Skip to main content

Crate forge_policy

Crate forge_policy 

Source
Expand description

§forge-policy

Filesystem, environment, and SQLite guardrails for internal forge runtimes.

This Tier 3 crate centralizes low-level path safety, patch-cap checks, allowlisting, and database identity validation. It is intentionally policy infrastructure rather than an execution or storage layer.

Structs§

DbIdentitySpec
Violation

Enums§

PolicyError
ViolationKind

Functions§

ensure_relative_path
is_env_allowed
reject_symlinks
resolve_workspace_path
validate_forbidden_paths
validate_patch_caps
verify_sqlite_db_identity