highflame-policy 1.1.1__py3-none-any.whl

highflame_policy/__init__.py

@@ -0,0 +1,34 @@
+# Code generated by highflame-policy-codegen. DO NOT EDIT.
+# Source: schema/highflame.cedarschema
+
+"""Highflame Policy - Cedar schema types and constants."""
+
+from .entities import (
+    Entity,
+    EntityType,
+    EntityUID,
+    new_entity,
+    new_entity_uid,
+)
+from .actions import ActionType, action_uid
+from .context import ContextKey
+
+# Non-generated modules (require cedarpy)
+from .engine import PolicyEngine, Decision
+
+__all__ = [
+    # Entities
+    "Entity",
+    "EntityType",
+    "EntityUID",
+    "new_entity",
+    "new_entity_uid",
+    # Actions
+    "ActionType",
+    "action_uid",
+    # Context
+    "ContextKey",
+    # Engine
+    "PolicyEngine",
+    "Decision",
+]

highflame_policy/actions.py

@@ -0,0 +1,32 @@
+# Code generated by highflame-policy-codegen. DO NOT EDIT.
+# Source: schema/highflame.cedarschema
+
+"""Action types for Highflame Cedar policies."""
+
+from .entities import EntityUID
+
+class ActionType:
+    """Action types defined in the Highflame Cedar schema."""
+
+    ACCESS_SERVER_RESOURCE: str = "access_server_resource"
+    CALL_TOOL: str = "call_tool"
+    CONNECT_SERVER: str = "connect_server"
+    DEPLOY_MODEL: str = "deploy_model"
+    HTTP_REQUEST: str = "http_request"
+    LOAD_MODEL: str = "load_model"
+    PROCESS_PROMPT: str = "process_prompt"
+    PROCESS_RESPONSE: str = "process_response"
+    QUARANTINE_ARTIFACT: str = "quarantine_artifact"
+    READ_FILE: str = "read_file"
+    SCAN_ARTIFACT: str = "scan_artifact"
+    SCAN_PACKAGE: str = "scan_package"
+    SCAN_TARGET: str = "scan_target"
+    SKIP_GUARDRAILS: str = "skip_guardrails"
+    VALIDATE_INTEGRITY: str = "validate_integrity"
+    VALIDATE_PROVENANCE: str = "validate_provenance"
+    WRITE_FILE: str = "write_file"
+
+
+def action_uid(action: str) -> EntityUID:
+    """Create an EntityUID for an action."""
+    return {"type": "Action", "id": action}

highflame_policy/context.py

@@ -0,0 +1,105 @@
+# Code generated by highflame-policy-codegen. DO NOT EDIT.
+# Source: schema/context.yaml
+
+"""Context attribute keys for Highflame Cedar policies."""
+
+class ContextKey:
+    """Context attribute keys for Cedar policy evaluation."""
+
+    # Guardrails/Core context attributes
+    # Name of tool being called
+    TOOL_NAME: str = "tool_name"
+    # Name of resource being accessed
+    RESOURCE_NAME: str = "resource_name"
+    # Name of prompt
+    PROMPT_NAME: str = "prompt_name"
+    # Raw prompt text
+    PROMPT_TEXT: str = "prompt_text"
+    # Response size in megabytes
+    RESPONSE_SIZE_MB: str = "response_size_mb"
+    # Set of detected YARA threat names
+    YARA_THREATS: str = "yara_threats"
+    # Number of threats detected
+    THREAT_COUNT: str = "threat_count"
+    # Highest severity (0-4)
+    MAX_THREAT_SEVERITY: str = "max_threat_severity"
+    # User type: external or internal
+    USER_TYPE: str = "user_type"
+    # Whether monitoring is active
+    MONITORING_ENABLED: str = "monitoring_enabled"
+    # File path
+    PATH: str = "path"
+    # HTTP hostname
+    HOSTNAME: str = "hostname"
+    # IP address
+    IP_ADDRESS: str = "ip_address"
+    # Whether the IP is private/loopback (set by application layer)
+    IS_PRIVATE_IP: str = "is_private_ip"
+    # HTTP scheme
+    SCHEME: str = "scheme"
+    # Port number
+    PORT: str = "port"
+
+    # Palisade context attributes
+    # Environment: production, development, research
+    ENVIRONMENT: str = "environment"
+    # Format: pickle, safetensors, gguf, onnx
+    ARTIFACT_FORMAT: str = "artifact_format"
+    # Whether artifact has signature
+    ARTIFACT_SIGNED: str = "artifact_signed"
+    # Severity: CRITICAL, HIGH, MEDIUM, LOW, INFO
+    SEVERITY: str = "severity"
+    # Type of security finding
+    FINDING_TYPE: str = "finding_type"
+    # Who signed the artifact
+    PROVENANCE_SIGNER: str = "provenance_signer"
+    # RCE path found in pickle
+    PICKLE_EXEC_PATH_DETECTED: str = "pickle_exec_path_detected"
+    # Malicious pattern in metadata
+    METADATA_MALICIOUS_PATTERN: str = "metadata_malicious_pattern"
+    # Number of added tokens
+    TOKENIZER_ADDED_TOKENS_COUNT: str = "tokenizer_added_tokens_count"
+    # Safetensors integrity failed
+    SAFETENSORS_INTEGRITY_VIOLATION: str = "safetensors_integrity_violation"
+    # Suspicious GGUF metadata
+    GGUF_SUSPICIOUS_METADATA: str = "gguf_suspicious_metadata"
+    # LoRA adapter digest mismatch
+    ADAPTER_BASE_DIGEST_MISMATCH: str = "adapter_base_digest_mismatch"
+    # CoSAI maturity level (0-5)
+    METADATA_COSAI_LEVEL_NUMERIC: str = "metadata_cosai_level_numeric"
+
+    # Overwatch context attributes
+    # IDE source: cursor, claudecode, vscode, geminicli
+    SOURCE: str = "source"
+    # Hook event type: beforeShellExecution, PreToolUse, etc.
+    EVENT: str = "event"
+    # The prompt/request content being evaluated
+    CONTENT: str = "content"
+    # User's email address (or 'anonymous')
+    USER_EMAIL: str = "user_email"
+    # Custom principal ID for policy evaluation
+    CEDAR_PRINCIPAL: str = "cedar_principal"
+    # MCP server name: filesystem, playwright, etc.
+    SERVER_NAME: str = "server_name"
+    # Whether the path is within the workspace
+    IS_WITHIN_WORKSPACE: str = "is_within_workspace"
+    # Response content from tool execution
+    RESPONSE_CONTENT: str = "response_content"
+    # Highest severity level: critical, high, medium, low
+    HIGHEST_SEVERITY: str = "highest_severity"
+    # Array of threat types detected
+    THREAT_TYPES: str = "threat_types"
+    # Array of threat categories found
+    THREAT_CATEGORIES: str = "threat_categories"
+    # Whether secrets were detected in the content
+    CONTAINS_SECRETS: str = "contains_secrets"
+    # Number of concurrent calls
+    CONCURRENT_CALLS: str = "concurrent_calls"
+    # Request rate per minute
+    REQUESTS_PER_MINUTE: str = "requests_per_minute"
+    # User trust level: high, medium, low
+    USER_TRUST_LEVEL: str = "user_trust_level"
+    # Whether alerting is enabled for this request
+    ALERT_ENABLED: str = "alert_enabled"
+    # Type of security scan being performed
+    SCAN_TYPE: str = "scan_type"

highflame_policy/engine.py

@@ -0,0 +1,148 @@
+"""
+Highflame Policy Engine - Python Wrapper
+Wraps cedarpy with Highflame-specific types
+"""
+
+from dataclasses import dataclass
+from typing import Any, Optional
+
+import cedarpy
+
+from .entities import EntityType
+from .actions import ActionType
+
+
+@dataclass
+class EntityUID:
+    """Cedar entity unique identifier."""
+    type: str
+    id: str
+
+
+@dataclass
+class Decision:
+    """Result of a policy evaluation."""
+    effect: str  # "Allow" or "Deny"
+    determining_policies: list[str]
+    reason: Optional[str] = None
+
+    def is_allowed(self) -> bool:
+        return self.effect == "Allow"
+
+    def is_denied(self) -> bool:
+        return self.effect == "Deny"
+
+
+class PolicyEngine:
+    """
+    PolicyEngine wraps cedarpy with Highflame schema types.
+
+    Example:
+        engine = PolicyEngine()
+        engine.load_policies_from_file("policies/palisade/policy.cedar")
+
+        decision = engine.evaluate(
+            principal_type=EntityType.SCANNER,
+            principal_id="palisade",
+            action=ActionType.SCAN_ARTIFACT,
+            resource_type=EntityType.ARTIFACT,
+            resource_id="/path/to/model.safetensors",
+            context={
+                "artifact_format": "safetensors",
+                "severity": "HIGH",
+                "environment": "production",
+            }
+        )
+
+        if decision.is_denied():
+            print(f"Blocked by: {decision.determining_policies}")
+    """
+
+    def __init__(self):
+        self._policies: str = ""
+        self._schema: Optional[str] = None
+
+    def load_policies_from_file(self, path: str) -> None:
+        """Load Cedar policies from a file."""
+        with open(path, "r") as f:
+            self._policies = f.read()
+
+    def load_policies(self, policies: str) -> None:
+        """Load Cedar policies from a string."""
+        self._policies = policies
+
+    def load_schema_from_file(self, path: str) -> None:
+        """Load Cedar schema from a file."""
+        with open(path, "r") as f:
+            self._schema = f.read()
+
+    def load_schema(self, schema: str) -> None:
+        """Load Cedar schema from a string."""
+        self._schema = schema
+
+    def evaluate(
+        self,
+        principal_type: str,
+        principal_id: str,
+        action: str,
+        resource_type: str,
+        resource_id: str,
+        context: Optional[dict[str, Any]] = None,
+    ) -> Decision:
+        """
+        Evaluate a policy request and return a decision.
+
+        Args:
+            principal_type: Entity type of the principal (e.g., EntityType.USER)
+            principal_id: ID of the principal
+            action: Action being performed (e.g., ActionType.SCAN_ARTIFACT)
+            resource_type: Entity type of the resource (e.g., EntityType.ARTIFACT)
+            resource_id: ID of the resource
+            context: Optional context attributes for the request
+
+        Returns:
+            Decision with effect, determining policies, and optional reason
+        """
+        # Format entity UIDs for Cedar
+        principal = f'{principal_type}::"{principal_id}"'
+        action_uid = f'Action::"{action}"'
+        resource = f'{resource_type}::"{resource_id}"'
+
+        # Call cedarpy (v4.8.0+ uses request dict instead of separate args)
+        request = {
+            "principal": principal,
+            "action": action_uid,
+            "resource": resource,
+            "context": context or {},
+        }
+        result = cedarpy.is_authorized(
+            request=request,
+            policies=self._policies,
+            entities=[],
+        )
+
+        # Map result to Decision (using result.allowed for cleaner API)
+        return Decision(
+            effect="Allow" if result.allowed else "Deny",
+            determining_policies=list(result.diagnostics.reasons) if result.diagnostics else [],
+            reason="; ".join(result.diagnostics.errors) if result.diagnostics and result.diagnostics.errors else None,
+        )
+
+    def validate_policies(self, policies: str) -> list[str]:
+        """
+        Validate policies against the loaded schema.
+
+        Returns:
+            List of validation error messages, or empty list if valid.
+        """
+        if not self._schema:
+            return ["No schema loaded for validation"]
+
+        result = cedarpy.validate(
+            policies=policies,
+            schema=self._schema,
+        )
+
+        if result.validation_errors:
+            return [str(e) for e in result.validation_errors]
+        return []

highflame_policy/entities.py

@@ -0,0 +1,61 @@
+# Code generated by highflame-policy-codegen. DO NOT EDIT.
+# Source: schema/highflame.cedarschema
+
+"""Entity types for Highflame Cedar policies."""
+
+from typing import Any, TypedDict
+
+class EntityType:
+    """Entity types defined in the Highflame Cedar schema."""
+
+    AGENT: str = "Agent"
+    ARTIFACT: str = "Artifact"
+    FILE_PATH: str = "FilePath"
+    HTTP_ENDPOINT: str = "HttpEndpoint"
+    PACKAGE: str = "Package"
+    REPOSITORY: str = "Repository"
+    RESOURCE: str = "Resource"
+    RESPONSE_DATA: str = "ResponseData"
+    SCANNER: str = "Scanner"
+    SERVER: str = "Server"
+    SERVICE: str = "Service"
+    TOOL: str = "Tool"
+    USER: str = "User"
+
+
+class EntityUID(TypedDict):
+    """Cedar entity unique identifier."""
+
+    type: str
+    id: str
+
+
+class Entity(TypedDict, total=False):
+    """Cedar entity with attributes."""
+
+    uid: EntityUID
+    attrs: dict[str, Any]
+    parents: list[EntityUID]
+
+
+def new_entity_uid(entity_type: str, entity_id: str) -> EntityUID:
+    """
+    Create a new EntityUID.
+
+    Services should use this with their own identity from config/environment.
+    Example: new_entity_uid(EntityType.SCANNER, os.environ['SERVICE_ID'])
+    """
+    return {"type": entity_type, "id": entity_id}
+
+
+def new_entity(
+    entity_type: str,
+    entity_id: str,
+    attrs: dict[str, Any] | None = None,
+) -> Entity:
+    """Create a new Entity."""
+    return {
+        "uid": {"type": entity_type, "id": entity_id},
+        "attrs": attrs or {},
+        "parents": [],
+    }

highflame_policy-1.1.1.dist-info/METADATA

@@ -0,0 +1,22 @@
+Metadata-Version: 2.4
+Name: highflame-policy
+Version: 1.1.1
+Summary: Highflame Cedar policy types and engine wrapper
+License: Apache-2.0
+Project-URL: Homepage, https://github.com/highflame-ai/highflame-policy
+Project-URL: Repository, https://github.com/highflame-ai/highflame-policy.git
+Keywords: cedar,policy,authorization,highflame
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+Requires-Dist: cedarpy>=4.0.0
+Provides-Extra: dev
+Requires-Dist: pytest>=7.0.0; extra == "dev"
+Requires-Dist: pytest-cov>=4.0.0; extra == "dev"

highflame_policy-1.1.1.dist-info/RECORD

@@ -0,0 +1,9 @@
+highflame_policy/__init__.py,sha256=Ovcl_S13N3FJpZegN9gEsUpmgLZSUg5x7aapFNNJC4U,676
+highflame_policy/actions.py,sha256=767MmcBl6Dp6TuC8z9NCasoc2VMWPNdhHbOxMJc6vXU,1121
+highflame_policy/context.py,sha256=5AiXoWyB_KlAxm49Kt7-TB_LlOD9uIIM3R-CDhgZInE,4106
+highflame_policy/engine.py,sha256=qtJDFC7UnzKEcb0ltJ115Go5ChgNVaU6Ks33kAzGe4Q,4462
+highflame_policy/entities.py,sha256=y1tuFjN16bVbsHHVktdCx8Qh5SdR8faaYVvqRnqgXKs,1501
+highflame_policy-1.1.1.dist-info/METADATA,sha256=M44FuCWr5B5M6mDFqtj7zGGecSdk6XVV1esL3P6SumU,942
+highflame_policy-1.1.1.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
+highflame_policy-1.1.1.dist-info/top_level.txt,sha256=kewf3s1KO3EJHyf29rFyM1FggQOrTlDT0nnurTrNpRQ,17
+highflame_policy-1.1.1.dist-info/RECORD,,

highflame_policy-1.1.1.dist-info/WHEEL

@@ -0,0 +1,5 @@
+Wheel-Version: 1.0
+Generator: setuptools (80.10.2)
+Root-Is-Purelib: true
+Tag: py3-none-any
+

highflame_policy-1.1.1.dist-info/top_level.txt

@@ -0,0 +1 @@
+highflame_policy