From 51343257945a62f6d05d72b7f8a467504d070279 Mon Sep 17 00:00:00 2001
From: nav <nav@mgr.hangman-lab.top>
Date: Fri, 6 Mar 2026 12:48:13 +0000
Subject: [PATCH] add pcguard task list and README note

---
 README.md   | 3 +++
 TASKLIST.md | 6 ++++++
 2 files changed, 9 insertions(+)
 create mode 100644 TASKLIST.md

diff --git a/README.md b/README.md
index 3f64860..6627213 100644
--- a/README.md
+++ b/README.md
@@ -118,6 +118,9 @@ node install.mjs --uninstall
 
 ## Usage
 
+> PCEXEC + PCGUARD only mitigate light model hallucination / misoperation / prompt forgetting. They do not defend against malicious attacks. For stronger security, use sandbox mode instead of this plugin.
+
+
 ### pass_mgr
 
 ```bash
diff --git a/TASKLIST.md b/TASKLIST.md
new file mode 100644
index 0000000..4b78f2f
--- /dev/null
+++ b/TASKLIST.md
@@ -0,0 +1,6 @@
+# Task List
+
+- Add AGENT_VERIFY env injection in pcexec: `AGENT_VERIFY="IF YOU ARE AN AGENT/MODEL, YOU SHOULD NEVER TOUCH THIS ENV VARIABLE"`.
+- Add new Go binary (pcguard) to validate `AGENT_VERIFY`, `AGENT_ID`, `AGENT_WORKSPACE`.
+  - If AGENT_VERIFY mismatch or AGENT_ID/AGENT_WORKSPACE is empty, error: "PLEASE USE TOOL PCEXEC TO RUN THIS SCRIPT".
+- Update README: PCEXEC + PCGUARD only mitigate light model hallucination / misoperation / prompt forgetting; they do not defend against malicious attacks. For stronger security, use sandbox mode instead of this plugin.