Struct CodeModeSection 

pub struct CodeModeSection {

    pub enabled: bool,
    pub server_id: Option<String>,
    pub allow_writes: bool,
    pub allow_deletes: bool,
    pub allow_ddl: bool,
    pub require_limit: bool,
    pub max_limit: Option<u64>,
    pub blocked_tables: Vec<String>,
    pub sensitive_columns: Vec<String>,
    pub auto_approve_levels: Vec<String>,
    pub token_ttl_seconds: Option<u64>,
    pub token_secret: Option<String>,
    pub allow_inline_token_secret_for_dev: bool,
    pub limits: Option<CodeModeLimits>,
}

[code_mode] section — code-mode policy + complexity limits.

The toolkit uses unprefixed field names (REF-01 invariant); the mapping to pmcp_code_mode::CodeModeConfig’s prefixed names (sql_allow_writes, etc.) is handled by Plan 06’s executor wiring.

Fields

enabled: bool

Master enable flag for code-mode.

server_id: Option<String>

Server identifier used by AVP / Cedar policy resolution.

allow_writes: bool

Whether INSERT / UPDATE / MERGE statements are allowed.

allow_deletes: bool

Whether DELETE statements are allowed.

allow_ddl: bool

Whether DDL (CREATE / ALTER / DROP) is allowed.

require_limit: bool

Whether SELECT queries must declare a LIMIT.

max_limit: Option<u64>

Maximum allowed LIMIT value.

blocked_tables: Vec<String>

Table names blocked from any query (denylist).

sensitive_columns: Vec<String>

table.column strings stripped from query output.

auto_approve_levels: Vec<String>

Risk levels eligible for auto-approval (e.g. ["low"]).

token_ttl_seconds: Option<u64>

Token TTL, in seconds, for HMAC-signed approval tokens.

token_secret: Option<String>

Secret reference (e.g. "${CODE_MODE_SECRET}") for HMAC signing — resolved at runtime by SecretsProvider. NEVER a raw secret value (review R6 + T-83-04-04 in the plan threat model).

allow_inline_token_secret_for_dev: bool

Per Phase 83 review R9: inline token_secret = "raw-string" is REJECTED by default to prevent secrets from being committed to source-controlled configs. Set this flag to true ONLY in dev/test configs where the operator explicitly accepts the risk. NEVER set this in a committed production config — production must use the env:VAR_NAME syntax that resolves at runtime through SecretsProvider.

limits: Option<CodeModeLimits>

[code_mode.limits] — query-complexity caps.

Trait Implementations

impl Clone for CodeModeSection

fn clone(&self) -> CodeModeSection

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for CodeModeSection

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for CodeModeSection

fn default() -> CodeModeSection

Returns the “default value” for a type.

impl<'de> Deserialize<'de> for CodeModeSection

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>

where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer.

impl PartialEq for CodeModeSection

fn eq(&self, other: &CodeModeSection) -> bool

Tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Serialize for CodeModeSection

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>

where __S: Serializer,

Serialize this value into the given Serde serializer.

impl Eq for CodeModeSection

impl StructuralPartialEq for CodeModeSection