M5: effect runtime + sandbox. See spec §7.4 and §8.5.
What's here:
policy::Policyandpolicy::check_program— the static capability gate that walks declared effects and rejects programs whose effects are out of bounds before any code runs.handler::DefaultHandler— the host-side effect handler that the VM dispatchesEFFECT_CALLthrough.
What's not here yet (deferred):
- WASM-level isolation (
wasmtimeintegration). The--unsafe-no-sandboxflag in the spec is operationally implicit for now: native execution only. We ship the policy/dispatch layer, which is the user-visible half of §7.4 and what the §7.6 acceptance tests exercise.