brainwires-permission 0.11.0

Permission policies, audit logging, and trust profiles for the Brainwires Agent Framework
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66

use serde::{Deserialize, Serialize};

/// Resource quota limits
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ResourceQuotas {
    /// Maximum execution time (seconds)
    #[serde(default)]
    pub max_execution_time: Option<u64>,

    /// Maximum memory usage (bytes)
    #[serde(default)]
    pub max_memory: Option<u64>,

    /// Maximum API tokens consumed
    #[serde(default)]
    pub max_tokens: Option<u64>,

    /// Maximum tool calls per session
    #[serde(default)]
    pub max_tool_calls: Option<u32>,

    /// Maximum files modified per session
    #[serde(default)]
    pub max_files_modified: Option<u32>,
}

impl Default for ResourceQuotas {
    fn default() -> Self {
        Self {
            max_execution_time: Some(30 * 60), // 30 minutes
            max_memory: None,
            max_tokens: Some(100_000),
            max_tool_calls: Some(500),
            max_files_modified: Some(50),
        }
    }
}

impl ResourceQuotas {
    /// Create conservative quotas
    pub fn conservative() -> Self {
        Self {
            max_execution_time: Some(5 * 60),    // 5 minutes
            max_memory: Some(512 * 1024 * 1024), // 512MB
            max_tokens: Some(10_000),
            max_tool_calls: Some(50),
            max_files_modified: Some(10),
        }
    }

    /// Create standard quotas
    pub fn standard() -> Self {
        Self::default()
    }

    /// Create generous quotas
    pub fn generous() -> Self {
        Self {
            max_execution_time: Some(2 * 60 * 60), // 2 hours
            max_memory: None,
            max_tokens: Some(500_000),
            max_tool_calls: Some(2000),
            max_files_modified: Some(200),
        }
    }
}