Module security

Security policies and resource limitations

Modules

audit

Security audit and logging

audit_impl

Audit implementation stub This is a temporary stub file

capabilities

Implementation of security capabilities for the sandbox

resource_limits

Resource limits implementation for the sandbox

Structs

Capabilities

Security capabilities for the sandbox

CpuLimits

CPU resource limits

FilesystemCapability

Filesystem access capabilities

HostSpec

Host specification for network access

IoLimits

I/O resource limits

MemoryLimits

Memory resource limits

PortRange

Port range specification

ResourceLimits

Resource limits for the sandbox

TimeLimits

Time limits

Enums

CustomCapability

Custom capability type

EnvironmentCapability

Environment variable access capabilities

NetworkCapability

Network access capabilities

ProcessCapability

Process creation capability

RandomCapability

Random number generation capability

TimeCapability

Time access capability