Discover and explore top open-source AI tools and projects—updated daily.
kaplaneladTerminal guardrails for safer command execution
Top 38.9% on SourcePulse
Summary
Shellfirm acts as terminal guardrails, intercepting dangerous shell commands before execution to protect both humans and AI agents. It prevents accidental or malicious damage by presenting context-aware challenges, covering a wide range of ecosystems.
How It Works
Shellfirm hooks into the shell to analyze commands against over 100 patterns across nine ecosystems (filesystem, Git, Kubernetes, Terraform, etc.). For risky commands, it prompts users with context-specific challenges, like math problems, requiring a correct answer to proceed. This adds a verification layer, enhanced by context-aware escalation that increases challenge difficulty in sensitive environments (SSH, root, production clusters).
Quick Start & Requirements
Installation options include npm (npm install -g @shellfirm/cli), Homebrew (brew tap kaplanelad/tap && brew install shellfirm), Cargo (cargo install shellfirm), or downloading a binary. After installation, run shellfirm init --install and restart your shell. Supported shells include Zsh, Bash, Fish, Nushell, PowerShell, Elvish, Xonsh, and Oils. Full documentation is available at shellfirm.dev.
Highlighted Details
.shellfirm.yaml).Maintenance & Community
Contributions are welcomed via GitHub issues and pull requests. No specific community channels or maintainer details are provided in the README.
Licensing & Compatibility
Licensed under the permissive Apache-2.0 license, generally compatible with commercial use and closed-source projects.
Limitations & Caveats
The README does not explicitly detail known limitations, unsupported platforms, or alpha status.
1 month ago
Inactive