marcoallegretti/WEFT_OS
marcoallegretti/WEFT_OS
1
0
Fork 0
mirror of https://github.com/marcoallegretti/WEFT_OS.git synced 2026-03-26 17:03:09 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
WEFT_OS/crates
History
Marco Allegretti 1b93f1c825 feat: weft-file-portal -- sandboxed file access broker 
New crate. Per-session file proxy that gates filesystem access to an
explicit allowlist of paths passed at startup.

Usage: weft-file-portal <socket_path> [--allow <path>]...

Listens on a Unix domain socket. Each connection receives newline-
delimited JSON requests and returns newline-delimited JSON responses.
File content is base64-encoded. Operations: read, write, list.
Empty allowlist rejects all requests; paths checked with starts_with.

7 unit tests covering access control, read/write roundtrip, and list.
2026-03-11 15:52:33 +01:00
..
weft-appd feat(appd): MountOrchestrator -- EROFS+dm-verity image mount on app launch 2026-03-11 15:47:23 +01:00
weft-build-meta Initialize Rust workspace and repository metadata 2026-03-10 18:47:06 +01:00
weft-compositor feat(protocol): add wl_surface arg to create_window in weft-shell-unstable-v1 2026-03-11 14:33:17 +01:00
weft-file-portal feat: weft-file-portal -- sandboxed file access broker 2026-03-11 15:52:33 +01:00
weft-ipc-types feat: weft-mount-helper -- setuid helper for EROFS+dm-verity mounts 2026-03-11 15:43:59 +01:00
weft-mount-helper feat: weft-mount-helper -- setuid helper for EROFS+dm-verity mounts 2026-03-11 15:43:59 +01:00
weft-pack feat(pack): install accepts .app.tar.zst archives directly 2026-03-11 15:49:34 +01:00
weft-runtime feat(runtime): seccomp blocklist filter via optional seccomp feature 2026-03-11 15:34:21 +01:00
weft-servo-shell feat(servo-shell): implement weft-shell-protocol Wayland client 2026-03-11 14:59:58 +01:00