Crate tirith_core 

Modules

approval

audit

audit_aggregator

audit_upload

checkpoint

Checkpoint/rollback system for protecting against destructive operations.

confusables

Unicode confusable character lookup using data embedded by build.rs.

data

Embedded lookup tables (known domains, popular repos, OCR confusions, public suffix list) compiled by build.rs.

engine

escalation

Escalation engine and post-processing verdict helper.

extract

homoglyph

Homoglyph analysis utilities for detailed character reporting.

license

mcp

network

normalize

Per-URL-component normalization: decode only unreserved characters (RFC 3986 §2.3 — A-Z, a-z, 0-9, -, ., _, ~). Reserved characters stay percent-encoded so that downstream rules see the same shape regardless of encoding variation.

output

parse

policy

policy_client

policy_validate

Policy YAML validation — syntax, schema, and conflict checks.

receipt

redact

rule_explanations

Rule explanation lookup — compiled from assets/data/rule_explanations.toml by build.rs.

rule_metadata

rules

runner

sarif

scan

script_analysis

session

session_warnings

Per-session warning accumulator.

style

text_confusables

Text-level confusable character lookup using embedded data from build.rs. Separate from confusables.rs which is used for hostname skeleton matching. This table covers Mathematical Alphanumeric Symbols (U+1D400–U+1D7FF) used in steganographic text attacks.

threatdb

Threat intelligence database — binary format with sorted sections for O(log n) lookup.

threatdb_api

threatdb_feeds

tokenize

url_validate

URL validation for outbound HTTP requests — SSRF protection.

util

Utility helpers shared across the core crate.

verdict

webhook