-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathhushspec-posture.v0.schema.json
More file actions
105 lines (105 loc) · 3.1 KB
/
hushspec-posture.v0.schema.json
File metadata and controls
105 lines (105 loc) · 3.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"$id": "https://hushspec.dev/schemas/hushspec-posture.v0.schema.json",
"title": "HushSpec Posture Extension v0",
"description": "Schema for the HushSpec Posture extension. Declares a state machine for capability and budget management.",
"type": "object",
"required": ["initial", "states", "transitions"],
"additionalProperties": false,
"properties": {
"initial": {
"type": "string",
"description": "Initial state name. Must reference a key in states."
},
"states": {
"type": "object",
"description": "Named states in the posture state machine.",
"minProperties": 1,
"additionalProperties": {
"$ref": "#/$defs/PostureState"
}
},
"transitions": {
"type": "array",
"description": "Transitions between states, triggered by events.",
"items": {
"$ref": "#/$defs/PostureTransition"
}
}
},
"$defs": {
"PostureState": {
"type": "object",
"additionalProperties": false,
"description": "A named state in the posture state machine.",
"properties": {
"description": {
"type": "string"
},
"capabilities": {
"type": "array",
"items": {
"type": "string"
},
"description": "Capability identifiers available in this state. Standard values: file_access, file_write, egress, shell, tool_call, patch, custom."
},
"budgets": {
"type": "object",
"description": "Budget limits keyed by budget key. Standard keys: file_writes, egress_calls, shell_commands, tool_calls, patches, custom_calls.",
"additionalProperties": {
"type": "integer",
"minimum": 0
}
}
}
},
"PostureTransition": {
"type": "object",
"required": ["from", "to", "on"],
"additionalProperties": false,
"description": "A transition between posture states.",
"properties": {
"from": {
"type": "string",
"description": "Source state name, or \"*\" to match any state."
},
"to": {
"type": "string",
"not": {
"const": "*"
},
"description": "Target state name. Must not be \"*\"."
},
"on": {
"type": "string",
"enum": [
"user_approval",
"user_denial",
"critical_violation",
"any_violation",
"timeout",
"budget_exhausted",
"pattern_match"
],
"description": "Trigger that causes this transition."
},
"after": {
"type": "string",
"pattern": "^\\d+[smhd]$",
"description": "Duration string. Required when trigger is \"timeout\". Format: <number><unit> where unit is s, m, h, or d."
}
},
"if": {
"properties": {
"on": {
"const": "timeout"
}
},
"required": ["on"]
},
"then": {
"required": ["from", "to", "on", "after"]
}
}
}
}