create-vellaveto 4.0.5 → 4.0.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/generators/toml.js +2 -17
- package/dist/wizard.js +2 -2
- package/package.json +1 -1
package/dist/generators/toml.js
CHANGED
|
@@ -160,15 +160,7 @@ function generateStrictPreset() {
|
|
|
160
160
|
toml += "[policies.network_rules]\n";
|
|
161
161
|
toml +=
|
|
162
162
|
'blocked_domains = ["*.pastebin.com", "*.transfer.sh", "*.ngrok.io"]\n\n';
|
|
163
|
-
//
|
|
164
|
-
toml += "[[policies]]\n";
|
|
165
|
-
toml += 'id = "approve-destructive"\n';
|
|
166
|
-
toml += 'name = "Require approval for destructive operations"\n';
|
|
167
|
-
toml += 'policy_type = "RequireApproval"\n';
|
|
168
|
-
toml += "priority = 50\n";
|
|
169
|
-
toml += 'tool_pattern = "*"\n';
|
|
170
|
-
toml += 'function_pattern = "*"\n\n';
|
|
171
|
-
// No path_rules needed — tool_pattern/function_pattern already match all
|
|
163
|
+
// Note: all operations not explicitly allowed are denied by default-deny
|
|
172
164
|
return toml;
|
|
173
165
|
}
|
|
174
166
|
function generateBalancedPreset() {
|
|
@@ -202,14 +194,7 @@ function generateBalancedPreset() {
|
|
|
202
194
|
toml += "priority = 50\n";
|
|
203
195
|
toml += 'tool_pattern = "*"\n';
|
|
204
196
|
toml += 'function_pattern = "read*"\n\n';
|
|
205
|
-
//
|
|
206
|
-
toml += "[[policies]]\n";
|
|
207
|
-
toml += 'id = "approve-writes"\n';
|
|
208
|
-
toml += 'name = "Require approval for file writes"\n';
|
|
209
|
-
toml += 'policy_type = "RequireApproval"\n';
|
|
210
|
-
toml += "priority = 50\n";
|
|
211
|
-
toml += 'tool_pattern = "*"\n';
|
|
212
|
-
toml += 'function_pattern = "write*"\n\n';
|
|
197
|
+
// Note: writes are denied by default-deny; only reads are explicitly allowed
|
|
213
198
|
return toml;
|
|
214
199
|
}
|
|
215
200
|
function generatePermissivePreset() {
|
package/dist/wizard.js
CHANGED
|
@@ -172,7 +172,7 @@ function nextSteps(state, absDir) {
|
|
|
172
172
|
case "binary":
|
|
173
173
|
lines.push(` cd ${absDir}`);
|
|
174
174
|
lines.push(" bash setup.sh");
|
|
175
|
-
lines.push(` VELLAVETO_API_KEY='${state.apiKey}' ./bin/vellaveto serve --config vellaveto.toml`);
|
|
175
|
+
lines.push(` VELLAVETO_API_KEY='${state.apiKey}' ./bin/vellaveto serve --config vellaveto.toml --open`);
|
|
176
176
|
break;
|
|
177
177
|
case "kubernetes":
|
|
178
178
|
lines.push(` kubectl create secret generic vellaveto-api-key \\`);
|
|
@@ -186,7 +186,7 @@ function nextSteps(state, absDir) {
|
|
|
186
186
|
lines.push(" cd vellaveto-src");
|
|
187
187
|
lines.push(" cargo build --release");
|
|
188
188
|
lines.push(` VELLAVETO_API_KEY='${state.apiKey}' \\`);
|
|
189
|
-
lines.push(` ./target/release/vellaveto serve --config ${absDir}/vellaveto.toml`);
|
|
189
|
+
lines.push(` ./target/release/vellaveto serve --config ${absDir}/vellaveto.toml --open`);
|
|
190
190
|
break;
|
|
191
191
|
}
|
|
192
192
|
lines.push("");
|