Managing Blacklists
Go to Command Center → Blacklist and click Create Entry to add a new entry.
Pattern
The string or glob pattern that defines which commands to block. Patterns match commands that contain the text anywhere, not just exact matches. Glob wildcards are also supported:*matches any sequence of characters?matches a single character
rm -rf * blocks any rm -rf command regardless of the target path. vim blocks any command containing the word vim.
The Command Center shows a live preview of matching and non-matching commands as you type, so you can verify a pattern before saving it. A collapsible syntax reference is available inline in the create and edit dialogs.
Description
Explains why the command is blocked. Example:Vim is interactive and can't be operated by LLMs
Organization
By default, a blacklist is scoped to your current organization and applies only to that org’s agents. Toggle the scope checkbox to Scoped to Tenant to make the blacklist available to all organizations in the tenant.Common Use Cases
Destructive Operations Block high-risk commands for additional safety:rm -rf /awscli terminate-instancessudo shutdown
redis-clivim,nano,vimysql,psqlpython