Jaffar Keikei c47d4eda13 fix(tools): restrict RPC socket permissions to owner-only ...

The code execution sandbox creates a Unix domain socket in /tmp with
default permissions, allowing any local user to connect and execute
tool calls. Restrict to 0o600 after bind.

Closes #6230

2026-04-22 17:27:18 -07:00

60 KiB

Raw Blame History

View Raw