feat(policy): add managed maximum permission modes#2168
Draft
zredlined wants to merge 6 commits into
Draft
Conversation
Signed-off-by: Alexander Watson <zredlined@users.noreply.github.com>
Signed-off-by: Alexander Watson <zredlined@users.noreply.github.com>
Signed-off-by: Alexander Watson <zredlined@users.noreply.github.com>
|
🌿 Preview your docs: https://nvidia-preview-pr-2168.docs.buildwithfern.com/openshell |
Signed-off-by: Alexander Watson <zredlined@users.noreply.github.com>
Signed-off-by: Alexander Watson <zredlined@users.noreply.github.com>
Signed-off-by: Alexander Watson <zredlined@users.noreply.github.com>
11 tasks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Implement the core workflow for gateway-managed maximum policies from #2109. This draft currently
supports filesystem, raw L4, and enforced REST containment with immutable ask or auto permission
modes, provider composition, and live-state revalidation.
It also replaces the legacy empty-finding proposal auto-approval gate so reviewers can evaluate one
security decision surface before GraphQL, remote MCP, and multi-policy agent/subagent composition
add more policy-language and API complexity.
This remains a draft. Feedback on the core workflow is intended to shape those remaining
expansions, all of which remain in scope for #2109 and this work.
The current complete diff is a net reduction: 4,432 additions and 4,732 deletions across 83 files.
Related Issue
Part of #2109
Current Slice
and review.required annotations.
REST authority.
changes, direct policy updates, and proposal application.
delta inside the auto-eligible maximum view.
resolvable profiles, and always-blocked network targets.
path, and their settings/audit/test surface.
files, testdata, dependencies, and CLI build wiring.
the single admission model.
Compatibility
in-scope containment expansions are implemented.
Review Guide
The commits are semantic slices within this one draft PR:
Review the current final contract once; the commit boundaries are navigation aids rather than
intermediate states that need separate approval.
Testing
import and Helm chart dependency metadata for postgresql.
Reviewer smoke test
The test prints maximum setup, managed-mode UX, automatic GET approval, reviewed POST approval,
DELETE rejection, live reload, audit visibility, and cleanup.
Remaining In Scope
maximum as the outer boundary; use core-workflow feedback to finalize the composition API.
Checklist
new contract.