Read this page: https://opencode.ai/docs/permissions/

We want to configure a set ot predefined destructive or dangerous commands, you can find a list there, but we want to expand it even with docker, kubectl and other stuff you think are useful, the idea is that user must always be in the loop and confirm the actions.