From 29ab6677555b91a343a7f93363bc2c308feb8b11 Mon Sep 17 00:00:00 2001
From: Christine Betts <chrstn@uw.edu>
Date: Mon, 23 Feb 2026 17:25:42 -0500
Subject: [PATCH] fix security issue

---
 packages/cli/src/config/extension-manager.ts | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/packages/cli/src/config/extension-manager.ts b/packages/cli/src/config/extension-manager.ts
index c88058968a..fbe595e87a 100644
--- a/packages/cli/src/config/extension-manager.ts
+++ b/packages/cli/src/config/extension-manager.ts
@@ -763,7 +763,14 @@ Would you like to attempt to install via "git clone" instead?`,
 
       if (config.policies) {
         const policyPath = path.join(effectiveExtensionPath, config.policies);
-        if (fs.existsSync(policyPath)) {
+        const resolvedPolicyPath = path.resolve(policyPath);
+        const resolvedExtensionPath = path.resolve(effectiveExtensionPath);
+
+        if (!resolvedPolicyPath.startsWith(resolvedExtensionPath)) {
+          debugLogger.warn(
+            `[ExtensionManager] Extension "${config.name}" attempted to contribute a policy file outside its directory: "${config.policies}". Ignoring for security.`,
+          );
+        } else if (fs.existsSync(policyPath)) {
           const result = await loadPoliciesFromToml(
             [policyPath],
             () => EXTENSION_POLICY_TIER,