nextclaw-core 0.4.3 → 0.4.4

package/dist/index.js

@@ -982,16 +982,17 @@ var ExecTool = class extends Tool {
       "\\brm\\s+-[rf]{1,2}\\b",
       "\\bdel\\s+/[fq]\\b",
       "\\brmdir\\s+/s\\b",
-      "\\b(format|mkfs|diskpart)\\b",
       "\\bdd\\s+if=",
       ">\\s*/dev/sd",
       "\\b(shutdown|reboot|poweroff)\\b",
       ":\\(\\)\\s*\\{.*\\};\\s*:"
     ]).map((pattern) => new RegExp(pattern, "i"));
     this.allowPatterns = (options.allowPatterns ?? []).map((pattern) => new RegExp(pattern, "i"));
+    this.dangerousCommands = ["format", "diskpart", "mkfs"];
   }
   denyPatterns;
   allowPatterns;
+  dangerousCommands;
   get name() {
     return "exec";
   }
@@ -1037,6 +1038,9 @@ ${stderr}`);
   }
   guardCommand(command, cwd) {
     const normalized = command.trim().toLowerCase();
+    if (this.isDangerousCommand(normalized)) {
+      return "Error: Command blocked by safety guard (dangerous pattern detected)";
+    }
     for (const pattern of this.denyPatterns) {
       if (pattern.test(normalized)) {
         return "Error: Command blocked by safety guard (dangerous pattern detected)";
@@ -1062,6 +1066,26 @@ ${stderr}`);
     }
     return null;
   }
+  isDangerousCommand(command) {
+    const segments = command.split(/\s*(?:\|\||&&|;|\|)\s*/);
+    for (const segment2 of segments) {
+      const match = segment2.trim().match(/^(?:sudo\s+)?([^\s]+)/i);
+      if (!match) {
+        continue;
+      }
+      const token = match[1]?.toLowerCase() ?? "";
+      if (!token) {
+        continue;
+      }
+      if (this.dangerousCommands.includes(token)) {
+        return true;
+      }
+      if (token.startsWith("mkfs")) {
+        return true;
+      }
+    }
+    return false;
+  }
 };
 function truncateOutput(result, maxLen = 1e4) {
   if (result.length <= maxLen) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "nextclaw-core",
-  "version": "0.4.3",
+  "version": "0.4.4",
   "private": false,
   "description": "Nextclaw runtime core (agent, channels, providers, config).",
   "type": "module",