Warp documentation
  • Getting Started
    • Quickstart Guide
    • What is Warp?
    • Supported Shells
    • Migrate to Warp
    • Keyboard Shortcuts
    • Changelog
  • Agents
    • Warp AI
    • Using Agents
      • Agent Conversations
      • Model Choice
    • Autonomy
      • Agent Permissions
      • Run to completion
    • Code
      • Codebase Context
      • Reviewing Agent Code
    • Active AI
    • Generate
    • Voice
    • AI FAQs
  • Terminal
    • Appearance
      • Themes
      • Custom Themes
      • Prompt
      • Input Position
      • Text, Fonts, & Cursor
      • Size, Opacity, & Blurring
      • Pane Dimming & Focus
      • Blocks Behavior
      • Tabs Behavior
      • App Icons
    • Blocks
      • Block Basics
      • Block Actions
      • Block Sharing
      • Block Find
      • Block Filtering
      • Background Blocks
      • Sticky Command Header
    • Modern Text Editing
      • Alias Expansion
      • Command Inspector
      • Syntax & Error Highlighting
      • Vim Keybindings
    • Command Entry
      • Command Corrections
      • Command Search
      • Command History
      • Synchronized Inputs
      • YAML Workflows
    • Command Completions
      • Completions
      • Autosuggestions
    • Command Palette
    • Session Management
      • Launch Configurations
      • Session Navigation
      • Session Restoration
    • Window Management
      • Global Hotkey
      • Tabs
      • Split Panes
    • Warpify
      • Subshells
      • SSH
      • SSH Legacy
    • More Features
      • Accessibility
      • Files, Links, & Scripts
      • Markdown Viewer
      • Working Directory
      • Smart-Select
      • Full-screen Apps
      • Notifications & Audible Bell
      • Settings Sync (Beta)
      • Quit Warning
      • URI Scheme
      • Linux
    • Comparisons
      • Performance
      • Terminal features
    • Integrations
  • Knowledge & Collaboration
    • Warp Drive
      • Notebooks
      • Workflows
      • Prompts
      • Environment Variables
      • Warp Drive on the Web
      • Warp Drive as Agent Mode Context
    • Model Context Protocol
    • Rules
    • Teams
    • Session Sharing
  • Privacy
    • Privacy
    • Secret Redaction
    • Network Log
  • Community
    • Refer a Friend & Earn Rewards
    • Warp Preview & Alpha Program
  • Support & Billing
    • Sending Feedback & Logs
    • Plans & Pricing
    • Updating Warp
    • Using Warp Offline
    • Logging out & Uninstalling
    • Known Issues
    • Troubleshooting Login Issues
    • Open Source Licenses
Powered by GitBook
On this page
  • Command allowlist
  • Command denylist
  • File read permissions for coding

Was this helpful?

  1. Agents
  2. Autonomy

Agent Permissions

Command allowlist

Agent Mode comes with default allowlist entries for common read-only commands that can be automatically executed without user confirmation.

  • which .* - Find executable locations

  • ls(\s.*)? - List directory contents

  • grep(\s.*)? - Search file contents

  • find .* - Search for files

  • echo(\s.*)? - Print text output

You can add your own regular expressions to this list in Settings > AI > Autonomy > Command allowlist. Commands in the allowlist will always auto-execute, even if they are not read-only operations.

Mostly any commands are allowed to be auto-executed if they are on the allowlist, with the exception of any commands that contain redirection. e.g. which warp 2>/dev/null

Command denylist

Agent Mode comes with default denylist entries for potentially risky commands that always require explicit user permission before execution. A couple of examples include:

  • wget(\s.*)? - Network downloads

  • curl(\s.*)? - Network requests

  • rm(\s.*)? - File deletion

  • eval(\s.*)? - Shell code execution

The denylist takes precedence over both the allowlist and model-based auto-execution. If a command matches the denylist, user permission will always be required, regardless of other settings. You can add your own regular expressions to this list in Settings > AI > Autonomy > Command denylist.

File read permissions for coding

When performing coding tasks, Agent Mode can automatically read files. This allows Agent Mode to analyze code without requiring explicit permission for each file access.

This behavior can be toggled in Settings > AI > Autonomy > Coding read permissions.

PreviousAutonomyNextRun to completion

Last updated 1 day ago

Was this helpful?