bascule-workspace

tking/bascule-workspace

SHA256

Fork 0

Commit graph

Author	SHA256	Message	Date
Tyler J King	aa447f151e	feat(bascule-core): add DelegationScope for Infrastructure shell pattern DelegationScope is orthogonal to ShellClass — an Application session can have delegation authority to orchestrate System operations on remote targets (the Infrastructure shell pattern for Ansible/Terraform). TargetSelector supports: None, Hosts (explicit list), LabelSelector (deferred to K8s API), TrustDomain (all hosts). Default: denied (fail-closed). DelegationDecision: Permitted, Denied (with reason), Deferred (for async label resolution). Added delegation field to SessionScope with #[serde(default)] for backward-compatible deserialization. 7 unit tests for delegation scope checking. Signed-off-by: Tyler King <tking@guildhouse.dev> Signed-off-by: Tyler J King <tking727@gmail.com>	2026-04-15 15:16:24 -04:00
Tyler J King	e28be3335d	feat(bascule-core): add ShellClass enum with posture-based derivation Introduce ShellClass (Application \| System) as a session-scoped classification derived from PostureLevel at ceremony grant time. - ShellClass::Application: default, software operations only - ShellClass::System: host operations, requires Normal (5) posture - derive_shell_class(): pure function, configurable threshold - satisfies(): hierarchical check (System satisfies Application) - No mid-session upgrade by design (immutable in SessionScope) Added shell_class and posture_level_at_establishment to SessionScope with #[serde(default)] for backward-compatible deserialization. Signed-off-by: Tyler King <tking@guildhouse.dev> Signed-off-by: Tyler J King <tking727@gmail.com>	2026-04-15 10:36:45 -04:00
Tyler King	b1865a0627	initial: bascule v0.1.0 Bascule shell runtime workspace — governed shell access layer for Substrate/Guildhouse FFC deployments. Crates: - bascule-agent: node agent with SSH server + command filtering - bascule-core: audit, grant engine, ceremony types, session - bascule-filter-core: log line filtering (stdio protocol) - bascule-gateway: OIDC auth, session management, SAT validation - bascule-node-agent: k8s DaemonSet agent (pod watcher, BPF manager) - bascule-proto: protobuf definitions - bascule-shell: governed SSH shell (commands, elevation, REPL) - bascule-tail: chronicle log tail + fanout - ceremony-engine: ceremony lifecycle (6 types + request/resolution) 172 tests passing. Implements SBS-SPEC-0001 shell model. Reference impl for SPEC-SHELLOPS-0001 Layer 1 (root shell).	2026-03-18 16:40:48 -04:00

Author

SHA256

Message

Date

Tyler J King

aa447f151e

feat(bascule-core): add DelegationScope for Infrastructure shell pattern

DelegationScope is orthogonal to ShellClass — an Application session
can have delegation authority to orchestrate System operations on
remote targets (the Infrastructure shell pattern for Ansible/Terraform).

TargetSelector supports: None, Hosts (explicit list), LabelSelector
(deferred to K8s API), TrustDomain (all hosts). Default: denied
(fail-closed).

DelegationDecision: Permitted, Denied (with reason), Deferred (for
async label resolution).

Added delegation field to SessionScope with #[serde(default)] for
backward-compatible deserialization.

7 unit tests for delegation scope checking.

Signed-off-by: Tyler King <tking@guildhouse.dev>
Signed-off-by: Tyler J King <tking727@gmail.com>

2026-04-15 15:16:24 -04:00

Tyler J King

e28be3335d

feat(bascule-core): add ShellClass enum with posture-based derivation

Introduce ShellClass (Application | System) as a session-scoped
classification derived from PostureLevel at ceremony grant time.

- ShellClass::Application: default, software operations only
- ShellClass::System: host operations, requires Normal (5) posture
- derive_shell_class(): pure function, configurable threshold
- satisfies(): hierarchical check (System satisfies Application)
- No mid-session upgrade by design (immutable in SessionScope)

Added shell_class and posture_level_at_establishment to SessionScope
with #[serde(default)] for backward-compatible deserialization.

Signed-off-by: Tyler King <tking@guildhouse.dev>
Signed-off-by: Tyler J King <tking727@gmail.com>

2026-04-15 10:36:45 -04:00

Tyler King

b1865a0627

initial: bascule v0.1.0

Bascule shell runtime workspace — governed shell access layer
for Substrate/Guildhouse FFC deployments.

Crates:
- bascule-agent: node agent with SSH server + command filtering
- bascule-core: audit, grant engine, ceremony types, session
- bascule-filter-core: log line filtering (stdio protocol)
- bascule-gateway: OIDC auth, session management, SAT validation
- bascule-node-agent: k8s DaemonSet agent (pod watcher, BPF manager)
- bascule-proto: protobuf definitions
- bascule-shell: governed SSH shell (commands, elevation, REPL)
- bascule-tail: chronicle log tail + fanout
- ceremony-engine: ceremony lifecycle (6 types + request/resolution)

172 tests passing.
Implements SBS-SPEC-0001 shell model.
Reference impl for SPEC-SHELLOPS-0001 Layer 1 (root shell).

2026-03-18 16:40:48 -04:00

3 commits