Documentation
¶
Overview ¶
Package exec implements the exec provider (step "exec"), which runs an external program directly (never through a shell) and exposes its exit code, stdout, stderr and duration for assertions and capture. The provider is disabled unless the CLI passes --allow-exec.
The "process" sandbox is a portability and hygiene feature, NOT a security boundary: it controls the working directory, environment, timeout and output capture, but it does not isolate the filesystem and does not reliably block network access. Use a real sandbox (e.g. Docker, reserved here but not yet implemented) for stronger isolation.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Option ¶
type Option func(*Provider)
Option configures the provider.
func WithAllowExec ¶
WithAllowExec enables (or disables) command execution. Disabled is the default; the CLI wires this from --allow-exec.
type Provider ¶
type Provider struct {
// contains filtered or unexported fields
}
Provider executes exec steps. allowExec is immutable after construction, so the provider is safe to share across parallel scenarios.
func New ¶
New creates an exec provider. Execution is disabled unless WithAllowExec(true) is passed.
Source Files