From 0ec93db561a01706a67f64a7d7ee66ec2d6c9180 Mon Sep 17 00:00:00 2001
From: VS <vspachyn@gmail.com>
Date: Mon, 29 Sep 2025 09:38:12 +0300
Subject: [PATCH] Disable support for '-fls' option in find command for
 security reasone

---
 crates/chat-cli/src/cli/chat/tools/execute/mod.rs | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/crates/chat-cli/src/cli/chat/tools/execute/mod.rs b/crates/chat-cli/src/cli/chat/tools/execute/mod.rs
index 200cac641a..118cc19894 100644
--- a/crates/chat-cli/src/cli/chat/tools/execute/mod.rs
+++ b/crates/chat-cli/src/cli/chat/tools/execute/mod.rs
@@ -113,6 +113,7 @@ impl ExecuteCommand {
                                 || arg.contains("-delete")
                                 || arg.contains("-ok") // includes -okdir
                                 || arg.contains("-fprint") // includes -fprint0 and -fprintf
+                                || arg.contains("-fls")
                         }) =>
                 {
                     return true;
@@ -320,6 +321,7 @@ mod tests {
             ("find important-dir/ -exec rm {} \\;", true),
             ("find . -name '*.c' -execdir gcc -o '{}.out' '{}' \\;", true),
             ("find important-dir/ -delete", true),
+            ("find important-dir/ -fls /etc/passwd", true),
             (
                 "echo y | find . -type f -maxdepth 1 -okdir open -a Calculator {} +",
                 true,