Tyler J King 5c92c027fc feat(org-ops): manifest loader with ShellClass filtering and CID verification ... GSH manifest loader reads verified entries from the manifest-{name} ConfigMap written by the substrate-operator reconciler: - Filters entries by session ShellClass (System hidden in App shells) - Filters delegation-context binaries in non-delegation sessions - compute_file_cid() verifies on-disk binary hashes against CIDs - verify_binary_hashes() detects tampering and missing binaries - ManifestLoadResult reports loaded/excluded with reasons 10 unit tests covering: - Application shell excludes system binaries - System shell loads all non-delegation entries - Delegation-permitted sessions load delegation binaries - Empty/invalid manifest handling - File CID computation (SHA-256, verified against known hash) - Hash mismatch and missing file detection Signed-off-by: Tyler King <tking@guildhouse.dev> Signed-off-by: Tyler J King <tking727@gmail.com>		2026-04-15 18:38:44 -04:00
..
src	feat(org-ops): manifest loader with ShellClass filtering and CID verification	2026-04-15 18:38:44 -04:00
Cargo.toml	chore: add license and repository to org-ops-core Cargo.toml	2026-04-15 16:02:24 -04:00