II.
HarnessHardeningGuidance JSON
Structured · liveharness-hardening:approval-gating
Approval gating for destructive operations json
Inspect the normalized record payload exactly as the atlas UI reads it.
{
"id": "harness-hardening:approval-gating",
"_kind": "HarnessHardeningGuidance",
"_file": "security/harness-hardening/harness-hardening-guidance.yaml",
"_cluster": "security",
"attributes": {
"displayName": "Approval gating for destructive operations",
"guidance": "Configure on-failure approval policy so destructive shell operations require operator confirmation when sandbox blocks them.",
"appliesTo": "agent-session",
"severity": "recommended"
},
"outgoingEdges": [
{
"from": "harness-hardening:approval-gating",
"to": "topic:agent-session-management",
"kind": "hardening_guidance_applies_to"
}
],
"incomingEdges": []
}