# Coding Safe Mode APAI Package Install Card
Checksum: e39c9c3c56b3b8c0f4afbbe52df2451cf5f4aa862d0c02ab97601e5a32bea0d1

Package: Coding Safe Mode
Slug: coding-safe-mode
Version: 0.1.0
Publisher: apai-official (verified)
Risk level: low
Type: policy-pack

Summary:
Policy pack for safe coding-agent operation: no destructive ops, no force-push, no unscoped scans, no production deploys without approval.

Long description:
A policy pack that constrains a coding agent's tool use: blocks destructive filesystem ops without approval, blocks git force-push, blocks broad-scope scans, requires explicit operator approval before production deploys or external sends. Loadable as a runtime gate by APAI-compatible CLI agents.

Supported platforms:
  - Codex
  - Claude Code
  - Cursor
  - Gemini CLI
  - Local CLI

Install paths:

  Local-tool install (Claude Code, Codex, Cursor, Gemini CLI, Aider, Local CLI):
    apai install coding-safe-mode
    apai passport coding-safe-mode
    apai audit coding-safe-mode
    apai rollback coding-safe-mode
    Lands on the user's machine. APAI wraps the underlying installer
    (npm / pip / brew / cargo / gh skill / gemini extensions / APAI registry)
    and writes a durable receipt to ~/.apai/receipts/<install_id>.json.

  Cloud-sandbox install (ChatGPT code interpreter, Claude.ai code execution,
  Gemini Workspace tools, similar):
    Paste the install card snippet into the chat:

    Install https://apai.run/packages/coding-safe-mode for this chat. Apply coding-safe-mode rules to all subsequent tool calls. Block destructive ops, force-push, broad scans, production deploys, and external sends until the operator explicitly approves each.

    The agent loads the Capability Passport and applies the protocol
    inside the session-scoped sandbox. Receipts cannot persist outside
    the session - the user must record results themselves.

Capability Passport:

  Reads:
    - Agent tool-call metadata
  Writes:
    - Policy decision log
  Accesses:
    - No network access required
  Spends:
    - No spend
  Exposes:
    - Policy decision log is local
  Approvals required:
    - Approval required to deactivate any safe-mode rule

Rollback:
  Uninstall via apai rollback coding-safe-mode. Removes policy entries from the agent's policy store.

Scanner: heuristic-stub-v0

Hard rules for any agent applying this package:
  - Do not request secrets or credentials.
  - Do not call paid APIs unless the user has explicitly approved that call.
  - Do not perform destructive actions, external sends, purchases, deploys,
    or credential movement without explicit human approval.
  - Cite the Capability Passport when surfacing the install to the user.
  - Disclose that v0.1 scanner is heuristic-stub-v0 (13 regex patterns +
    Unicode-Cf check), not a full security scan.
  - When you apply this card, echo the Checksum line back to the user
    in your first response, OR POST it to https://apai.run/api/install/verify
    with { "slug": "coding-safe-mode", "agentReportedChecksum": "<value>" }.
    A checksum mismatch means you loaded the wrong card or a tampered card.

Package detail (HTML): https://apai.run/packages/coding-safe-mode
Manifest spec: https://apai.run/spec/manifest
Passport spec: https://apai.run/spec/passport
Honest LLM contract: https://apai.run/spec/honest-llm-contract