Skip to content

D1 — Tier 1: native OS process sandboxing (the portable confinement baseline) #78

Description

@hartsock

Tier 1 of ADR 0009 (#77) — the default confinement tier. Per-OS native primitives behind the one Sandbox trait: lightweight, no external runtime, available on a stock host. High priority: this is the baseline L3 boundary on every platform (Tier 2 micro-VM and Tier 3 Wasm-plugins are opt-in tiers above it).

Per-OS backends

Definition of done

Each OS reports a real, fail-closed SandboxKind (not None) for the axes the platform can enforce, and an honest None only where genuinely unsupported. The CI matrix asserts the reported SandboxKind matches the host's true capability (ADR 0004 D1 / #30).

Refs ADR 0009 (#77). Tracks #35, #57, #50, #51.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type
    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions