Enum FleetTrustLevel 

pub enum FleetTrustLevel {
    Sandbox = 0,
    Local = 1,
    RemoteVerified = 2,
    Operator = 3,
}

Trust classification assigned to a worker host.

The trust level determines what a worker is allowed to do and what secrets it may access. The default for new workers is FleetTrustLevel::Sandbox; operators must explicitly raise trust for SSH or container workers.

Variants

Sandbox = 0

Fully isolated: no network, no secrets, no writes outside .codewhale/fleet/. Suitable for untrusted code review, community PR checks, or third-party tool runs.

Local = 1

Local-only worker with access to the workspace and configured secrets. Default for local workers. May read repo files but writes are gated.

RemoteVerified = 2

Worker on a known remote host with verified identity and a bounded set of explicitly granted capabilities. Requires SSH host-key verification or equivalent attestation.

Operator = 3

Fully trusted worker (e.g. operator’s own machine, CI runner). Has access to all configured secrets and may perform any action the operator can. Reserved for dogfood smoke and operator-owned machines.

Implementations

impl FleetTrustLevel

pub fn may_access_secrets(&self) -> bool

Whether this trust level is allowed to access provider secrets.

pub fn may_write_workspace(&self) -> bool

Whether this trust level is allowed to write outside .codewhale/fleet/.

pub fn may_access_network(&self) -> bool

Whether this trust level is allowed network access.

Trait Implementations

impl Clone for FleetTrustLevel

fn clone(&self) -> FleetTrustLevel

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Copy for FleetTrustLevel

impl Debug for FleetTrustLevel

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for FleetTrustLevel

fn default() -> FleetTrustLevel

Returns the “default value” for a type.

impl<'de> Deserialize<'de> for FleetTrustLevel

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>

where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer.

impl Eq for FleetTrustLevel

impl Ord for FleetTrustLevel

fn cmp(&self, other: &FleetTrustLevel) -> Ordering

This method returns an Ordering between self and other.

fn max(self, other: Self) -> Self

where Self: Sized,

Compares and returns the maximum of two values.

fn min(self, other: Self) -> Self

where Self: Sized,

Compares and returns the minimum of two values.

fn clamp(self, min: Self, max: Self) -> Self

where Self: Sized,

Restrict a value to a certain interval.

impl PartialEq for FleetTrustLevel

fn eq(&self, other: &FleetTrustLevel) -> bool

Tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl PartialOrd for FleetTrustLevel

fn partial_cmp(&self, other: &FleetTrustLevel) -> Option<Ordering>

This method returns an ordering between self and other values if one exists.

fn lt(&self, other: &Rhs) -> bool

Tests less than (for self and other) and is used by the < operator.

fn le(&self, other: &Rhs) -> bool

Tests less than or equal to (for self and other) and is used by the <= operator.

fn gt(&self, other: &Rhs) -> bool

Tests greater than (for self and other) and is used by the > operator.

fn ge(&self, other: &Rhs) -> bool

Tests greater than or equal to (for self and other) and is used by the >= operator.

impl Serialize for FleetTrustLevel

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>

where __S: Serializer,

Serialize this value into the given Serde serializer.

impl StructuralPartialEq for FleetTrustLevel