clash_starlark 0.7.2

Starlark policy evaluator for Clash — compiles .star files to JSON policy
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

ruby_full = sandbox(
    name = "ruby_full",
    default = ask(),
    fs = {
        subpath("$PWD"): allow(FULL),
        "$HOME": {
            glob(".gem/**"): allow(),
            glob(".bundle/**"): allow(),
            glob(".rbenv/**"): allow("rx"),
        },
        glob("$TMPDIR/**"): allow(),
    },
    net = allow(),
    doc = "Ruby full: gem install, bundle, rails. Full project + gem access.",
)

ruby = {tool("Bash"): {("ruby", "gem", "bundle", "rails"): allow(sandbox = ruby_full)}}