  */
 
 /**
@@ -8,36 +16,68 @@
  */
 export const DEFAULT_ALLOW_PATTERNS = [
   // Basic navigation and listing
-  'ls', 'dir', 'pwd', 'cd', 'cd:*',
-  
+  'ls', 'dir', 'pwd', 'cd',
+
   // File reading commands
-  'cat', 'cat:*', 'head', 'head:*', 'tail', 'tail:*',
+  'cat', 'head', 'tail',
   'less', 'more', 'view',
-  
+
   // File information and metadata
-  'file', 'file:*', 'stat', 'stat:*', 'wc', 'wc:*',
-  'du', 'du:*', 'df', 'df:*', 'realpath', 'realpath:*',
-  
-  // Search and find commands (read-only) - find restricted to safe operations
-  'find', 'find:-name:*', 'find:-type:*', 'find:-size:*', 'find:-mtime:*', 'find:-newer:*',
-  'find:-path:*', 'find:-iname:*', 'find:-maxdepth:*', 'find:-mindepth:*', 'find:-print',
-  'grep', 'grep:*', 'egrep', 'egrep:*', 'fgrep', 'fgrep:*',
-  'rg', 'rg:*', 'ag', 'ag:*', 'ack', 'ack:*',
-  'which', 'which:*', 'whereis', 'whereis:*', 'locate', 'locate:*',
-  'type', 'type:*', 'command', 'command:*',
-  
+  'file', 'stat', 'wc',
+  'du', 'df', 'realpath',
+
+  // Search and find commands (read-only)
+  // Note: bare 'find' allows all find variants; dangerous ones (find -exec) are blocked by deny list
+  'find',
+  'grep', 'egrep', 'fgrep',
+  'rg', 'ag', 'ack',
+  'which', 'whereis', 'locate',
+  'type', 'command',
+
   // Tree and structure visualization
-  'tree', 'tree:*',
-  
+  'tree',
+
   // Git read-only operations
-  'git:status', 'git:log', 'git:log:*', 'git:diff', 'git:diff:*',
-  'git:show', 'git:show:*', 'git:branch', 'git:branch:*',
-  'git:tag', 'git:tag:*', 'git:describe', 'git:describe:*',
-  'git:remote', 'git:remote:*', 'git:config:*',
-  'git:blame', 'git:blame:*', 'git:shortlog', 'git:reflog',
-  'git:ls-files', 'git:ls-tree', 'git:rev-parse', 'git:rev-list',
-  'git:--version', 'git:help', 'git:help:*',
-  
+  'git:status', 'git:log', 'git:diff',
+  'git:show', 'git:branch',
+  'git:tag', 'git:describe',
+  'git:remote', 'git:config',
+  'git:blame', 'git:shortlog', 'git:reflog',
+  'git:ls-files', 'git:ls-tree',
+  'git:ls-remote',
+  'git:rev-parse', 'git:rev-list',
+  'git:cat-file',
+  'git:diff-tree', 'git:diff-files',
+  'git:diff-index',
+  'git:for-each-ref',
+  'git:merge-base',
+  'git:name-rev',
+  'git:count-objects',
+  'git:verify-commit', 'git:verify-tag',
+  'git:check-ignore', 'git:check-attr',
+  'git:stash:list', 'git:stash:show',
+  'git:worktree:list',
+  'git:notes:list', 'git:notes:show',
+  'git:--version', 'git:help',
+
+  // GitHub CLI (gh) read-only operations
+  'gh:--version', 'gh:help', 'gh:status',
+  'gh:auth:status',
+  'gh:issue:list', 'gh:issue:view',
+  'gh:issue:status',
+  'gh:pr:list', 'gh:pr:view',
+  'gh:pr:status', 'gh:pr:diff',
+  'gh:pr:checks',
+  'gh:repo:list', 'gh:repo:view',
+  'gh:release:list', 'gh:release:view',
+  'gh:run:list', 'gh:run:view',
+  'gh:workflow:list', 'gh:workflow:view',
+  'gh:gist:list', 'gh:gist:view',
+  'gh:search:issues', 'gh:search:prs',
+  'gh:search:repos', 'gh:search:code',
+  'gh:search:commits',
+  'gh:api',
+
   // Package managers (information only)
   'npm:list', 'npm:ls', 'npm:view', 'npm:info', 'npm:show',
   'npm:outdated', 'npm:audit', 'npm:--version',
@@ -48,7 +88,7 @@ export const DEFAULT_ALLOW_PATTERNS = [
   'gem:list', 'gem:--version',
   'bundle:list', 'bundle:show', 'bundle:--version',
   'composer:show', 'composer:--version',
-  
+
   // Language and runtime versions
   'node:--version', 'node:-v',
   'python:--version', 'python:-V', 'python3:--version', 'python3:-V',
@@ -58,51 +98,51 @@ export const DEFAULT_ALLOW_PATTERNS = [
   'java:--version', 'java:-version', 'javac:--version',
   'mvn:--version', 'gradle:--version',
   'php:--version', 'dotnet:--version', 'dotnet:list',
-  
+
   // Database client versions (connection info only)
   'psql:--version', 'mysql:--version', 'redis-cli:--version',
   'mongo:--version', 'sqlite3:--version',
-  
+
   // System information
-  'uname', 'uname:*', 'hostname', 'whoami', 'id', 'groups',
-  'date', 'cal', 'uptime', 'w', 'users', 'sleep', 'sleep:*',
-  
+  'uname', 'hostname', 'whoami', 'id', 'groups',
+  'date', 'cal', 'uptime', 'w', 'users', 'sleep',
+
   // Environment and shell
-  'env', 'printenv', 'echo', 'echo:*', 'printf', 'printf:*',
-  'export', 'export:*', 'set', 'unset',
-  
+  'env', 'printenv', 'echo', 'printf',
+  'export', 'set', 'unset',
+
   // Process information (read-only)
-  'ps', 'ps:*', 'pgrep', 'pgrep:*', 'jobs', 'top:-n:1',
-  
+  'ps', 'pgrep', 'jobs', 'top:-n:1',
+
   // Network information (read-only)
   'ifconfig', 'ip:addr', 'ip:link', 'hostname:-I',
   'ping:-c:*', 'traceroute', 'nslookup', 'dig',
-  
+
   // Text processing and utilities (awk removed - too powerful)
-  'sed:-n:*', 'cut', 'cut:*', 'sort', 'sort:*',
-  'uniq', 'uniq:*', 'tr', 'tr:*', 'column', 'column:*',
-  'paste', 'paste:*', 'join', 'join:*', 'comm', 'comm:*',
-  'diff', 'diff:*', 'cmp', 'cmp:*', 'patch:--dry-run:*',
-  
+  'sed:-n:*', 'cut', 'sort',
+  'uniq', 'tr', 'column',
+  'paste', 'join', 'comm',
+  'diff', 'cmp', 'patch:--dry-run:*',
+
   // Hashing and encoding (read-only)
-  'md5sum', 'md5sum:*', 'sha1sum', 'sha1sum:*', 'sha256sum', 'sha256sum:*',
-  'base64', 'base64:-d', 'od', 'od:*', 'hexdump', 'hexdump:*',
-  
+  'md5sum', 'sha1sum', 'sha256sum',
+  'base64', 'base64:-d', 'od', 'hexdump',
+
   // Archive and compression (list/view only)
   'tar:-tf:*', 'tar:-tzf:*', 'unzip:-l:*', 'zip:-l:*',
   'gzip:-l:*', 'gunzip:-l:*',
-  
+
   // Help and documentation
-  'man', 'man:*', '--help', 'help', 'info', 'info:*',
-  'whatis', 'whatis:*', 'apropos', 'apropos:*',
-  
+  'man', '--help', 'help', 'info',
+  'whatis', 'apropos',
+
   // Make (dry run and info)
   'make:-n', 'make:--dry-run', 'make:-p', 'make:--print-data-base',
-  
+
   // Docker (read-only operations)
   'docker:ps', 'docker:images', 'docker:version', 'docker:info',
   'docker:logs:*', 'docker:inspect:*',
-  
+
   // Test runners (list/info only)
   'jest:--listTests', 'mocha:--help', 'pytest:--collect-only'
 ];
@@ -112,21 +152,22 @@ export const DEFAULT_ALLOW_PATTERNS = [
  */
 export const DEFAULT_DENY_PATTERNS = [
   // Dangerous file operations
-  'rm:-rf', 'rm:-f:/', 'rm:/', 'rm:-rf:*', 'rmdir', 
+  'rm:-rf', 'rm:-f:/', 'rm:/', 'rmdir',
   'chmod:777', 'chmod:-R:777', 'chown', 'chgrp',
-  'dd', 'dd:*', 'shred', 'shred:*',
-  
+  'dd', 'shred',
+
   // Dangerous find operations that can execute arbitrary commands
-  'find:-exec:*', 'find:*:-exec:*', 'find:-execdir:*', 'find:*:-execdir:*', 
-  'find:-ok:*', 'find:*:-ok:*', 'find:-okdir:*', 'find:*:-okdir:*',
-  
+  'find:-exec', 'find:*:-exec', 'find:-execdir', 'find:*:-execdir',
+  'find:-ok', 'find:*:-ok', 'find:-okdir', 'find:*:-okdir',
+
   // Powerful scripting tools that can execute arbitrary commands
-  'awk', 'awk:*', 'perl', 'perl:*', 'python:-c:*', 'node:-e:*',
-  
+  'awk', 'perl', 'python:-c:*', 'node:-e:*',
+
   // System administration and modification
-  'sudo:*', 'su', 'su:*', 'passwd', 'adduser', 'useradd',
+  'sudo', 'su',
+  'passwd', 'adduser', 'useradd',
   'userdel', 'usermod', 'groupadd', 'groupdel', 'visudo',
-  
+
   // Package installation and removal
   'npm:install', 'npm:i', 'npm:uninstall', 'npm:publish',
   'npm:unpublish', 'npm:link', 'npm:update',
@@ -137,66 +178,103 @@ export const DEFAULT_DENY_PATTERNS = [
   'gem:install', 'gem:uninstall', 'gem:update',
   'bundle:install', 'bundle:update',
   'composer:install', 'composer:update', 'composer:remove',
-  'apt:*', 'apt-get:*', 'yum:*', 'dnf:*', 'zypper:*',
+  'apt', 'apt-get', 'yum', 'dnf', 'zypper',
   'brew:install', 'brew:uninstall', 'brew:upgrade',
   'conda:install', 'conda:remove', 'conda:update',
-  
+
   // Service and system control
-  'systemctl:*', 'service:*', 'chkconfig:*',
-  'initctl:*', 'upstart:*',
-  
+  'systemctl', 'service', 'chkconfig',
+  'initctl', 'upstart',
+
   // Network operations that could be dangerous
   'curl:-d:*', 'curl:--data:*', 'curl:-X:POST:*', 'curl:-X:PUT:*',
   'wget:-O:/', 'wget:--post-data:*',
-  'ssh', 'ssh:*', 'scp', 'scp:*', 'sftp', 'sftp:*', 'rsync:*',
-  'nc', 'nc:*', 'netcat', 'netcat:*', 'telnet', 'telnet:*',
-  'ftp', 'ftp:*',
-  
+  'ssh', 'scp', 'sftp', 'rsync',
+  'nc', 'netcat', 'telnet',
+  'ftp',
+
   // Process control and termination
-  'kill', 'kill:*', 'killall', 'killall:*', 'pkill', 'pkill:*',
-  'nohup:*', 'disown:*',
-  
+  'kill', 'killall', 'pkill',
+  'nohup', 'disown',
+
   // System control and shutdown
-  'shutdown', 'shutdown:*', 'reboot', 'halt', 'poweroff',
+  'shutdown', 'reboot', 'halt', 'poweroff',
   'init', 'telinit',
-  
+
   // Kernel and module operations
-  'insmod', 'insmod:*', 'rmmod', 'rmmod:*', 'modprobe', 'modprobe:*',
+  'insmod', 'rmmod', 'modprobe',
   'sysctl:-w:*',
-  
+
   // Dangerous git operations
-  'git:push', 'git:push:*', 'git:force', 'git:reset:--hard:*',
-  'git:clean:-fd', 'git:rm:*', 'git:commit', 'git:merge',
-  'git:rebase', 'git:cherry-pick', 'git:stash:drop',
-  
+  'git:push', 'git:force', 'git:reset',
+  'git:clean', 'git:rm',
+  'git:commit', 'git:merge',
+  'git:rebase', 'git:cherry-pick',
+  'git:stash:drop', 'git:stash:pop',
+  'git:stash:push', 'git:stash:clear',
+  'git:branch:-d', 'git:branch:-D',
+  'git:branch:--delete',
+  'git:tag:-d', 'git:tag:--delete',
+  'git:remote:remove', 'git:remote:rm',
+  'git:checkout:--force',
+  'git:checkout:-f',
+  'git:submodule:deinit',
+  'git:notes:add', 'git:notes:remove',
+  'git:worktree:add',
+  'git:worktree:remove',
+
+  // Dangerous GitHub CLI (gh) write operations
+  'gh:issue:create', 'gh:issue:close',
+  'gh:issue:delete', 'gh:issue:edit',
+  'gh:issue:reopen',
+  'gh:issue:comment',
+  'gh:pr:create', 'gh:pr:close',
+  'gh:pr:merge', 'gh:pr:edit',
+  'gh:pr:reopen', 'gh:pr:review',
+  'gh:pr:comment',
+  'gh:repo:create', 'gh:repo:delete',
+  'gh:repo:fork', 'gh:repo:rename',
+  'gh:repo:archive', 'gh:repo:clone',
+  'gh:release:create', 'gh:release:delete',
+  'gh:release:edit',
+  'gh:run:cancel', 'gh:run:rerun',
+  'gh:workflow:run',
+  'gh:workflow:enable', 'gh:workflow:disable',
+  'gh:gist:create', 'gh:gist:delete',
+  'gh:gist:edit',
+  'gh:secret:set', 'gh:secret:delete',
+  'gh:variable:set', 'gh:variable:delete',
+  'gh:label:create', 'gh:label:delete',
+  'gh:ssh-key:add', 'gh:ssh-key:delete',
+
   // File system mounting and partitioning
-  'mount', 'mount:*', 'umount', 'umount:*', 'fdisk', 'fdisk:*',
-  'parted', 'parted:*', 'mkfs', 'mkfs:*', 'fsck', 'fsck:*',
-  
+  'mount', 'umount', 'fdisk',
+  'parted', 'mkfs', 'fsck',
+
   // Cron and scheduling
-  'crontab', 'crontab:*', 'at', 'at:*', 'batch', 'batch:*',
-  
+  'crontab', 'at', 'batch',
+
   // Compression with potential overwrite
-  'tar:-xf:*', 'unzip', 'unzip:*', 'gzip:*', 'gunzip:*',
-  
+  'tar:-xf:*', 'unzip', 'gzip', 'gunzip',
+
   // Build and compilation that might modify files
   'make', 'make:install', 'make:clean', 'cargo:build', 'cargo:install',
   'npm:run:build', 'yarn:build', 'mvn:install', 'gradle:build',
-  
+
   // Docker operations that could modify state
-  'docker:run', 'docker:run:*', 'docker:exec', 'docker:exec:*',
-  'docker:build', 'docker:build:*', 'docker:pull', 'docker:push',
+  'docker:run', 'docker:exec',
+  'docker:build', 'docker:pull', 'docker:push',
   'docker:rm', 'docker:rmi', 'docker:stop', 'docker:start',
-  
+
   // Database operations
   'mysql:-e:DROP', 'psql:-c:DROP', 'redis-cli:FLUSHALL',
   'mongo:--eval:*',
-  
+
   // Text editors that could modify files
-  'vi', 'vi:*', 'vim', 'vim:*', 'nano', 'nano:*', 'emacs', 'emacs:*',
+  'vi', 'vim', 'nano', 'emacs',
   'sed:-i:*', 'perl:-i:*',
-  
+
   // Potentially dangerous utilities
-  'eval', 'eval:*', 'exec', 'exec:*', 'source', 'source:*',
+  'eval', 'exec', 'source',
   'bash:-c:*', 'sh:-c:*', 'zsh:-c:*'
-];
+];