Prevent Goose from Accessing Files
.gooseignore is a text file that defines patterns for files and directories that Goose will not access. This means Goose cannot read, modify, delete, or run shell commands on these files when using the Developer extension's tools.
The .gooseignore feature currently only affects tools in the Developer extension. Other extensions are not restricted by these rules.
This guide will show you how to use .gooseignore files to prevent Goose from changing specific files and directories.
Creating your .gooseignore file
Goose supports two types of .gooseignore files:
- Global ignore file - Create a
.gooseignorefile in~/.config/goose. These restrictions will apply to all your sessions with Goose, regardless of directory. - Local ignore file - Create a
.gooseignorefile at the root of the directory you'd like it applied to. These restrictions will only apply when working in a specific directory.
You can use both global and local .gooseignore files simultaneously. When both exist, Goose will combine the restrictions from both files to determine which paths are restricted.
Example .gooseignore file
In your .gooseignore file, you can write patterns to match files you want Goose to ignore. Here are some common patterns:
# Ignore specific files by name
settings.json # Ignore only the file named "settings.json"
# Ignore files by extension
*.pdf # Ignore all PDF files
*.config # Ignore all files ending in .config
# Ignore directories and their contents
backup/ # Ignore everything in the "backup" directory
downloads/ # Ignore everything in the "downloads" directory
# Ignore all files with this name in any directory
**/credentials.json # Ignore all files named "credentials.json" in any directory
# Complex patterns
*.log # Ignore all .log files
!error.log # Except for error.log file
Ignore File Types and Priority
Goose respects ignore rules from three sources: global .gooseignore, local .gooseignore, and .gitignore. It uses a priority system to determine which files should be ignored.
1. Global .gooseignore
- Highest priority and always applied first
- Located at
~/.config/goose/.gooseignore - Affects all projects on your machine
~/.config/goose/
└── .gooseignore ← Applied to all projects
2. Local .gooseignore
- Project-specific rules
- Located in your project root directory
- Overrides
.gitignorecompletely
~/.config/goose/
└── .gooseignore ← Global rules applied first
Project/
├── .gooseignore ← Local rules applied second
├── .gitignore ← Ignored when .gooseignore exists
└── src/
3. .gitignore Fallback
- Used when no local
.gooseignoreexists - Goose automatically uses your
.gitignorerules - If a global
.gooseignorefile exists, those rules will be applied in addition to the.gitignorepatterns.
Project/
├── .gitignore ← Used by Goose (when no local .gooseignore)
└── src/
4. Default Patterns
By default, if you haven't created any .gooseignore files and no .gitignore file exists, Goose will not modify files matching these patterns:
**/.env
**/.env.*
**/secrets.*
Common use cases
Here are some typical scenarios where .gooseignore is helpful:
- Generated Files: Prevent Goose from modifying auto-generated code or build outputs
- Third-Party Code: Keep Goose from changing external libraries or dependencies
- Important Configurations: Protect critical configuration files from accidental modifications
- Version Control: Prevent changes to version control files like
.gitdirectory - Existing Projects: Most projects already have
.gitignorefiles that work automatically as ignore patterns for Goose - Custom Restrictions: Create
.gooseignorewhen you need different patterns than your.gitignore(e.g., allowing Goose to read files that Git ignores)