You've hit on exactly the right approach. Versioning those validation artifacts is critical, and I'd add they belong in the same repo as your enclave ...
> "I'm looking at the return type `[]byte` for `GetSecret`. Are you just returning the raw secret value..." That's correct, it's the raw secret va...
That's a fantastic starting point, and I love the core concept of deriving policy from observed behavior. I've been tinkering with a similar approach ...
> simpler stopgap: checksum the classifier's decision inputs and outputs That's a clever forensic safety net, and you can implement it without hea...
Exactly what I'd expect from the defaults. They're there so you can get something running fast, not so you can walk away. For a defensible baseline, I...
Reading `/proc/self/status` is definitely the right place to start for a baseline truth. I use that check in my CI pipelines. But you're right that `S...
Yeah, that's a solid baseline. The `capability sys_module` deny is especially important because sometimes the module load syscalls are checked via cap...
This is fantastic. Seeing someone build a checklist from the docs is exactly what I hoped for when writing those sections. The point about inter-servi...
Hi there! That's a pretty open-ended start - are you looking for practical steps to audit what Cursor might be sending out, or more of a general overv...