Crate zeph_tools 

Tool execution abstraction and shell backend.

Re-exports

pub use anomaly::AnomalyDetector;

pub use anomaly::AnomalySeverity;

pub use audit::AuditEntry;

pub use audit::AuditLogger;

pub use audit::AuditResult;

pub use cache::CacheKey;

pub use cache::ToolResultCache;

pub use cache::is_cacheable;

pub use composite::CompositeExecutor;

pub use config::AnomalyConfig;

pub use config::AuditConfig;

pub use config::DependencyConfig;

pub use config::OverflowConfig;

pub use config::ResultCacheConfig;

pub use config::ScrapeConfig;

pub use config::ShellConfig;

pub use config::TafcConfig;

pub use config::ToolDependency;

pub use config::ToolsConfig;

pub use diagnostics::DiagnosticsExecutor;

pub use executor::DiffData;

pub use executor::DynExecutor;

pub use executor::ErasedToolExecutor;

pub use executor::ErrorKind;

pub use executor::FilterStats;

pub use executor::MAX_TOOL_OUTPUT_CHARS;

pub use executor::ToolCall;

pub use executor::ToolError;

pub use executor::ToolEvent;

pub use executor::ToolEventTx;

pub use executor::ToolExecutor;

pub use executor::ToolOutput;

pub use executor::truncate_tool_output;

pub use executor::truncate_tool_output_at;

pub use file::FileExecutor;

pub use filter::CommandMatcher;

pub use filter::FilterConfidence;

pub use filter::FilterConfig;

pub use filter::FilterMetrics;

pub use filter::FilterResult;

pub use filter::OutputFilter;

pub use filter::OutputFilterRegistry;

pub use filter::sanitize_output;

pub use filter::strip_ansi;

pub use permissions::AutonomyLevel;

pub use permissions::PermissionAction;

pub use permissions::PermissionPolicy;

pub use permissions::PermissionRule;

pub use permissions::PermissionsConfig;

pub use registry::ToolRegistry;

pub use schema_filter::DependencyExclusion;

pub use schema_filter::InclusionReason;

pub use schema_filter::ToolDependencyGraph;

pub use schema_filter::ToolEmbedding;

pub use schema_filter::ToolFilterResult;

pub use schema_filter::ToolSchemaFilter;

pub use scrape::WebScrapeExecutor;

pub use search_code::LspSearchBackend;

pub use search_code::SearchCodeExecutor;

pub use search_code::SearchCodeHit;

pub use search_code::SearchCodeSource;

pub use search_code::SemanticSearchBackend;

pub use shell::DEFAULT_BLOCKED_COMMANDS;

pub use shell::SHELL_INTERPRETERS;

pub use shell::ShellExecutor;

pub use shell::check_blocklist;

pub use shell::effective_shell_command;

pub use tool_filter::ToolFilter;

pub use trust_gate::TrustGateExecutor;

pub use trust_level::TrustLevel;

pub use verifier::DestructiveCommandVerifier;

pub use verifier::DestructiveVerifierConfig;

pub use verifier::InjectionPatternVerifier;

pub use verifier::InjectionVerifierConfig;

pub use verifier::PreExecutionVerifier;

pub use verifier::PreExecutionVerifierConfig;

pub use verifier::VerificationResult;

Modules

anomaly

Sliding-window anomaly detection for tool execution patterns.

audit

cache

composite

config

diagnostics

executor

file

filter

Command-aware output filtering pipeline.

net

Network utilities for tool crates.

patterns

Shared injection-detection patterns for the security sanitization layers.

permissions

registry

schema_filter

Dynamic tool schema filtering based on query-tool embedding similarity (#2020).

scrape

search_code

shell

tool_filter

trust_gate

Trust-level enforcement layer for tool execution.

trust_level

Trust tier enum for skill execution permissions.

verifier

Pre-execution verification for tool calls.

Functions

is_private_ip

Returns true if addr is a non-routable or private IP address that should be blocked for outbound connections (SSRF defense).