Expand description
Capability-constrained admissibility kernel (PSP-8 System 7).
Stochastic components emit proposals, never unmediated effects. Every effect
passes through an admissibility kernel before execution. This module is the
domain-neutral reference kernel and contract; perspt-policy is the
deterministic trusted base that adopts it. Generated code, prompts, domain
packages, and subagents are outside that trusted base.
Authority is an explicit, attenuable value: delegation may only shrink
effect scope, call budget, expiry, and delegability (the attenuation
preorder c' ⪯ c). Payload data, model text, or generated code cannot mint
authority (PSP-8 R4).
Structs§
- ActorId
- An actor that can hold capabilities and emit proposals.
- Admissibility
Witness - The witness produced by checking a proposal (PSP-8
AdmissibilityWitness). - Capability
- A capability: an explicit, attenuable grant of authority (PSP-8 System 7).
- Command
Pattern - A command pattern matched against the canonical program name.
- Effect
Proposal - An effect proposal (PSP-8 System 7).
- Kernel
State - The current durable state the kernel reads when checking a proposal.
- Network
Pattern - A network host/URL pattern.
- Path
Pattern - A glob-like path pattern.
matchesuses a simple prefix/suffix/*rule. - Risk
Budget - A recorded risk budget (PSP-8 System 7).
- State
Witness - A state witness: a content hash of a precondition that must still hold at execution time (PSP-8 System 7).
Enums§
- Admissibility
Decision - The admissibility decision.
- Approval
Policy - Approval policy for an effect.
- Deny
Reason - Why an effect was denied.
- Effect
Kind - Effect classes (PSP-8 System 7).
- Recovery
Class - Recovery classification for a denied or failed effect.
- Risk
Class - Risk classification for a proposed effect.
Functions§
- check_
admissibility - Evaluate the admissibility predicate
Adm(x, p, x')for a proposal against the actor’s capabilities and current kernel state.