Source: docs/development/task-backlog.md
Milestone: Phase 9: Security and Audit
AD-901: Implement Permission Policy
Goal: Centralize runtime and workflow permission decisions.
Files:
- Create
apps/server/src/security/permission-policy.ts
- Create
apps/server/src/security/permission-policy.test.ts
Tasks:
Acceptance Criteria:
- Default agent policy allows read-only behavior and rejects writes, installs, arbitrary commands, commits, and pushes.
Source:
docs/development/task-backlog.mdMilestone:
Phase 9: Security and AuditAD-901: Implement Permission Policy
Goal: Centralize runtime and workflow permission decisions.
Files:
apps/server/src/security/permission-policy.tsapps/server/src/security/permission-policy.test.tsTasks:
feat: add permission policy.Acceptance Criteria: