Phase 4: Safe tool scoping for non-owner users

t-707·WorkTask···

Created1 month ago·Updated1 week ago·pipeline runs →

Sandbox run_bash CWD to user workspace, blocklist dangerous commands, restrict read/write_file to user workspace + shared paths. Owner unrestricted.

🔄[human]Open → Review1 month ago

💬[human]1 week ago

Ava verified: commit found in live history referencing this task/feature. Moving to Verified.

🔄[human]Review → Verified1 week ago