In [None]:
print('Setup complete.')

# Safe Command-Line Agent - Hands-On Lab

**Student Name:** ___________________

**Objective:** Build a safe command-line agent that can execute shell commands with security controls.

**Allowed Commands:** `ls`, `cat`, `grep -n`, `find`

**Deliverables:**
1. Working SafeCommandExecutor class
2. Working ReadOnlyCommandAgent class 
3. Command log + short summary of findings

**Time Limit:** 90 minutes

**Instructions:** Follow the comments in each cell to implement the solution step by step.

In [None]:
# Cell 1: Import Required Libraries
# TODO: Import the following modules:
# - subprocess (for running shell commands)
# - os (for file system operations)
# - re (for regular expressions)
# - typing: List, Dict, Tuple, Optional (for type hints)
# - json (for data handling)
# - pathlib.Path (for path operations)

# YOUR CODE HERE:

In [None]:
# Cell 2: Create SafeCommandExecutor Class Structure
# TODO: Create a class called SafeCommandExecutor with:
# - __init__ method that takes working_directory parameter (default ".")
# - Store working_directory as absolute path using os.path.abspath()
# - Initialize empty command_log list
# - Create allowed_commands dictionary with regex patterns for: ls, cat, grep, find
#
# Regex patterns should match:
# - ls: 'ls' optionally followed by flags (-alhtrS) and optional path
# - cat: 'cat' followed by required filename
# - grep: 'grep -n' followed by pattern and filename
# - find: 'find' followed by path, '-name', and pattern

# YOUR CODE HERE:

In [None]:
# Cell 3: Implement Command Validation
# TODO: Add validate_command method to SafeCommandExecutor:
# - Takes command string as parameter
# - Returns Tuple[bool, str] (is_valid, message)
# - Check for dangerous patterns: ';', '|', '&', '>', '<', '$(', '`', 'rm', 'mv', 'cp', 'chmod', 'sudo'
# - If dangerous pattern found, return False with error message
# - Check if command matches any allowed_commands regex patterns
# - If match found, return True with success message
# - If no match, return False with "Command not in whitelist" message

# YOUR CODE HERE:

In [None]:
# Cell 4: Implement Command Execution
# TODO: Add execute_command method to SafeCommandExecutor:
# - Takes command string as parameter
# - Returns Dict with keys: command, valid, validation_msg, output, error, success
# - Call validate_command first
# - If invalid, set error message and return result
# - If valid, use subprocess.run() with:
#   - shell=True
#   - cwd=self.working_directory
#   - capture_output=True
#   - text=True
#   - timeout=30
# - Handle TimeoutExpired and other exceptions
# - Store result in command_log
# - Return result dictionary

# YOUR CODE HERE:

In [None]:
# Cell 5: Add Command Log Method
# TODO: Add get_command_log method to SafeCommandExecutor:
# - Returns copy of command_log list
# - Use .copy() method to prevent external modification

# YOUR CODE HERE:

In [None]:
# Cell 6: Create ReadOnlyCommandAgent Class Structure
# TODO: Create ReadOnlyCommandAgent class with:
# - __init__ method taking working_directory parameter
# - Create SafeCommandExecutor instance and store as self.executor
# - Initialize empty findings list

# YOUR CODE HERE:

In [None]:
# Cell 7: Implement Directory Exploration
# TODO: Add explore_directory method to ReadOnlyCommandAgent:
# - Takes path parameter (default ".")
# - Print exploration message with emoji
# - Execute "ls -la {path}" command using self.executor
# - If successful, print and return output
# - If error, print error message and return empty string

# YOUR CODE HERE:

In [None]:
# Cell 8: Implement File Finding
# TODO: Add find_files_by_name method to ReadOnlyCommandAgent:
# - Takes pattern and search_path parameters
# - Print search message
# - Execute "find {search_path} -name '{pattern}'" command
# - If successful:
#   - Split output by newlines and filter empty lines
#   - Print found files count
#   - Print first 10 files (limit output)
#   - Return list of files
# - If error, print error and return empty list

# YOUR CODE HERE:

In [None]:
# Cell 9: Implement File Search
# TODO: Add search_in_file method to ReadOnlyCommandAgent:
# - Takes filepath and pattern parameters
# - Print search message
# - Execute "grep -n '{pattern}' {filepath}" command
# - If successful:
#   - Split output and filter empty lines
#   - Print matches count
#   - Print first 5 matches (limit output)
#   - Return list of matches
# - If no matches or error, print message and return empty list

# YOUR CODE HERE:

In [None]:
# Cell 10: Implement File Preview
# TODO: Add read_file_preview method to ReadOnlyCommandAgent:
# - Takes filepath and lines parameters (lines default 20)
# - Print preview message
# - Execute "cat {filepath}" command
# - If successful:
#   - Split content into lines
#   - Show only first {lines} lines
#   - Add "showing first X of Y lines" message if truncated
#   - Print preview and return full content
# - If error, print error message and return empty string

# YOUR CODE HERE:

In [None]:
# Cell 11: Implement Symbol Location (Part 1)
# TODO: Add locate_symbol method to ReadOnlyCommandAgent:
# - Takes symbol and search_path parameters
# - Print header with symbol name
# - Create findings dictionary with keys: symbol, search_path, files_found, matches, summary
# - Step 1: Find Python files using find_files_by_name with "*.py" pattern
# - Store found files in findings['files_found']

# YOUR CODE HERE:

In [None]:
# Cell 12: Implement Symbol Location (Part 2)
# TODO: Continue locate_symbol method:
# - Step 2: Search for symbol in each Python file (limit to first 20 files)
# - For each file with matches, append to findings['matches'] with structure:
#   {'file': filepath, 'matches': match_list}
# - Count total matches across all files

# YOUR CODE HERE:

In [None]:
# Cell 13: Implement Symbol Location (Part 3)
# TODO: Complete locate_symbol method:
# - Step 3: Generate summary with:
#   - Search path
#   - Number of Python files found
#   - Number of files with matches
#   - Total number of matches
#   - List of top 5 files with matches
# - Store summary in findings['summary']
# - Print summary
# - Append findings to self.findings
# - Return findings dictionary

# YOUR CODE HERE:

In [None]:
# Cell 14: Implement Report Generation
# TODO: Add generate_report method to ReadOnlyCommandAgent:
# - Create report with markdown headers
# - Add current timestamp using datetime
# - Add command execution log section:
#   - List each command with success/error status
#   - Use ✅ for success, ❌ for errors
#   - Include error messages for failed commands
# - Add search results summary section:
#   - Include each finding's symbol and summary
# - Return complete report as string

# YOUR CODE HERE:

In [None]:
# Cell 15: Test Your Agent - Initialization
# TODO: Create instance of ReadOnlyCommandAgent:
# - Use current directory or bootcamp directory as working directory
# - Print initialization message
# - Print security message about allowed commands

# YOUR CODE HERE:

In [None]:
# Cell 16: Test Your Agent - Directory Exploration
# TODO: Test directory exploration:
# - Use explore_directory method to list current directory contents
# - Print section header

# YOUR CODE HERE:

In [None]:
# Cell 17: Test Your Agent - File Finding
# TODO: Test file finding:
# - Use find_files_by_name to find all Python files ("*.py")
# - Store result in variable for next steps
# - Print section header

# YOUR CODE HERE:

In [None]:
# Cell 18: Test Your Agent - Symbol Location
# TODO: Test symbol location:
# - Choose a target symbol to search for (e.g., "class", "def", "import", or specific function name)
# - Use locate_symbol method to find the symbol
# - Store result for report generation
# - Print section header

# TARGET SYMBOL: _______________  (fill in your choice)

# YOUR CODE HERE:

In [None]:
# Cell 19: Test Your Agent - File Preview
# TODO: Test file preview:
# - If symbol search found matches, preview the first matching file
# - Otherwise, preview README.md or any available file
# - Limit preview to 15 lines
# - Print section header

# YOUR CODE HERE:

In [None]:
# Cell 20: Security Testing
# TODO: Test security by attempting dangerous commands:
# - Create list of dangerous commands to test
# - Try executing each command using your executor
# - Verify they are all rejected
# - Print results showing which commands were blocked
#
# Suggested dangerous commands to test:
# - "rm -rf /"
# - "ls; echo dangerous"
# - "cat file.txt > output.txt"
# - "grep pattern file && rm file"

# YOUR CODE HERE:

In [None]:
# Cell 21: Generate Final Report
# TODO: Generate and display final report:
# - Call generate_report method
# - Print the complete report
# - Save report to file "command_log_report.md"
# - Print success message with filename

# YOUR CODE HERE:

## Lab Summary

**Instructions:** Fill out this section after completing the lab.

### Target Symbol Searched: 
___________________

### Number of Files Found Containing Symbol:
___________________

### Total Number of Matches:
___________________

### Key Findings (2-3 sentences):
________________________________________________________________
________________________________________________________________
________________________________________________________________

### Security Test Results:
- [ ] All dangerous commands were successfully blocked
- [ ] Agent only executed whitelisted commands
- [ ] Command log shows all attempted commands

### Challenges Encountered:
________________________________________________________________
________________________________________________________________

### What You Learned:
1. _______________________________________________________________
2. _______________________________________________________________
3. _______________________________________________________________

**Student Signature:** _____________________ **Date:** __________