cyberneticlibrary
← library

Restrict app commands with fine-grained scopes

configuring-tauri-scopesskillsetup L20
Sheshiyer/skill-clusters
What it does

Define fine-grained filesystem and URL access permissions

Best for

Restricting desktop app file access to safe directories without implementing custom auth per command.

Inputs
  • · Capability JSON files
  • · Path patterns or URL regexes
Outputs
  • · Configured scope rules (allow/deny precedence enforced)
Requires
  • · Tauri v2
  • · JSON schema validation
Preconditions
  • · Tauri application structure
  • · Capability file at src-tauri/capabilities/
Failure modes
  • · Path traversal not blocked by pattern
  • · Deny rule overlooked in command implementation
Trust signals
  • · Deny-wins precedence
  • · Glob pattern matching
  • · Path variable injection