unbound-cli 0.4.0 → 0.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LOCAL_DEV.md +35 -2
- package/README.md +82 -7
- package/package.json +1 -1
- package/src/commands/policy.js +1704 -212
- package/src/index.js +26 -7
package/src/index.js
CHANGED
|
@@ -73,14 +73,33 @@ MDM AI TOOLS DISCOVERY
|
|
|
73
73
|
$ unbound discover status Show scan schedule and logs
|
|
74
74
|
|
|
75
75
|
POLICY MANAGEMENT
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
79
|
-
$ unbound policy
|
|
80
|
-
$ unbound policy
|
|
76
|
+
Unbound has four policy types. Each type has its own subcommand with guided flags.
|
|
77
|
+
Docs: https://docs.getunbound.ai/policies
|
|
78
|
+
|
|
79
|
+
$ unbound policy Overview and subcommand list
|
|
80
|
+
$ unbound policy form-data Reference data (user groups, models, guardrails, etc.)
|
|
81
|
+
$ unbound policy list List Cost/Model/Security policies
|
|
82
|
+
$ unbound policy get <id> View a policy's details
|
|
81
83
|
$ unbound policy delete <id> Delete a policy
|
|
82
|
-
$ unbound policy effective <id> View effective policies for a user
|
|
83
|
-
|
|
84
|
+
$ unbound policy effective <id> View effective policies for a user or group
|
|
85
|
+
|
|
86
|
+
Cost policies — monthly budget limits per user group:
|
|
87
|
+
$ unbound policy cost create --name "Eng Budget" --monthly-budget 1000 --group engg
|
|
88
|
+
|
|
89
|
+
Model policies — control which AI models are available:
|
|
90
|
+
$ unbound policy model create --name "No Opus" --all-models --excluded claude-3-opus
|
|
91
|
+
|
|
92
|
+
Security policies — guardrails for PII/secrets and routing rules:
|
|
93
|
+
$ unbound policy security create --name "Block PII" --sub-type guardrails --guardrail PII:BLOCK
|
|
94
|
+
|
|
95
|
+
Tool policies — shell command and MCP tool controls (separate backend):
|
|
96
|
+
$ unbound policy tool list
|
|
97
|
+
$ unbound policy tool create-terminal --name "Block rm -rf" --command-family filesystem \\
|
|
98
|
+
--field command='rm -rf*' --action BLOCK --custom-message "Destructive command blocked."
|
|
99
|
+
$ unbound policy tool create-mcp --name "Audit Linear writes" --mcp-server Linear \\
|
|
100
|
+
--mcp-action-type write --action AUDIT
|
|
101
|
+
$ unbound policy tool families Discover terminal command families
|
|
102
|
+
$ unbound policy tool mcp-servers Discover MCP servers and their tools
|
|
84
103
|
|
|
85
104
|
USER & GROUP MANAGEMENT
|
|
86
105
|
$ unbound users list List organization members
|