You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: AGENTS.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -37,10 +37,10 @@ To ensure long-running safe autonomous execution, the following rules are strict
37
37
6.**Proposal Mutability Boundary**: Proposal outputs (in `proposals/`) must never mutate active source files until approved and applied through the apply gate.
38
38
7.**Subagent Restrictions**: Subagents may validate, search, or inspect codebase assets but must never be used to bypass network, API key, browser, or write restrictions.
39
39
8.**Browser Sandbox**: Browser use is denied by default and requires explicit phase permission.
40
-
9.**Network Sandbox**: Network socket connections are denied by default and require explicit phase permission.
40
+
9.**Network Sandbox**: Network socket connections are denied by default and requires explicit phase permission.
41
41
10.**Provider Isolation**: Live provider LLM calls are denied by default and require explicit phase permission.
42
42
11.**Secrets Redaction**: Private keys, `.env` file details, passwords, and API credentials must never be read, printed, packed, proposed, or committed.
43
-
12.**Git Progression Pipeline**: After completing a phase successfully (all checks green), the agent must validate the build, update `PROJEKT.md` status, commit the modifications, and push changes to origin.
43
+
12.**Git Safety Gate**: After completing a phase successfully, the agent may update project status and report local validation evidence. `git commit` is allowed only when the phase prompt explicitly requests a commit. `git push`, remote branch creation, PR creation, and merge actions require separate explicit user authorization. If authentication, network access, or remote Git interaction is needed without that authorization, halt and report `BLOCKED`.
44
44
13.**Explicit Halt**: If blocked by stop conditions, the agent must immediately stop execution and report the precise reason to the user.
45
45
46
46
---
@@ -96,7 +96,7 @@ FILES_CHANGED: <list of changed files>
96
96
COMMANDS_RUN: <list of commands executed>
97
97
VALIDATION: <validation output summary>
98
98
ARTIFACTS: <list of generated artifacts>
99
-
GIT: <git commit and push hash/result>
99
+
GIT: <commit only if explicitly requested; push/remote action only if separately explicitly authorized>
0 commit comments