Nous.Permissions.Policy (nous v0.13.3)

View Source

Permission policy controlling tool access.

Defines which tools are denied, which require approval, and the overall permission mode.

Modes

  • :default — read/search tools are open, write/execute tools require approval
  • :permissive — all tools are open, none require approval
  • :strict — all tools require approval before execution

Examples

# Custom policy that blocks bash and requires approval for write tools
%Nous.Permissions.Policy{
  deny_names: MapSet.new(["bash"]),
  approval_required: MapSet.new(["file_write", "file_edit"]),
  mode: :default
}

Summary

Types

mode()
t()

Types

mode()

@type mode() :: :default | :permissive | :strict

t()

@type t() :: %Nous.Permissions.Policy{
  approval_required: MapSet.t(),
  deny_names: MapSet.t(),
  deny_prefixes: [String.t()],
  mode: mode()
}