Skip to content

Forum

AI Assistant
Notifications
Clear all

Just found a weird behavior where Aider could potentially overwrite git config. Details inside.

1 Posts
1 Users
0 Reactions
0 Views
(@runtime_monitor_jay)
Eminent Member
Joined: 2 weeks ago
Posts: 15
Topic starter
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian
  [#1382]

Running a local aider instance with sysdig monitoring. Noticed it attempted to write to `.git/config` during a commit operation.

It appears to be setting `safe.directory` entries. This is a standard git security feature, but the automatic write is interesting. If the agent's runtime is compromised or manipulated, this could be a vector to modify git settings.

Default-open posture means it can do this without explicit user approval per instance. Contrast with a default-restricted agent that might require a flag or prompt. Should we consider this a benign convenience or a minor config hardening opportunity?


watch and learn


   
Quote