e6ed7f8b8e
8 capabilities (output/quality/safety/scope/tools) + 12 manifests + 5 roles. Consistent classification per W9-A rules. Deprecated-alias stubs (tools::cargo-only-bash, tools::read-only) skipped — no [gate]/[verify] sections. facet-query results: kingdom=capability → 11 hits (was 3) kingdom=capability gate → 6 hits (was 2) kingdom=manifest → 12 hits (was 0) Roles tagged but not reachable by current facet_query (walker scans _capabilities + _manifests). Forward-compat for walker extension. cargo test -p kei-atom-discovery: 16/16 preserved. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
39 lines
932 B
TOML
39 lines
932 B
TOML
[capability]
|
|
name = "scope::files-whitelist"
|
|
category = "scope"
|
|
version = "1.0"
|
|
description = "Restrict Edit/Write to paths matching a per-task whitelist of glob patterns."
|
|
rationale = "Scope violations surfaced only after merge in substrate v1 audit waves. Whitelist makes scope explicit at spawn time; gate blocks at PreToolUse, verify walks git diff on return to catch any bypass."
|
|
|
|
[restricts]
|
|
tool-patterns = []
|
|
tools-denied = []
|
|
|
|
[parameterized]
|
|
accepts = ["files-whitelist"]
|
|
|
|
[text]
|
|
path = "text.md"
|
|
|
|
[gate]
|
|
rust-module = "gates::scope_files_whitelist"
|
|
event = "PreToolUse:Edit|Write"
|
|
severity = "block"
|
|
|
|
[verify]
|
|
rust-module = "verifies::scope_files_whitelist"
|
|
run-mode = "worktree"
|
|
when = "on-return"
|
|
|
|
[taxonomy]
|
|
kingdom = "capability"
|
|
mechanism = "gate"
|
|
domain = "scope"
|
|
layer = "agent-substrate"
|
|
stage = "runtime"
|
|
stability = "stable"
|
|
language = "rust"
|
|
|
|
[lineage]
|
|
creator = "ag-orchestrator-human"
|
|
created = "2026-04-23"
|