@proletariat/cli 0.3.48 → 0.3.49

package/dist/commands/claude/index.js

@@ -143,8 +143,8 @@ export default class Claude extends PromptCommand {
         else {
             // Build devcontainer label
             const devcontainerLabel = hasProjectDevcontainer
-                ? '🐳 devcontainer (uses project config, sandboxed)'
-                : '🐳 devcontainer (uses catch-all container, sandboxed)';
+                ? '🐳 devcontainer (uses project config, isolated)'
+                : '🐳 devcontainer (uses catch-all container, isolated)';
             // In JSON mode, output environment prompt and exit
             if (jsonMode) {
                 await this.prompt([
@@ -267,15 +267,15 @@ export default class Claude extends PromptCommand {
             displayMode = selectedDisplay;
         }
         // Prompt for permission mode
-        let sandboxed = true;
+        let permissionMode = 'safe';
         if (flags['permission-mode']) {
-            sandboxed = flags['permission-mode'] === 'safe';
+            permissionMode = (flags['permission-mode'] || 'safe');
         }
         else {
-            const { permissionMode } = await this.prompt([
+            const { selectedMode } = await this.prompt([
                 {
                     type: 'list',
-                    name: 'permissionMode',
+                    name: 'selectedMode',
                     message: 'Permission mode:',
                     choices: [
                         { name: '⚠️  danger - Skip permission checks (faster)', value: 'danger', command: `prlt claude --slug "${slug}" --environment ${environment} --display-mode ${displayMode} --permission-mode danger --json` },
@@ -286,10 +286,10 @@ export default class Claude extends PromptCommand {
             ], jsonModeConfig);
             if (jsonMode)
                 return;
-            sandboxed = permissionMode === 'safe';
+            permissionMode = selectedMode;
         }
         // Warn about uncommitted changes in danger mode
-        if (!sandboxed && isGitRepo(workDir) && hasUncommittedChanges(workDir)) {
+        if (permissionMode === 'danger' && isGitRepo(workDir) && hasUncommittedChanges(workDir)) {
             this.log('');
             this.warn('Running in danger mode with uncommitted changes!');
             this.log(styles.muted('   Consider committing or stashing changes first.'));
@@ -347,7 +347,7 @@ export default class Claude extends PromptCommand {
         };
         // Load execution config (use defaults for yolo mode)
         const executionConfig = { ...DEFAULT_EXECUTION_CONFIG };
-        executionConfig.sandboxed = sandboxed;
+        executionConfig.permissionMode = permissionMode;
         executionConfig.outputMode = 'interactive';
         // For terminal mode, prompt for terminal preference
         if (displayMode === 'terminal' && !jsonMode) {
@@ -384,7 +384,7 @@ export default class Claude extends PromptCommand {
         this.log(styles.muted(`   Directory: ${workDir}`));
         this.log(styles.muted(`   Environment: ${environment === 'devcontainer' ? '🐳' : '💻'} ${environment}`));
         this.log(styles.muted(`   Display: ${displayMode}`));
-        this.log(styles.muted(`   Permissions: ${sandboxed ? '🔒 safe' : '⚠️  danger'}`));
+        this.log(styles.muted(`   Permissions: ${permissionMode === 'safe' ? '🔒 safe' : '⚠️  danger'}`));
         if (flags.prompt) {
             this.log(styles.muted(`   Initial prompt: "${flags.prompt.substring(0, 50)}${flags.prompt.length > 50 ? '...' : ''}"`));
         }
@@ -537,8 +537,8 @@ export default class Claude extends PromptCommand {
             const hasProjectDevcontainer = hasDevcontainerConfig(workDir);
             // Build devcontainer label
             const devcontainerLabel = hasProjectDevcontainer
-                ? '🐳 devcontainer (uses project config, sandboxed)'
-                : '🐳 devcontainer (uses catch-all container, sandboxed)';
+                ? '🐳 devcontainer (uses project config, isolated)'
+                : '🐳 devcontainer (uses catch-all container, isolated)';
             let environment = 'host';
             if (flags.environment) {
                 environment = flags.environment;
@@ -670,16 +670,16 @@ export default class Claude extends PromptCommand {
                 displayMode = selectedDisplay;
             }
             // Prompt for permission mode
-            let sandboxed = true;
+            let permissionMode = 'safe';
             if (flags['permission-mode']) {
-                sandboxed = flags['permission-mode'] === 'safe';
+                permissionMode = (flags['permission-mode'] || 'safe');
             }
             else {
                 const containerNote = environment === 'devcontainer' ? ' (container provides additional isolation)' : '';
-                const { permissionMode } = await this.prompt([
+                const { selectedMode } = await this.prompt([
                     {
                         type: 'list',
-                        name: 'permissionMode',
+                        name: 'selectedMode',
                         message: `Permission mode${containerNote}:`,
                         choices: [
                             { name: '⚠️  danger - Skip permission checks (faster)', value: 'danger', command: `prlt claude --project ${projectId} --title "${ticketTitle}" --environment ${environment} --display-mode ${displayMode} --permission-mode danger --json` },
@@ -692,10 +692,10 @@ export default class Claude extends PromptCommand {
                     db.close();
                     return;
                 }
-                sandboxed = permissionMode === 'safe';
+                permissionMode = selectedMode;
             }
             // Warn about uncommitted changes in danger mode
-            if (!sandboxed && isGitRepo(workDir) && hasUncommittedChanges(workDir)) {
+            if (permissionMode === 'danger' && isGitRepo(workDir) && hasUncommittedChanges(workDir)) {
                 this.log('');
                 this.warn('Running in danger mode with uncommitted changes!');
                 this.log(styles.muted('   Consider committing or stashing changes first.'));
@@ -777,14 +777,14 @@ export default class Claude extends PromptCommand {
                 executor: 'claude-code',
                 environment,
                 displayMode,
-                sandboxed,
+                permissionMode,
                 branch: 'main',
             });
             // Update ticket assignee
             await storage.updateTicket(ticket.id, { assignee: agentName });
             // Load execution config
             const executionConfig = loadExecutionConfig(db);
-            executionConfig.sandboxed = sandboxed;
+            executionConfig.permissionMode = permissionMode;
             executionConfig.outputMode = 'interactive';
             // For terminal mode, ensure terminal preference is set
             if (displayMode === 'terminal' && !jsonMode) {
@@ -808,7 +808,7 @@ export default class Claude extends PromptCommand {
             this.log(styles.muted(`   Work ID: ${execution.id}`));
             this.log(styles.muted(`   Environment: ${environment === 'devcontainer' ? '🐳' : '💻'} ${environment}`));
             this.log(styles.muted(`   Display: ${displayMode}`));
-            this.log(styles.muted(`   Permissions: ${sandboxed ? '🔒 safe' : '⚠️  danger'}`));
+            this.log(styles.muted(`   Permissions: ${permissionMode === 'safe' ? '🔒 safe' : '⚠️  danger'}`));
             if (flags.prompt) {
                 this.log(styles.muted(`   Initial prompt: "${flags.prompt.substring(0, 50)}${flags.prompt.length > 50 ? '...' : ''}"`));
             }

package/dist/commands/claude/open.js

@@ -102,7 +102,7 @@ export default class Open extends PromptCommand {
         // Load execution config
         const executionConfig = { ...DEFAULT_EXECUTION_CONFIG };
         executionConfig.outputMode = 'interactive';
-        executionConfig.sandboxed = false; // Default to dangerously-skip-permissions for quick open
+        executionConfig.permissionMode = 'danger'; // Default to danger mode for quick open
         // Try to load saved preferences from workspace DB or home dir
         const dbPath = hqPath
             ? path.join(hqPath, '.proletariat', 'workspace.db')

package/dist/commands/config/index.js

@@ -92,7 +92,7 @@ export default class Config extends PromptCommand {
                         defaultExecutor: config.defaultExecutor,
                         defaultEnvironment: config.defaultEnvironment,
                         outputMode: config.outputMode,
-                        sandboxed: config.sandboxed,
+                        permissionMode: config.permissionMode,
                         createPrDefault: config.createPrDefault ?? null,
                         firewall: {
                             allowlistDomains: config.firewall.allowlistDomains,
@@ -118,7 +118,7 @@ export default class Config extends PromptCommand {
                     this.log(`  defaultExecutor:  ${config.defaultExecutor}`);
                     this.log(`  defaultEnvironment: ${config.defaultEnvironment}`);
                     this.log(`  outputMode:       ${config.outputMode}`);
-                    this.log(`  sandboxed:        ${config.sandboxed}`);
+                    this.log(`  permissionMode:   ${config.permissionMode}`);
                     this.log(`  createPrDefault:  ${config.createPrDefault ?? 'not set (will prompt)'}`);
                     this.log(`  firewall.allowlistDomains: ${config.firewall.allowlistDomains.join(', ') || '(none)'}`);
                     this.log('');

package/dist/commands/execution/config.d.ts

@@ -24,7 +24,7 @@ export default class ExecutionConfig extends PMOCommand {
      */
     private setOutputMode;
     /**
-     * Save sandboxed preference to workspace settings
+     * Save permission mode preference to workspace settings
      */
-    private setSandboxed;
+    private setPermissionMode;
 }

package/dist/commands/execution/config.js

@@ -14,7 +14,7 @@ export default class ExecutionConfig extends PMOCommand {
         '<%= config.bin %> execution config --list             # Show all settings',
         '<%= config.bin %> execution config --set defaultEnvironment host',
         '<%= config.bin %> execution config --set outputMode interactive',
-        '<%= config.bin %> execution config --set sandboxed true',
+        '<%= config.bin %> execution config --set permissionMode safe',
         '<%= config.bin %> execution config --setting outputMode --json  # Show output mode choices',
     ];
     static flags = {
@@ -91,7 +91,7 @@ export default class ExecutionConfig extends PMOCommand {
                         defaultEnvironment: config.defaultEnvironment,
                         defaultExecutor: config.defaultExecutor,
                         outputMode: config.outputMode,
-                        sandboxed: config.sandboxed,
+                        permissionMode: config.permissionMode,
                     }, createMetadata('execution config', flags));
                 }
                 else {
@@ -105,7 +105,7 @@ export default class ExecutionConfig extends PMOCommand {
                     this.log('');
                     this.log(styles.emphasis('Output'));
                     this.log(`  outputMode:         ${config.outputMode}`);
-                    this.log(`  sandboxed:          ${config.sandboxed}`);
+                    this.log(`  permissionMode:     ${config.permissionMode}`);
                     this.log('');
                     this.log(styles.emphasis('Terminal'));
                     this.log(`  app:                ${config.terminal.app}`);
@@ -131,7 +131,7 @@ export default class ExecutionConfig extends PMOCommand {
             const settingChoices = [
                 { name: `Default Environment: ${config.defaultEnvironment}`, value: 'defaultEnvironment', command: 'prlt execution config --setting defaultEnvironment --json' },
                 { name: `Output Mode: ${config.outputMode}`, value: 'outputMode', command: 'prlt execution config --setting outputMode --json' },
-                { name: `Permission Mode: ${config.sandboxed ? 'safe' : 'danger'}`, value: 'sandboxed', command: 'prlt execution config --setting sandboxed --json' },
+                { name: `Permission Mode: ${config.permissionMode}`, value: 'permissionMode', command: 'prlt execution config --setting permissionMode --json' },
                 { name: `Terminal App: ${config.terminal.app}`, value: 'terminal.app', command: 'prlt execution config --setting terminal.app --json' },
                 { name: `Open Tabs in Background: ${config.terminal.openInBackground}`, value: 'terminal.openInBackground', command: 'prlt execution config --setting terminal.openInBackground --json' },
                 { name: `Shell: ${config.shell}`, value: 'shell', command: 'prlt execution config --setting shell --json' },
@@ -177,7 +177,7 @@ export default class ExecutionConfig extends PMOCommand {
             case 'defaultEnvironment': {
                 const envChoices = [
                     { name: 'host - Run directly on host machine', value: 'host', command: 'prlt execution config --set "defaultEnvironment host" --json' },
-                    { name: 'devcontainer - Run in a devcontainer (sandboxed)', value: 'devcontainer', command: 'prlt execution config --set "defaultEnvironment devcontainer" --json' },
+                    { name: 'devcontainer - Run in a devcontainer (isolated)', value: 'devcontainer', command: 'prlt execution config --set "defaultEnvironment devcontainer" --json' },
                     { name: 'docker - Run in a Docker container', value: 'docker', command: 'prlt execution config --set "defaultEnvironment docker" --json' },
                     { name: 'vm - Run on a remote VM', value: 'vm', command: 'prlt execution config --set "defaultEnvironment vm" --json' },
                 ];
@@ -212,10 +212,10 @@ export default class ExecutionConfig extends PMOCommand {
                 this.log(styles.success(`Output mode set to: ${newOutput}`));
                 break;
             }
-            case 'sandboxed': {
+            case 'permissionMode': {
                 const permChoices = [
-                    { name: 'safe - Requires approval for dangerous operations (recommended)', value: 'true', command: 'prlt execution config --set "sandboxed true" --json' },
-                    { name: 'danger - Skip permission checks (--dangerously-skip-permissions)', value: 'false', command: 'prlt execution config --set "sandboxed false" --json' },
+                    { name: '🔒 safe   - Requires approval for dangerous operations (recommended)', value: 'safe', command: 'prlt execution config --set "permissionMode safe" --json' },
+                    { name: '⚠️  danger - Skip permission checks (--dangerously-skip-permissions)', value: 'danger', command: 'prlt execution config --set "permissionMode danger" --json' },
                 ];
                 const { newPerm } = await this.prompt([
                     {
@@ -223,11 +223,11 @@ export default class ExecutionConfig extends PMOCommand {
                         name: 'newPerm',
                         message: 'Select permission mode:',
                         choices: permChoices,
-                        default: String(config.sandboxed),
+                        default: config.permissionMode,
                     },
                 ], jsonModeConfig);
-                this.setConfigValue(db, 'sandboxed', newPerm, false);
-                this.log(styles.success(`Permission mode set to: ${newPerm === 'true' ? 'safe' : 'danger'}`));
+                this.setConfigValue(db, 'permissionMode', newPerm, false);
+                this.log(styles.success(`Permission mode set to: ${newPerm}`));
                 break;
             }
             case 'terminal.app': {
@@ -324,7 +324,7 @@ export default class ExecutionConfig extends PMOCommand {
         const VALID_VALUES = {
             defaultenvironment: ['host', 'devcontainer', 'docker', 'vm'],
             outputmode: ['interactive', 'print'],
-            sandboxed: ['true', 'false'],
+            permissionmode: ['safe', 'danger'],
             'terminal.app': ['Terminal', 'iTerm', 'Alacritty', 'Ghostty', 'Kitty', 'tmux', 'Warp', 'WezTerm'],
             'terminal.openinbackground': ['true', 'false'],
             shell: ['bash', 'zsh', 'fish'],
@@ -350,9 +350,9 @@ export default class ExecutionConfig extends PMOCommand {
                 // Store output mode - need to add this to the config storage
                 this.setOutputMode(db, value);
                 break;
-            case 'sandboxed':
-                // Store sandboxed preference
-                this.setSandboxed(db, value.toLowerCase() === 'true');
+            case 'permissionmode':
+                // Store permission mode preference
+                this.setPermissionMode(db, value);
                 break;
             case 'terminal.app':
                 saveTerminalApp(db, value);
@@ -389,9 +389,9 @@ export default class ExecutionConfig extends PMOCommand {
         saveExecutionSetting(db, 'outputMode', mode);
     }
     /**
-     * Save sandboxed preference to workspace settings
+     * Save permission mode preference to workspace settings
      */
-    setSandboxed(db, sandboxed) {
-        saveExecutionSetting(db, 'sandboxed', sandboxed.toString());
+    setPermissionMode(db, mode) {
+        saveExecutionSetting(db, 'permissionMode', mode);
     }
 }

package/dist/commands/execution/list.js

@@ -88,8 +88,8 @@ export default class ExecutionList extends PMOCommand {
                 const timeAgo = formatTimeAgo(exec.startedAt);
                 const envIcon = exec.environment === 'devcontainer' ? '🐳' : (exec.environment === 'host' ? '💻' : '📦');
                 const envStr = `${envIcon} ${exec.environment}`;
-                const permsStr = exec.sandboxed ? 'safe' : 'danger';
-                const permsColor = exec.sandboxed ? styles.success : styles.warning;
+                const permsStr = exec.permissionMode;
+                const permsColor = exec.permissionMode === 'safe' ? styles.success : styles.warning;
                 this.log(visualPadEnd(exec.id, 14) +
                     visualPadEnd(exec.ticketId, 9) +
                     visualPadEnd(exec.agentName, 10) +

package/dist/commands/execution/view.js

@@ -93,7 +93,7 @@ export default class ExecutionView extends PMOCommand {
                     executor: execution.executor,
                     environment: execution.environment,
                     displayMode: execution.displayMode,
-                    sandboxed: execution.sandboxed,
+                    permissionMode: execution.permissionMode,
                     status: execution.status,
                     branch: execution.branch || null,
                     pid: execution.pid || null,
@@ -124,7 +124,7 @@ export default class ExecutionView extends PMOCommand {
             const envIcon = getEnvironmentIcon(execution.environment);
             this.log(`${styles.muted('Type:')}         ${envIcon} ${execution.environment}`);
             this.log(`${styles.muted('Display:')}      ${execution.displayMode}`);
-            this.log(`${styles.muted('Permissions:')}  ${execution.sandboxed ? styles.success('sandboxed (safe)') : styles.warning('unrestricted (danger)')}`);
+            this.log(`${styles.muted('Permissions:')}  ${execution.permissionMode === 'safe' ? styles.success('safe') : styles.warning('danger')}`);
             if (execution.branch) {
                 this.log(`${styles.muted('Branch:')}       ${execution.branch}`);
             }

package/dist/commands/orchestrator/start.d.ts

@@ -18,7 +18,7 @@ export default class OrchestratorStart extends PromptCommand {
         action: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         executor: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         'skip-permissions': import("@oclif/core/interfaces").BooleanFlag<boolean>;
-        sandboxed: import("@oclif/core/interfaces").BooleanFlag<boolean>;
+        'permission-mode': import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         name: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         background: import("@oclif/core/interfaces").BooleanFlag<boolean>;
         foreground: import("@oclif/core/interfaces").BooleanFlag<boolean>;

package/dist/commands/orchestrator/start.js

@@ -44,7 +44,7 @@ export default class OrchestratorStart extends PromptCommand {
     static examples = [
         '<%= config.bin %> <%= command.id %>',
         '<%= config.bin %> <%= command.id %> --executor codex',
-        '<%= config.bin %> <%= command.id %> --skip-permissions',
+        '<%= config.bin %> <%= command.id %> --permission-mode danger',
         '<%= config.bin %> <%= command.id %> --prompt "coordinate all agents on TKT-100"',
         '<%= config.bin %> <%= command.id %> --background',
     ];
@@ -64,13 +64,13 @@ export default class OrchestratorStart extends PromptCommand {
             options: ['claude-code', 'codex', 'aider', 'custom'],
         }),
         'skip-permissions': Flags.boolean({
-            description: 'Run with --dangerously-skip-permissions',
+            description: 'Skip permission checks (shorthand for --permission-mode danger)',
             default: false,
-            exclusive: ['sandboxed'],
+            exclusive: ['permission-mode'],
         }),
-        sandboxed: Flags.boolean({
-            description: 'Run in sandboxed mode (requires approval for dangerous operations)',
-            default: false,
+        'permission-mode': Flags.string({
+            description: 'Permission mode for the orchestrator (danger=skip checks, safe=require approval)',
+            options: ['danger', 'safe'],
             exclusive: ['skip-permissions'],
         }),
         name: Flags.string({
@@ -157,30 +157,30 @@ export default class OrchestratorStart extends PromptCommand {
             selectedExecutor = executor;
         }
         // Permission mode selection
-        let sandboxed;
+        let permissionMode;
         if (flags['skip-permissions']) {
-            sandboxed = false;
+            permissionMode = 'danger';
         }
-        else if (flags.sandboxed) {
-            sandboxed = true;
+        else if (flags['permission-mode']) {
+            permissionMode = flags['permission-mode'];
         }
         else {
             const permissionChoices = [
-                { name: 'Sandboxed (requires approval for dangerous operations)', value: 'sandboxed', command: 'prlt orchestrator start --sandboxed --json' },
-                { name: 'Accept all (--dangerously-skip-permissions)', value: 'skip', command: 'prlt orchestrator start --skip-permissions --json' },
+                { name: '⚠️  danger - Skip permission checks (faster)', value: 'danger', command: 'prlt orchestrator start --permission-mode danger --json' },
+                { name: '🔒 safe   - Requires approval for dangerous operations', value: 'safe', command: 'prlt orchestrator start --permission-mode safe --json' },
             ];
-            const permissionMessage = 'Select permission mode:';
+            const permissionMessage = 'Permission mode:';
             if (jsonMode) {
                 outputPromptAsJson(buildPromptConfig('list', 'permissionMode', permissionMessage, permissionChoices), createMetadata('orchestrator start', flags));
                 return;
             }
-            const { permissionMode } = await this.prompt([{
+            const { permissionMode: selectedMode } = await this.prompt([{
                     type: 'list',
                     name: 'permissionMode',
                     message: permissionMessage,
                     choices: permissionChoices,
                 }]);
-            sandboxed = permissionMode === 'sandboxed';
+            permissionMode = selectedMode;
         }
         // Resolve action prompt
         let actionPrompt = flags.prompt;
@@ -228,7 +228,7 @@ export default class OrchestratorStart extends PromptCommand {
         // Build execution config
         const executionConfig = { ...DEFAULT_EXECUTION_CONFIG };
         executionConfig.outputMode = 'interactive';
-        executionConfig.sandboxed = sandboxed;
+        executionConfig.permissionMode = permissionMode;
         // Load saved preferences from workspace DB
         const dbPath = path.join(hqPath, '.proletariat', 'workspace.db');
         let db = null;
@@ -299,7 +299,7 @@ export default class OrchestratorStart extends PromptCommand {
             this.log('');
             this.log(styles.muted(`   Starting orchestrator...`));
             this.log(styles.muted(`   Executor: ${selectedExecutor}`));
-            this.log(styles.muted(`   Permission mode: ${sandboxed ? 'sandboxed' : 'skip-permissions'}`));
+            this.log(styles.muted(`   Permission mode: ${permissionMode}`));
             this.log(styles.muted(`   Display mode: ${displayMode}`));
             this.log(styles.muted(`   Directory: ${hqPath}`));
             if (orchestratorName !== 'main') {
@@ -325,7 +325,7 @@ export default class OrchestratorStart extends PromptCommand {
                         executor: selectedExecutor,
                         environment: 'host',
                         displayMode,
-                        sandboxed,
+                        permissionMode,
                         sessionId: result.sessionId || sessionName,
                     });
                 }
@@ -337,7 +337,7 @@ export default class OrchestratorStart extends PromptCommand {
                 outputSuccessAsJson({
                     sessionId: result.sessionId || sessionName,
                     executor: selectedExecutor,
-                    sandboxed,
+                    permissionMode,
                     displayMode,
                     directory: hqPath,
                     name: orchestratorName,

package/dist/commands/qa/index.js

@@ -295,7 +295,7 @@ Clean up your tmux session when done.`,
                 }
             }
             // Resolve permission mode (default to danger for QA since it's in a container)
-            const sandboxed = await this.resolvePermissionMode(flags, jsonMode, jsonModeConfig, environment, displayMode);
+            const permissionMode = await this.resolvePermissionMode(flags, jsonMode, jsonModeConfig, environment, displayMode);
             if (jsonMode && !flags['permission-mode']) {
                 db.close();
                 return;
@@ -359,14 +359,14 @@ Clean up your tmux session when done.`,
                 executor: 'claude-code',
                 environment,
                 displayMode,
-                sandboxed,
+                permissionMode,
                 branch: 'main',
             });
             // Update ticket assignee
             await storage.updateTicket(ticket.id, { assignee: agentName });
             // Load execution config
             const executionConfig = loadExecutionConfig(db);
-            executionConfig.sandboxed = sandboxed;
+            executionConfig.permissionMode = permissionMode;
             executionConfig.outputMode = 'interactive';
             // For terminal mode, ensure terminal preference is set
             if (displayMode === 'terminal' && !jsonMode) {
@@ -390,7 +390,7 @@ Clean up your tmux session when done.`,
             this.log(styles.muted(`   Work ID: ${execution.id}`));
             this.log(styles.muted(`   Environment: ${environment === 'devcontainer' ? '🐳' : '💻'} ${environment}`));
             this.log(styles.muted(`   Display: ${displayMode}${flags.watch ? ' (watch mode)' : ''}`));
-            this.log(styles.muted(`   Permissions: ${sandboxed ? '🔒 safe' : '⚠️  danger'}`));
+            this.log(styles.muted(`   Permissions: ${permissionMode === 'safe' ? '🔒 safe' : '⚠️  danger'}`));
             this.log('');
             // Run execution
             this.log(styles.muted('Starting QA agent...'));
@@ -457,7 +457,7 @@ Clean up your tmux session when done.`,
                 return;
         }
         // Resolve permission mode
-        const sandboxed = await this.resolvePermissionMode(flags, jsonMode, jsonModeConfig, environment, displayMode);
+        const permissionMode = await this.resolvePermissionMode(flags, jsonMode, jsonModeConfig, environment, displayMode);
         if (jsonMode && !flags['permission-mode'])
             return;
         const sessionName = `qa-explore-${Date.now().toString(36)}`;
@@ -501,7 +501,7 @@ Clean up your tmux session when done.`,
         };
         // Load execution config
         const executionConfig = { ...DEFAULT_EXECUTION_CONFIG };
-        executionConfig.sandboxed = sandboxed;
+        executionConfig.permissionMode = permissionMode;
         executionConfig.outputMode = 'interactive';
         // For terminal mode, prompt for terminal preference
         if (displayMode === 'terminal' && !jsonMode) {
@@ -535,7 +535,7 @@ Clean up your tmux session when done.`,
         this.log(styles.muted(`   Directory: ${workDir}`));
         this.log(styles.muted(`   Environment: ${environment === 'devcontainer' ? '🐳' : '💻'} ${environment}`));
         this.log(styles.muted(`   Display: ${displayMode}${flags.watch ? ' (watch mode)' : ''}`));
-        this.log(styles.muted(`   Permissions: ${sandboxed ? '🔒 safe' : '⚠️  danger'}`));
+        this.log(styles.muted(`   Permissions: ${permissionMode === 'safe' ? '🔒 safe' : '⚠️  danger'}`));
         this.log('');
         // Run execution
         this.log(styles.muted('Starting QA agent...'));
@@ -575,8 +575,8 @@ Clean up your tmux session when done.`,
         }
         const hasProjectDevcontainer = hasDevcontainerConfig(workDir);
         const devcontainerLabel = hasProjectDevcontainer
-            ? '🐳 devcontainer (uses project config, sandboxed)'
-            : '🐳 devcontainer (uses catch-all container, sandboxed)';
+            ? '🐳 devcontainer (uses project config, isolated)'
+            : '🐳 devcontainer (uses catch-all container, isolated)';
         if (jsonMode) {
             await this.prompt([
                 {
@@ -680,7 +680,7 @@ Clean up your tmux session when done.`,
      */
     async resolvePermissionMode(flags, jsonMode, jsonModeConfig, environment, displayMode) {
         if (flags['permission-mode']) {
-            return flags['permission-mode'] === 'safe';
+            return (flags['permission-mode'] || 'safe');
         }
         const containerNote = environment === 'devcontainer' ? ' (container provides isolation)' : '';
         const { permissionMode } = await this.prompt([
@@ -696,8 +696,8 @@ Clean up your tmux session when done.`,
             },
         ], jsonModeConfig);
         if (jsonMode)
-            return true; // unreachable
-        return permissionMode === 'safe';
+            return 'safe'; // unreachable
+        return permissionMode;
     }
     /**
      * Set up catch-all devcontainer for directories without one.

package/dist/commands/staff/add.js

@@ -264,7 +264,7 @@ export default class Add extends PromptCommand {
                 this.log(chalk.blue(`   From theme: ${theme?.display_name || themeId}`));
             }
             if (!flags['no-container']) {
-                this.log(chalk.blue('   Devcontainer config created for sandboxed execution'));
+                this.log(chalk.blue('   Devcontainer config created for isolated execution'));
             }
         }
         catch (error) {

package/dist/commands/work/linear.js

@@ -2,7 +2,8 @@ import { Flags } from '@oclif/core';
 import { PMOCommand, pmoBaseFlags, autoExportToBoard, } from '../../lib/pmo/index.js';
 import { shouldOutputJson, } from '../../lib/prompt-json.js';
 import { ExternalIssueAdapterError, } from '../../lib/external-issues/types.js';
-import { listLinearIssues, buildLinearIssueChoiceCommand, buildLinearTicketDescription, buildLinearMetadata, buildLinearSpawnContextMessage, } from '../../lib/external-issues/linear.js';
+import { listLinearIssues, getLinearIssueByIdentifier, buildLinearIssueChoiceCommand, buildLinearTicketDescription, buildLinearMetadata, buildLinearSpawnContextMessage, } from '../../lib/external-issues/linear.js';
+import { getLinearApiKey, loadLinearConfig } from '../../lib/linear/index.js';
 function buildWorkStartArgs(options) {
     const args = [options.ticketId, '--project', options.projectId, '--ephemeral'];
     if (options.executor)
@@ -125,6 +126,8 @@ export default class WorkLinear extends PMOCommand {
     async execute() {
         const { flags } = await this.parse(WorkLinear);
         const jsonMode = shouldOutputJson(flags);
+        const db = this.storage.getDatabase();
+        const linearConfig = loadLinearConfig(db);
         const projectId = await this.requireProject({
             jsonMode: {
                 flags,
@@ -132,10 +135,12 @@ export default class WorkLinear extends PMOCommand {
                 baseCommand: 'prlt work linear',
             },
         });
-        const team = flags.team || process.env.PRLT_LINEAR_TEAM;
+        const apiKey = getLinearApiKey(db) || undefined;
+        const team = flags.team || linearConfig?.defaultTeamKey || process.env.PRLT_LINEAR_TEAM;
         let issues;
         try {
             issues = await listLinearIssues({
+                apiKey,
                 team,
             }, { limit: flags.limit });
         }
@@ -150,10 +155,25 @@ export default class WorkLinear extends PMOCommand {
             return this.handleError('NO_LINEAR_ISSUES', 'No active Linear issues found for the configured team.', { jsonMode, commandName: 'work linear', flags });
         }
         let selectedIssue = issues.find(issue => issue.source.externalKey === flags.issue);
-        if (!selectedIssue) {
-            if (flags.issue) {
+        if (!selectedIssue && flags.issue) {
+            try {
+                selectedIssue = await getLinearIssueByIdentifier({
+                    apiKey,
+                    team,
+                }, flags.issue) ?? undefined;
+            }
+            catch (error) {
+                if (error instanceof ExternalIssueAdapterError) {
+                    return this.handleError(error.code, error.message, { jsonMode, commandName: 'work linear', flags });
+                }
+                const msg = error instanceof Error ? error.message : 'Failed to fetch Linear issue.';
+                return this.handleError('LINEAR_REQUEST_FAILED', msg, { jsonMode, commandName: 'work linear', flags });
+            }
+            if (!selectedIssue) {
                 return this.handleError('LINEAR_ISSUE_NOT_FOUND', `Linear issue "${flags.issue}" was not found.`, { jsonMode, commandName: 'work linear', flags });
             }
+        }
+        if (!selectedIssue) {
             const selectedKey = await this.selectFromList({
                 message: 'Select Linear issue to spawn:',
                 items: issues,
@@ -162,7 +182,10 @@ export default class WorkLinear extends PMOCommand {
                     return `[${priority}] ${issue.source.externalKey} - ${issue.title}`;
                 },
                 getValue: issue => issue.source.externalKey,
-                getCommand: issue => buildLinearIssueChoiceCommand(issue.source.externalKey, projectId),
+                getCommand: issue => {
+                    const base = buildLinearIssueChoiceCommand(issue.source.externalKey, projectId);
+                    return team ? `${base} --team ${team}` : base;
+                },
                 jsonMode: jsonMode ? { flags, commandName: 'work linear' } : null,
             });
             if (!selectedKey) {