everruns-core 0.10.0

Core agent abstractions for Everruns - agent loop, events, tools, LLM providers
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134

# System-wide outbound allowlist ("green list").
#
# Curated, internal list of well-known public resources that the global egress
# boundary permits when the allowlist is enabled
# (EVERRUNS_SYSTEM_ALLOWLIST_ENABLED=true). This is NOT end-user configuration —
# it ships with the binary and is reviewed by maintainers.
#
# Organized into named groups so it stays manageable. Pattern format matches the
# NetworkAccessList rules (see specs/network-access.md):
#   - example.com            exact domain (any port/path)
#   - *.example.com          domain and all subdomains (apex included)
#   - https://example.com/x/ URL prefix (scheme + host + path)

[groups.package_registries]
description = "Language and package manager registries (npm, crates, pypi, ...)."
allowed = [
    "*.npmjs.org",
    "*.npmjs.com",
    "*.yarnpkg.com",
    "*.crates.io",
    "*.pypi.org",
    "*.pythonhosted.org",
    "*.rubygems.org",
    "*.nuget.org",
    "*.packagist.org",
    "*.cocoapods.org",
    "*.golang.org",
    "repo.maven.apache.org",
    "repo1.maven.org",
    "*.maven.org",
    "*.gradle.org",
    "plugins.gradle.org",
    "*.conda.anaconda.org",
    "repo.anaconda.com",
]

[groups.source_hosting]
description = "Source code hosting and collaboration platforms."
allowed = [
    "*.github.com",
    "*.githubusercontent.com",
    "*.github.io",
    "*.gitlab.com",
    "*.bitbucket.org",
    "*.codeberg.org",
    "*.sourceforge.net",
    "*.sr.ht",
]

[groups.container_registries]
description = "OCI / container image registries."
allowed = [
    "*.docker.com",
    "*.docker.io",
    "registry-1.docker.io",
    "auth.docker.io",
    "ghcr.io",
    "*.quay.io",
    "quay.io",
    "gcr.io",
    "*.gcr.io",
    "*.pkg.dev",
    "mcr.microsoft.com",
    "public.ecr.aws",
]

[groups.ai_providers]
description = "LLM and AI provider APIs."
allowed = [
    "*.openai.com",
    "*.anthropic.com",
    "*.googleapis.com",
    "generativelanguage.googleapis.com",
    "*.cohere.ai",
    "*.cohere.com",
    "*.mistral.ai",
    "*.huggingface.co",
    "*.hf.co",
    "*.groq.com",
    "*.openrouter.ai",
    "openrouter.ai",
    "*.replicate.com",
    "*.together.ai",
    "*.together.xyz",
    "*.perplexity.ai",
    "*.x.ai",
    "*.deepseek.com",
]

[groups.cloud_providers]
description = "Major cloud provider APIs and service endpoints."
allowed = [
    "*.amazonaws.com",
    "*.azure.com",
    "*.azureedge.net",
    "*.windows.net",
    "*.microsoftonline.com",
    "*.openai.azure.com",
    "*.googleapis.com",
    "*.cloud.google.com",
    "*.cloudflare.com",
    "*.digitaloceanspaces.com",
    "api.digitalocean.com",
]

[groups.os_packages]
description = "Operating-system package mirrors and distribution archives."
allowed = [
    "*.debian.org",
    "*.ubuntu.com",
    "*.archlinux.org",
    "*.alpinelinux.org",
    "dl-cdn.alpinelinux.org",
    "*.fedoraproject.org",
    "*.opensuse.org",
    "*.brew.sh",
    "*.homebrew.org",
]

[groups.developer_tools]
description = "Language toolchains, runtimes, and developer infrastructure."
allowed = [
    "*.rust-lang.org",
    "static.rust-lang.org",
    "*.python.org",
    "*.nodejs.org",
    "nodejs.org",
    "*.golang.org",
    "go.dev",
    "*.deno.land",
    "deno.land",
    "*.gnu.org",
    "*.kernel.org",
]