[Phase 1.4] Implement tool execution subsystem

[anchapin]

Phase: Phase 1 - Foundation
Priority: high
Component: orchestrator
Effort: medium

Description

Create tool execution module that spawns subprocesses for MCP tools. Implement command validation to prevent shell injection. Use subprocess list invocation (no shell). Add tests.

Acceptance Criteria

• Create tool execution module in orchestrator/src/
• Implement subprocess spawning with list invocation
• Add command validation to prevent shell injection
• Whitelist known-safe commands (npx, python, node, cargo)
• Add timeout handling
• Add comprehensive tests
• Target 75% test coverage

Dependencies

• Depends on issue Implement repository automation and quality guardrails #1.2 (Python MCP client wrapper)

Notes

Security is critical here - never use shell=True. Always use subprocess with command as list to prevent injection attacks.

[traycerai]

Warning

Insufficient credits. Please purchase more credits or upgrade your plan to continue using Traycer.