safe-chains 0.167.0

Auto-allow safe bash commands in agentic coding tools
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58

[[command]]
name = "security"
description = "macOS command-line interface to the Security framework for administering keychains, certificates, keys, trust policies, and code-signing identities. The full command can create/delete keychains, add/delete passwords and certificates, unlock keychains, modify trust settings, and import/export cryptographic material -- all of which affect the system's credential store and PKI trust chain. The covered subcommands (find-certificate, find-identity, find-generic-password, find-internet-password, list-keychains, dump-keychain, dump-trust-settings, verify-cert, cms, show-keychain-info, smartcard) are read-only queries that search for and display certificate, identity, and password metadata. Note that find-generic-password and find-internet-password can display stored password values in their output. The interface ships with macOS and is stable."
url = "https://ss64.com/mac/security.html"
bare_flags = ["--help", "--version", "-V", "-h"]

[[command.sub]]
name = "find-certificate"
bare = false
standalone = ["--help", "-Z", "-a", "-h", "-p"]
valued = ["-c", "-e"]

[[command.sub]]
name = "find-identity"
standalone = ["--help", "-h", "-v"]
valued = ["-p", "-s"]

[[command.sub]]
name = "find-generic-password"
bare = false
standalone = ["--help", "-h"]
valued = ["-D", "-a", "-c", "-d", "-j", "-l", "-r", "-s", "-t"]

[[command.sub]]
name = "find-internet-password"
bare = false
standalone = ["--help", "-h"]
valued = ["-D", "-a", "-c", "-d", "-j", "-l", "-r", "-s", "-t"]

[[command.sub]]
name = "list-keychains"
standalone = ["--help", "-d", "-h"]

[[command.sub]]
name = "dump-keychain"
standalone = ["--help", "-h"]

[[command.sub]]
name = "dump-trust-settings"
standalone = ["--help", "-h"]

[[command.sub]]
name = "verify-cert"
bare = false
standalone = ["--help", "-L", "-h", "-l", "-q"]
valued = ["-c", "-k", "-n", "-p", "-r"]

[[command.sub]]
name = "cms"
standalone = ["--help", "-h"]

[[command.sub]]
name = "show-keychain-info"
standalone = ["--help", "-h"]

[[command.sub]]
name = "smartcard"
standalone = ["--help", "-h"]