fix: check exact match on command allow list

runner/parser.go

@@ -8,7 +8,7 @@ import (
 
 // ParseCommand parses the command taking in account if the current
 // instance uses a shell to run the commands or just calls the binary
-// directyly.
+// directly.
 func ParseCommand(s *settings.Settings, raw string) ([]string, error) {
 	var command []string
 

users/users.go

@@ -2,7 +2,7 @@ package users
 
 import (
 	"path/filepath"
-	"regexp"
+	"slices"
 
 	"github.com/spf13/afero"
 
@@ -111,11 +111,5 @@ func (u *User) CanExecute(command string) bool {
 		return false
 	}
 
-	for _, cmd := range u.Commands {
-		if regexp.MustCompile(cmd).MatchString(command) {
-			return true
-		}
-	}
-
-	return false
+	return slices.Contains(u.Commands, command)
 }