From 790826bcb1e838130d5d4e02aca86a44b56f44cc Mon Sep 17 00:00:00 2001
From: Ian J Gordon <ian@aptos.bike>
Date: Mon, 22 Jun 2026 11:28:13 -0700
Subject: [PATCH 1/2] fix(security): anchor rm-deletion pattern with \b (stops
 false positives)

---
 .../v5.0.0/.claude/PAI/USER/SECURITY/PATTERNS.yaml   | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/Releases/v5.0.0/.claude/PAI/USER/SECURITY/PATTERNS.yaml b/Releases/v5.0.0/.claude/PAI/USER/SECURITY/PATTERNS.yaml
index d035a42f65..638001ce52 100644
--- a/Releases/v5.0.0/.claude/PAI/USER/SECURITY/PATTERNS.yaml
+++ b/Releases/v5.0.0/.claude/PAI/USER/SECURITY/PATTERNS.yaml
@@ -27,17 +27,17 @@ bash:
     - pattern: ^rm\s+(?!.*\.\.).*\bPAI_RELEASES(/|\b)
       reason: PAI release rebuild — staging dir, regenerated by ShadowRelease.ts
   blocked:
-    - pattern: rm\s.*-\w*r.*\s+/(\s|$)
+    - pattern: \brm\s.*-\w*r.*\s+/(\s|$)
       reason: Recursive deletion of system root (/).
-    - pattern: rm\s.*-\w*r.*\s+~/?(\s|$)
+    - pattern: \brm\s.*-\w*r.*\s+~/?(\s|$)
       reason: Recursive deletion of home directory (~)
-    - pattern: rm\s.*-\w*r.*\s(~/\.claude|/Users/[^/]+/\.claude|\$HOME/\.claude)/?(\s|$|;|&&)
+    - pattern: \brm\s.*-\w*r.*\s(~/\.claude|/Users/[^/]+/\.claude|\$HOME/\.claude)/?(\s|$|;|&&)
       reason: Recursive deletion of ~/.claude (entire PAI infrastructure)
-    - pattern: rm\s.*-\w*r.*\s(~/\.claude|/Users/[^/]+/\.claude|\$HOME/\.claude)/PAI/?(\s|$|;|&&)
+    - pattern: \brm\s.*-\w*r.*\s(~/\.claude|/Users/[^/]+/\.claude|\$HOME/\.claude)/PAI/?(\s|$|;|&&)
       reason: Recursive deletion of PAI directory
-    - pattern: rm\s.*-\w*r.*\s(~/\.claude|/Users/[^/]+/\.claude|\$HOME/\.claude)/PAI/MEMORY/?(\s|$|;|&&)
+    - pattern: \brm\s.*-\w*r.*\s(~/\.claude|/Users/[^/]+/\.claude|\$HOME/\.claude)/PAI/MEMORY/?(\s|$|;|&&)
       reason: Recursive deletion of PAI/MEMORY directory
-    - pattern: rm\s.*-\w*r.*\s+~/Projects/?(\s|$|;|&&)
+    - pattern: \brm\s.*-\w*r.*\s+~/Projects/?(\s|$|;|&&)
       reason: Recursive deletion of ~/Projects
     - pattern: diskutil eraseDisk
       reason: Disk destruction

From 80e4ed19ae288233a1496241cc8233e6027084f6 Mon Sep 17 00:00:00 2001
From: Ian J Gordon <ian@aptos.bike>
Date: Mon, 22 Jun 2026 11:28:14 -0700
Subject: [PATCH 2/2] fix(security): anchor rm-deletion pattern with \b (stops
 false positives)

---
 .../.claude/PAI/DOCUMENTATION/Security/Patterns.example.yaml  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Releases/v5.0.0/.claude/PAI/DOCUMENTATION/Security/Patterns.example.yaml b/Releases/v5.0.0/.claude/PAI/DOCUMENTATION/Security/Patterns.example.yaml
index d665a5e4bb..f88497b1fc 100755
--- a/Releases/v5.0.0/.claude/PAI/DOCUMENTATION/Security/Patterns.example.yaml
+++ b/Releases/v5.0.0/.claude/PAI/DOCUMENTATION/Security/Patterns.example.yaml
@@ -23,9 +23,9 @@ bash:
   # BLOCKED — Hard deny via exit(2). No prompt, no workaround.
   blocked:
     # ── Filesystem destruction ────────────────────────────────────
-    - pattern: "rm\\s.*-\\w*r.*\\s+/(\\s|$)"
+    - pattern: "\\brm\\s.*-\\w*r.*\\s+/(\\s|$)"
       reason: "Recursive deletion of system root"
-    - pattern: "rm\\s.*-\\w*r.*\\s+~/?(\\s|$)"
+    - pattern: "\\brm\\s.*-\\w*r.*\\s+~/?(\\s|$)"
       reason: "Recursive deletion of home directory"
 
     # ── Credential access via shell ──────────────────────────────