Skip to content

feat(security): require opt-in trustPlugins flag for remote code execution#6

Open
cedric-appdirect wants to merge 1 commit into
jgordijn:mainfrom
cedric-appdirect:security/trust-plugins-gate
Open

feat(security): require opt-in trustPlugins flag for remote code execution#6
cedric-appdirect wants to merge 1 commit into
jgordijn:mainfrom
cedric-appdirect:security/trust-plugins-gate

Conversation

@cedric-appdirect

Copy link
Copy Markdown

Add trustPlugins field to RepositoryConfigSchema (defaults to false). When false, discovered plugins are skipped at the performSync layer with a warning. Skills, agents, commands, and instructions (data, not code) are still imported normally.

This is the critical fix: previously, plugins from any configured repo were silently installed and executed at startup with no user opt-in.

Breaking change: users who rely on remote plugins loading automatically must add
trustPlugins: true to their repository configs.

…ution

Add trustPlugins field to RepositoryConfigSchema (defaults to false).
When false, discovered plugins are skipped at the performSync layer
with a warning. Skills, agents, commands, and instructions (data, not
code) are still imported normally.

This is the CRIT-1 fix: previously, plugins from any configured repo
were silently installed and executed at startup with no user opt-in.

Breaking change: users who rely on remote plugins loading automatically
must add trustPlugins: true to their repository configs.

Assisted-by: OpenCode with claude-opus-4-7
Signed-off-by: Cedric BAIL <cedric.bail@appdirect.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant