Interface SandboxPolicy

Sandbox execution policy.

interface SandboxPolicy {
    id: string;
    name: string;
    mode: SandboxMode;
    allowedCommands: readonly string[];
    allowedEnvVars: readonly string[];
    pathRules: readonly PathAccessRule[];
    capabilities: readonly SecurityCapability[];
    limits: ResourceLimits;
}

Index

Properties

id name mode allowedCommands allowedEnvVars pathRules capabilities limits

Properties

`Readonly`id

id: string

Unique policy identifier.

`Readonly`name

name: string

Human-readable policy name.

`Readonly`mode

mode: SandboxMode

Sandbox execution mode.

`Readonly`allowedCommands

allowedCommands: readonly string[]

Allowed commands (empty = all denied).

`Readonly`allowedEnvVars

allowedEnvVars: readonly string[]

Allowed environment variables to pass through.

`Readonly`pathRules

pathRules: readonly PathAccessRule[]

Path access rules.

`Readonly`capabilities

capabilities: readonly SecurityCapability[]

Enabled capabilities.

`Readonly`limits

limits: ResourceLimits

Resource limits.