bruno/dss
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
2c9f52c029911e0b35fd9ceda75d22f036296be4
dss/.dss-boundaries.yaml
Digital Production Factory b7c8f31008 Phase 1 Complete: DSS Foundation & Guardrails 
Created directory structure and git pre-commit hook:

NEW DIRECTORIES:
- .dss/schema/ - Structured schemas for AI consumption
- .dss/temp/ - Session-specific temporary files (git-ignored)
- .dss/docs/ - Machine-readable documentation
- docs/archive/ - Archived human-readable docs

NEW FILES:
- .dss-boundaries.yaml - Boundary enforcement configuration
- .dss/temp/README.md - Temp folder usage guidelines
- .git/hooks/pre-commit - 5-validator pre-commit hook

UPDATED:
- .gitignore - Exclude temp files, track .gitkeep and README

GIT HOOK VALIDATORS:
1. Immutable file protection (blocks modifications to protected files)
2. Temp folder discipline (rejects temp files outside .dss/temp/)
3. Schema validation (validates JSON/YAML syntax)
4. Terminology checks (warns on 'swarm'/'organism' usage)
5. Audit logging (all hook events logged to .dss/logs/)

All foundation infrastructure ready for Phase 2 (Boundary Enforcement).
2025-12-09 19:12:49 -03:00

53 lines
1.4 KiB
YAML
Raw Blame History

# DSS Boundary Configuration
# This file defines what external APIs and operations are allowed
# All AI interactions MUST go through DSS tools, not direct external access
version: "1.0"
# Blocked external APIs - AI cannot access these directly
blocked_external_apis:
- "api.figma.com"
- "figma.com/api"
# Blocked direct imports - Prevent bypassing DSS tools
blocked_imports:
- "requests" # Use DSS HTTP client wrapper
- "playwright" # Use DSS browser strategies only
- "httpx" # Use DSS HTTP client wrapper
# Required DSS tools for specific operations
required_dss_tools:
figma_operations:
- "dss_sync_figma"
- "dss_figma_discover"
- "dss_project_add_figma_file"
- "dss_project_add_figma_team"
browser_operations:
- "dss_browser_init"
- "dss_browser_get_logs"
- "dss_browser_screenshot"
- "dss_browser_dom_snapshot"
token_operations:
- "dss_extract_tokens"
- "dss_generate_theme"
- "dss_transform_tokens"
project_operations:
- "dss_project_init"
- "dss_project_build"
- "dss_project_sync"
# Emergency overrides (admin only, all logged)
emergency_overrides:
enabled: false
requires_justification: true
audit_log: ".dss/logs/boundary-overrides.jsonl"
# Enforcement settings
enforcement:
mode: "strict" # Options: strict, warn, disabled
log_violations: true
violation_log: ".dss/logs/boundary-violations.jsonl"
Reference in New Issue View Git Blame Copy Permalink