Skip to content

hyperpolymath/k9-rs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

71 Commits
.devcontainer
.devcontainer
 
 
.github
.github
 
 
.machine_readable
.machine_readable
 
 
.well-known
.well-known
 
 
LICENSES
LICENSES
 
 
container
container
 
 
contractiles
contractiles
 
 
docs
docs
 
 
examples
examples
 
 
features
features
 
 
generated/idrisiser
generated/idrisiser
 
 
idrisiser
idrisiser
 
 
src
src
 
 
tests/fuzz
tests/fuzz
 
 
verification
verification
 
 
.editorconfig
.editorconfig
 
 
.envrc
.envrc
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.gitlab-ci.yml
.gitlab-ci.yml
 
 
.guix-channel
.guix-channel
 
 
.tool-versions
.tool-versions
 
 
0-AI-MANIFEST.a2ml
0-AI-MANIFEST.a2ml
 
 
Adjust.a2ml
Adjust.a2ml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
Containerfile
Containerfile
 
 
Dust.a2ml
Dust.a2ml
 
 
EXPLAINME.adoc
EXPLAINME.adoc
 
 
Intend.a2ml
Intend.a2ml
 
 
Justfile
Justfile
 
 
LICENSE
LICENSE
 
 
Must.a2ml
Must.a2ml
 
 
QUICKSTART-DEV.adoc
QUICKSTART-DEV.adoc
 
 
QUICKSTART-MAINTAINER.adoc
QUICKSTART-MAINTAINER.adoc
 
 
QUICKSTART-USER.adoc
QUICKSTART-USER.adoc
 
 
README.md
README.md
 
 
ROADMAP.adoc
ROADMAP.adoc
 
 
SECURITY.md
SECURITY.md
 
 
TEST-NEEDS.md
TEST-NEEDS.md
 
 
TOPOLOGY.md
TOPOLOGY.md
 
 
Trust.a2ml
Trust.a2ml
 
 
contractile.just
contractile.just
 
 
eclexiaiser.toml
eclexiaiser.toml
 
 
guix.scm
guix.scm
 
 
idrisiser.toml
idrisiser.toml
 
 
k9iser.toml
k9iser.toml
 
 
llm-warmup-dev.md
llm-warmup-dev.md
 
 
llm-warmup-user.md
llm-warmup-user.md
 
 
selur-compose.toml
selur-compose.toml
 
 
setup.sh
setup.sh
 
 
stapeln.toml
stapeln.toml
 
 

Repository files navigation

Rust parser and renderer for K9 self-validating configuration files — declares software components with provenance tracking, security classification, build recipes, and runtime contracts.

Overview

K9 is a configuration format for software component declarations. Each component carries:

  • Pedigree — provenance: origin URL, author, license, supply-chain hashes

  • SecurityLevel — Kennel / Yard / Hunt (same three-tier model as K9 Nickel components)

  • Recipe — build or assembly instructions (tool + command)

  • Contracts — runtime invariants with check commands and severity levels

k9-rs supports two surface formats:

  • .k9 — YAML-like plain-text format parsed natively

    * .k9.ncl — Nickel format; detected and returned as `K9Error
    NickelFormat` (requires the Nickel evaluator — use pandoc-k9 for Nickel K9 files)

    == Quick Start

use k9_svc::parser::parse;
use k9_svc::renderer::render;

let input = r#"component: my-svc
  version: 0.1.0
  pedigree:
    origin: https://github.com/example/svc
    author: Alice
  security: kennel
"#;

let components = parse(input)?;
let output = render(&components)?;

Security Levels

Level Meaning
kennel Data-only. No execution. Strict sandbox. Safe to parse anywhere.
yard Nickel evaluation + limited I/O. Capability-based sandbox.
hunt Full shell execution via recipes. Cryptographic signature required.

Modules

Module Purpose
types Component, Pedigree, SecurityLevel, Recipe, Contract
parser parse(str) Vec<Component> — detects Nickel format
renderer render(&[Component]) String
error K9Error: ParseError, NickelFormat, Io, RenderError

Related

License

MPL-2.0 (MPL-2.0 preferred; MPL-2.0 required for crates.io). See LICENSE.

About

Parser and renderer for K9 self-validating configuration format — Rust library crate

Topics

rust security parser configuration crate k9 self-validating

Resources

Readme

License

MPL-2.0 license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages