Agent writes confined to workspace

fs-safety-invariant:no-writes-outside-workspace

FilesystemSafetyInvariantsecurity/fs-safety-invariants/fs-safety-invariants-canonical.yaml·Open in Graph →

{
  "id": "fs-safety-invariant:no-writes-outside-workspace",
  "_kind": "FilesystemSafetyInvariant",
  "_file": "security/fs-safety-invariants/fs-safety-invariants-canonical.yaml",
  "_cluster": "security",
  "attributes": {
    "displayName": "Agent writes confined to workspace",
    "rule": "Agent subprocess must never write outside resolved workspace cwd.",
    "scope": "agent-session",
    "enforcement": "sandbox-policy",
    "rationale": "Symphony invariant: orchestrator host filesystem is off-limits."
  },
  "outgoingEdges": [],
  "incomingEdges": [
    {
      "from": "agent-runtime-impl:claude-code.runtime@1.x",
      "to": "fs-safety-invariant:no-writes-outside-workspace",
      "kind": "enforces_invariant",
      "attributes": {}
    }
  ]
}