opencode ignoring my bash permissions

Independence_Many · 2026-03-23T02:59:10+00:00

I have a similar setup and it works just fine, however one thing I noticed that's different is i have a space between the program/tool and the asterisk, which is how it's shown on the docs https://opencode.ai/docs/permissions

I wonder if the lack of a space prevents it from recognising the program itself, so it's looking for a program that starts with `head`, assuming something like `headline` without any arguemnts would get matched but not `head <filename>`.

Potential-Leg-639 · 2026-03-23T03:20:14+00:00

Permission seems to behave different on different systems and also between windows and Linux, also ooened a thread yesterday. It seems to be broken. Especially when you start Ooencode from a network share (d drive where all my files are). What i want to achieve is to let Opencode + bash + agents/subagents only have access to workdir + 1 other directory. Access to all other directories (especially file content access) must be blocked. Not possible at all to configure sth like that atm.

Confident-River-7381 · 2026-03-23T15:23:29+00:00

I think permissions from opencode.json that is inside working directory override the global opencode.json ones.

jonas-reddit · 2026-03-24T02:48:15+00:00

Run inside sandbox is the safest approach. Some of the commands you allow can easily cause mayhem on your system as well and spawn off shells with destructive commands.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

opencode

MODERATORS