ouroboros-ai

ouroboros-ai: Incomplete denylist in CVE-2026-47211 fix allows RCE via env vars and cwd auto-load

In CVE-2026-47211 fix, several execution-routing environment variables were omitted from the denylist, enabling RCE through malici