{
  "id": "page:docs-harness-features-backlog-gaps-security-gap-sec-004",
  "_kind": "Page",
  "_file": "wiki/docs/harness-features-backlog/gaps/security/gap-sec-004.md",
  "_cluster": "wiki",
  "attributes": {
    "nodeKind": "Page",
    "sourcePath": "docs/harness-features-backlog/gaps/security/GAP-SEC-004.md",
    "sourceKind": "repo-docs",
    "title": "GAP-SEC-004: Sandbox Toggle",
    "displayName": "GAP-SEC-004: Sandbox Toggle",
    "slug": "docs/harness-features-backlog/gaps/security/gap-sec-004",
    "articlePath": "wiki/docs/harness-features-backlog/gaps/security/GAP-SEC-004.md",
    "article": "\n# GAP-SEC-004: Sandbox Toggle\n\n| Field | Value |\n|-------|-------|\n| Category | security |\n| Priority | Medium |\n| Effort | M |\n| Status | Partial |\n\n## Description\nRuntime sandbox control for general harness execution, extending beyond the current Pi-specific secure sandbox to all harness adapters.\n\n## Current State\npiSecureSandbox provides Docker-based isolation for Pi bash execution. No general sandbox toggle for other harness adapters. No runtime control to enable/disable sandboxing.\n\n## Target State\nGeneral sandbox capability across harness adapters. Runtime toggle to enable/disable sandboxing per run or per effect. Sandbox enforcement in governance policy.\n\n## Dependencies\n- [GAP-SEC-001](../security/GAP-SEC-001.md) -- governance policy for sandbox enforcement\n\n## Key Files\n| Component | Path |\n|-----------|------|\n| Pi secure sandbox | `packages/sdk/src/harness/piSecureSandbox.ts` |\n| Harness adapters | `packages/sdk/src/harness/` |\n\n## Recommendation\nPhase 3 implementation. Generalize piSecureSandbox pattern. Add sandbox config to run metadata. Enforce via governance policy.\n",
    "documents": []
  },
  "outgoingEdges": [],
  "incomingEdges": [
    {
      "from": "page:docs-harness-features-backlog",
      "to": "page:docs-harness-features-backlog-gaps-security-gap-sec-004",
      "kind": "contains_page"
    }
  ]
}