Permissions
Dynamo's permission system balances safety with speed.
Permission Levels
| Level | Behavior | Examples |
|---|---|---|
| Safe | Auto-execute, no prompt | read_file, list_files, git_status, search_files |
| Write | Prompts once per tool per session | write_file, edit_file |
| Dangerous | Always prompts | run_command |
| Blocked | Rejected immediately | rm -rf /, git push --force, destructive patterns |
Approval Menu
When a tool requires approval, you see:
- Human-readable description of what the tool will do
- Expandable raw call details
- Diff view for file edits
- Allow / Allow all / Deny options
"Allow all" persists for the current model for the rest of the session.
Permissive Mode
Skip all prompts (except blocked commands):
dynamo -y
# or
dynamo --permissivePer-Model Permissions
Permissions are tracked per model. Switching models resets the approval state, so a more powerful model doesn't inherit permissions from a weaker one.