welsberr
/
ThreeGate
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
ThreeGate/policy
History
welsberr d31c506de8 Added more on hardening 2026-02-10 05:07:09 -05:00
..
README.md Expanded files with implementation stubs 2026-02-09 15:43:22 -05:00
core.policy.md Expanded files with implementation stubs 2026-02-09 15:43:22 -05:00
fetch.policy.md Expanded files with implementation stubs 2026-02-09 15:43:22 -05:00
instruction-hierarchy.md Added more on hardening 2026-02-10 05:07:09 -05:00
tool-exec.policy.md Added more on hardening 2026-02-10 05:07:09 -05:00

README.md

Policy Directory

Policy files are authoritative constraints for ThreeGate components.

Rules

  • Policy files must be mounted read-only into containers.
  • Policies must not be editable by any component at runtime.
  • Changes are operator actions and should be version-controlled.

Files

  • instruction-hierarchy.md: global instruction precedence
  • core.policy.md: CORE constraints
  • fetch.policy.md: FETCH constraints
  • tool-exec.policy.md: TOOL-EXEC constraints