skills-cerewro

Workspace Guardian Skill: path control and file security

The Workspace Guardian keeps all operations within the active working directory, prefers relative paths and warns when an action would exit the workspace or overwrite something critical.

28 de April de 2026

Equipo Cerewro

skill workspace seguridad rutas control

Workspace Guardian Skill: operate within the sandbox

The Workspace Guardian is a security skill that keeps all Cerewro operations within the active working directory, prefers relative paths and raises warnings when an action would try to exit the defined workspace.

Guardian rules

All file paths are relative to the active workspace
Before writing to a path, verifies it's inside the workspace
Warns if a command would try to access system folders (C:\Windows, C:\Program Files)
Suggests moving the workspace if the operation requires another location

Guardian warning

WARNING: The specified path (C:\Windows\System32) is outside the active workspace (C:\gonzalo\my-project).
Do you confirm you want to operate outside the workspace? (yes/no)