> - Path-sandboxed file ops. Keeps agents locked to a working directory
How is it supposed to work, if agent can simply run "cat" command instead of using skill for file read/write/etc?
> - Path-sandboxed file ops. Keeps agents locked to a working directory
How is it supposed to work, if agent can simply run "cat" command instead of using skill for file read/write/etc?
chroot
you cant be serious
chroot is not a security tool and never has been
fine. cgroups, pivot_root, whatever. this is a solved problem.