Sessions

Command permissions

To create, edit, and transform your media, the agent runs real commands and code on your computer — always inside a sandbox scoped to the session's folder.

The sandbox#

Every command runs contained to the session's folder, with no internet access. The agent writes its outputs there, and can read the system files it needs — fonts, for instance — but cannot change anything outside the session folder, open your personal files, or reach the internet. The sandbox, not a prompt, is the safety boundary.

Ask before running commands#

Because the sandbox already contains everything, commands run without interrupting you by default. If you'd rather confirm each one, turn on Ask before running commands in Settings.

With it on, a Run terminal command? dialog appears before each command, showing the command itself and a short plain-language description of what it's for. Choose Allow once or Deny.

The Run terminal command? dialog with the command, its description, and Allow once / Deny