Expand description
Security primitives for Agent Assembly.
This crate owns the credential-detection scanner, the redaction primitives,
the audit-normalization types, and the canonical policy AST relied on by
the trusted enforcement layers (aa-runtime, aa-gateway, aa-proxy, and
the privilege-separated eBPF loader).
It is deliberately a leaf crate: it does not depend on aa-core, so
security authority comes from where a primitive runs, not from the core
domain crate. Because aa-core itself depends on aa-security, the shared
policy AST is hosted here (not in aa-core) so the gateway and the eBPF
layer can depend on the same types without a dependency cycle (AAASM-3606).
§Feature Flags
serde: enablesSerialize/Deserializederives on the public types and the YAML parsing of the canonicalpolicy::PolicyDocument.
Re-exports§
pub use redaction::Redaction;pub use scanner::CredentialFinding;pub use scanner::CredentialKind;pub use scanner::CredentialScanner;pub use scanner::ScanResult;pub use scanner::ScannerConfig;pub use sdk_identity::ObservedSdkIdentity;pub use sdk_identity::SdkIdentityVerdict;pub use sdk_identity::VerifiedSdkIdentity;
Modules§
- policy
- The canonical, cross-layer policy AST and its compilers.
- redaction
- Redaction primitive: the credential-scanner output attached to a governance event before it is forwarded or written to the audit log.
- scanner
- Credential leak detection using Aho-Corasick multi-pattern scanning.
- sdk_
identity - SDK identity classification (AAASM-3621).