Skip to main content

SecurityPolicy

enact_security::policy

Struct SecurityPolicy 

Source 
pub struct SecurityPolicy {
    pub config: PolicyConfig,
    pub workspace_dir: PathBuf,
    /* private fields */
}
Expand description

Security policy with runtime state

Fields§

§config: PolicyConfig§workspace_dir: PathBuf

Implementations§

Source§

impl SecurityPolicy

Source

pub fn new(config: PolicyConfig, workspace_dir: PathBuf) -> Self

Create a new security policy

Source

pub fn default_for(workspace_dir: PathBuf) -> Self

Create with default config

Source

pub fn can_act(&self) -> bool

Check if the agent can perform write actions

Source

pub fn autonomy(&self) -> AutonomyLevel

Get autonomy level

Source

pub fn is_rate_limited(&self) -> bool

Check if rate limited

Source

pub fn record_action(&self) -> bool

Record an action and return true if allowed

Source

pub fn remaining_actions(&self) -> u32

Get remaining actions this hour

Source

pub fn validate_command( &self, command: &str, approved: bool, ) -> ActionValidation

Validate a command execution

Source

pub fn validate_path(&self, path: &str, write: bool) -> ActionValidation

Validate a file path access

Source

pub fn is_path_in_workspace(&self, resolved: &Path) -> bool

Check if a resolved path is within workspace

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.