Crate index_security 

Security policy checks for hostile inputs.

This crate contains deterministic guards shared by fetchers, CLI entry points, and future decoders. It performs no network IO and parses no HTML.

Structs

ContentLimits

Security limits for hostile inputs.

Enums

SecurityError

Security policy errors.

Constants

DEFAULT_MAX_CONTENT_BYTES

Default maximum input body size accepted by local entry points.

DEFAULT_MAX_DECOMPRESSED_BYTES

Default maximum decompressed body size accepted by future decoders.

DEFAULT_MAX_DECOMPRESSION_RATIO

Default maximum decompression expansion ratio.

DEFAULT_MAX_REDIRECTS

Default maximum redirect hops.

Functions

check_content_size

Validates raw content size.

check_decompression_size

Validates decompression expansion before decoded content is accepted.

validate_redirect_chain

Validates a redirect chain for loops and hop count.