refactor(security): lift restrictToWorkspace to tools level

2026-02-06 09:28:08 +00:00
parent b1782814fa
commit 943579b96a
6 changed files with 24 additions and 6 deletions
--- a/nanobot/cli/commands.py
+++ b/nanobot/cli/commands.py
@@ -209,6 +209,7 @@ def gateway(
        brave_api_key=config.tools.web.search.api_key or None,
        exec_config=config.tools.exec,
        cron_service=cron,
+        restrict_to_workspace=config.tools.restrict_to_workspace,
    )
    
    # Set cron callback (needs agent)
@@ -316,6 +317,7 @@ def agent(
        workspace=config.workspace_path,
        brave_api_key=config.tools.web.search.api_key or None,
        exec_config=config.tools.exec,
+        restrict_to_workspace=config.tools.restrict_to_workspace,
    )
    
    if message: