Highflame Cedar policy types and engine wrapper
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
Highflame Policy - Python Package
Cedar policy engine and typed constants for the Highflame security platform. Ensures entity/action consistency across all Highflame services.
Features
- ๐ Cedar Policy Evaluation - Wraps
cedarpywith Highflame-specific types - ๐ Typed Constants - Auto-generated entity types, actions, and context keys (prevents typos!)
- ๐ Cedar Parser - Convert Cedar text to structured PolicyRule JSON for UI editing
- โ Schema Validation - Validate policies against embedded Cedar schemas
- ๐ฏ Service-Specific Schemas - Overwatch (Guardian) and Palisade schemas included
- ๐ Namespace Support - Generic support for namespaced entities and actions
Installation
pip install highflame-policy
Quick Start
Policy Evaluation (Palisade Example)
from highflame_policy import (
PolicyEngine,
EntityType,
ActionType,
schemas,
)
from highflame_policy.schemas import PalisadeContextKey
# Create engine with Palisade schema
engine = PolicyEngine(schema=schemas.palisade_schema)
engine.load_policies_from_file("palisade_policy.cedar")
# Evaluate with typed constants (no typos!)
decision = engine.evaluate(
principal_type=EntityType.SCANNER,
principal_id="palisade",
action=ActionType.SCAN_ARTIFACT,
resource_type=EntityType.ARTIFACT,
resource_id="/model.safetensors",
context={
PalisadeContextKey.ARTIFACT_FORMAT: "safetensors",
PalisadeContextKey.SEVERITY: "HIGH",
PalisadeContextKey.ENVIRONMENT: "production",
},
)
if decision.is_denied():
print(f"Blocked by policies: {decision.determining_policies}")
Service-Specific Schemas
from highflame_policy import PolicyEngine, schemas
from highflame_policy.schemas import OverwatchContextKey
# Use Overwatch (Guardian) schema for IDE security
engine = PolicyEngine(schema=schemas.overwatch_schema)
engine.load_policies(policy)
decision = engine.evaluate(
principal_type="Overwatch::User",
principal_id="mcp_client",
action='Overwatch::Action::"call_tool"',
resource_type="Overwatch::Tool",
resource_id="shell",
context={
OverwatchContextKey.THREAT_COUNT: 3,
OverwatchContextKey.TOOL_NAME: "shell",
},
)
Cedar Parser (Text โ JSON)
from highflame_policy import parse_cedar_to_rules
cedar_text = '''
@id("allow-read")
permit(
principal is User,
action == Action::"read_file",
resource is FilePath
)
when { context.environment == "production" };
'''
result = parse_cedar_to_rules(cedar_text)
for rule in result.rules:
print(f"Rule: {rule['id']}, Effect: {rule['effect']}")
# Use in UI for editing
Available Constants
Entity Types (17 total)
EntityType.USER,EntityType.AGENT,EntityType.SCANNER,EntityType.SERVICEEntityType.ARTIFACT,EntityType.TOOL,EntityType.SERVER,EntityType.FILE_PATHEntityType.MODEL,EntityType.REPOSITORY,EntityType.PACKAGE- And more...
Actions (38 total)
ActionType.SCAN_ARTIFACT,ActionType.CALL_TOOL,ActionType.LOAD_MODELActionType.PROCESS_PROMPT,ActionType.PROCESS_RESPONSEActionType.READ_FILE,ActionType.WRITE_FILE,ActionType.DELETE_FILEActionType.HTTP_REQUEST,ActionType.EXECUTE_CODE- And more...
Context Keys (Service-Specific)
Overwatch (Guardian) Context:
from highflame_policy.schemas import OverwatchContextKey
# 20+ context attributes for IDE security
OverwatchContextKey.THREAT_COUNT
OverwatchContextKey.TOOL_NAME
OverwatchContextKey.USER_EMAIL
OverwatchContextKey.SOURCE
# And more...
Palisade Context:
from highflame_policy.schemas import PalisadeContextKey
# 15+ context attributes for ML security
PalisadeContextKey.ENVIRONMENT
PalisadeContextKey.SEVERITY
PalisadeContextKey.ARTIFACT_FORMAT
PalisadeContextKey.PICKLE_EXEC_PATH_DETECTED
# And more...
Service-Specific Schemas
Overwatch (Guardian) - IDE Security
from highflame_policy import PolicyEngine, schemas
from highflame_policy.schemas import OverwatchContextKey
# Schema: schemas.overwatch_schema
# Context: schemas.overwatch_context (JSON metadata for UI)
# Namespaced entities and actions
engine = PolicyEngine(schema=schemas.overwatch_schema)
decision = engine.evaluate(
principal_type="Overwatch::User",
principal_id="claude-code-user",
action='Overwatch::Action::"call_tool"',
resource_type="Overwatch::Tool",
resource_id="bash",
context={
OverwatchContextKey.THREAT_COUNT: 0,
OverwatchContextKey.TOOL_NAME: "bash",
OverwatchContextKey.SOURCE: "claude-code",
},
)
Palisade - ML Supply Chain Security
from highflame_policy import PolicyEngine, schemas
from highflame_policy.schemas import PalisadeContextKey
# Schema: schemas.palisade_schema
# Context: schemas.palisade_context (JSON metadata for UI)
engine = PolicyEngine(schema=schemas.palisade_schema)
decision = engine.evaluate(
principal_type="Palisade::Scanner",
principal_id="palisade",
action='Palisade::Action::"scan_artifact"',
resource_type="Palisade::Artifact",
resource_id="/model.safetensors",
context={
PalisadeContextKey.SEVERITY: "HIGH",
PalisadeContextKey.ARTIFACT_FORMAT: "safetensors",
PalisadeContextKey.ENVIRONMENT: "production",
},
)
Input Validation
Protect against DoS attacks with built-in validation:
from highflame_policy import (
PolicyEngine,
EngineOptions,
ValidationLimits,
InputValidationError,
)
engine = PolicyEngine(
options=EngineOptions(
limits=ValidationLimits(
max_context_keys=100,
max_string_length=1_000_000,
max_nesting_depth=10,
)
)
)
try:
decision = engine.evaluate(...)
except InputValidationError as e:
print(f"Validation failed: {e}")
Why Typed Constants?
Without typed constants (error-prone):
context = {
"enviroment": "production", # Typo! Policy won't match
"severety": "HIGH", # Typo! Policy won't match
}
With typed constants (compile-time safety):
from highflame_policy.schemas import PalisadeContextKey
context = {
PalisadeContextKey.ENVIRONMENT: "production", # โ Autocomplete + type checking
PalisadeContextKey.SEVERITY: "HIGH", # โ Can't typo!
}
Architecture
This package wraps the official Cedar Python engine (cedarpy) with Highflame-specific types generated from the Cedar schema. All services use identical entity/action names, ensuring policy consistency.
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ schema/highflame.cedarschema โ โ Source of truth
โ (Cedar schema) โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ
โโโโโโโโโโโโดโโโโโโโโโโโ
โ Rust codegen tool โ
โโโโโโโโโโโโฌโโโโโโโโโโโ
โ
โโโโโโโโโโโโโโโโโผโโโโโโโโโโโโโโโโ
โผ โผ โผ
Python Go TypeScript
cedarpy cedar-go cedar-wasm
โ โ โ
โผ โผ โผ
Palisade Guardrails Guardian
(scanner) (proxy) (IDE)
Related Packages
- Go:
github.com/highflame-ai/highflame-policy/packages/go - TypeScript:
@highflame/policyon npm - Rust:
highflame-policyon crates.io
Documentation
Full documentation: CLAUDE.md
License
Apache 2.0 - See LICENSE
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
highflame_policy-2.0.0.tar.gz
(26.9 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file highflame_policy-2.0.0.tar.gz.
File metadata
- Download URL: highflame_policy-2.0.0.tar.gz
- Upload date:
- Size: 26.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
7fde7da96c1d4c377e234e582f41e147aeb97ccb9adb087b1c252dcea063fec5
|
|
| MD5 |
10ef46c32c7054aa1da859e18190ad4c
|
|
| BLAKE2b-256 |
f7789ac56a5c9ba2741ebfe37d24f90bfe49dec25664f7a3737f15d8fbf749e7
|
Provenance
The following attestation bundles were made for highflame_policy-2.0.0.tar.gz:
Publisher:
release.yml on highflame-ai/highflame-policy
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
highflame_policy-2.0.0.tar.gz -
Subject digest:
7fde7da96c1d4c377e234e582f41e147aeb97ccb9adb087b1c252dcea063fec5 - Sigstore transparency entry: 909875634
- Sigstore integration time:
-
Permalink:
highflame-ai/highflame-policy@ac3aeed1ed6c9f27c4be7f7741f5ef903a6bc1f3 -
Branch / Tag:
refs/tags/v2.0.0 - Owner: https://github.com/highflame-ai
-
Access:
private
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
release.yml@ac3aeed1ed6c9f27c4be7f7741f5ef903a6bc1f3 -
Trigger Event:
release
-
Statement type:
File details
Details for the file highflame_policy-2.0.0-py3-none-any.whl.
File metadata
- Download URL: highflame_policy-2.0.0-py3-none-any.whl
- Upload date:
- Size: 25.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e061093979c8a1a177194e764efd136913de797875fdab97031841adc50f4529
|
|
| MD5 |
21a18b82d1e5c0222ca1a6af67eed206
|
|
| BLAKE2b-256 |
9c7a142c89cb4739096d7b1124b8346f3f2468d0d3aaf0f109c1235cd0e90c97
|
Provenance
The following attestation bundles were made for highflame_policy-2.0.0-py3-none-any.whl:
Publisher:
release.yml on highflame-ai/highflame-policy
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
highflame_policy-2.0.0-py3-none-any.whl -
Subject digest:
e061093979c8a1a177194e764efd136913de797875fdab97031841adc50f4529 - Sigstore transparency entry: 909875638
- Sigstore integration time:
-
Permalink:
highflame-ai/highflame-policy@ac3aeed1ed6c9f27c4be7f7741f5ef903a6bc1f3 -
Branch / Tag:
refs/tags/v2.0.0 - Owner: https://github.com/highflame-ai
-
Access:
private
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
release.yml@ac3aeed1ed6c9f27c4be7f7741f5ef903a6bc1f3 -
Trigger Event:
release
-
Statement type:
