Documentation Navigation
configure

Permissions & Security System

Codey operates a strict security model to prevent unauthorized code executions or file overwrites.

#Permission Tiers

  • allow: Runs the tool automatically without prompting.
  • ask: Asks for your explicit confirmation before executing the action.
  • deny: Disables the tool entirely.

#Configuration Rules

Set default permissions in your configuration:

json
{
  "permission": {
    "edit": "ask",
    "bash": {
      "*": "ask",
      "git status": "allow",
      "rm -rf *": "deny"
    }
  }
}
Bash commands are analyzed for arguments before matching. Denying a command pattern (like rm -rf *) prevents agents from executing it even if they attempt to run it through a shell script.