$ ~/security/projects/norfolk on main git show

norfolk coming soon

Agent harness for security practitioners with hard sandboxing and plugin extensibility.

README.md
+6
@@ -0,0 +1,6 @@ about
1
norfolk is a long-running daemon that hosts coding and
2
analysis agents for security practitioners. it provides hard
3
sandboxing via docker, bwrap, and sandbox-exec, plugin
4
extensibility without rebuilding core, and pub/sub messaging
5
across instances via embedded NATS. drives Anthropic,
6
OpenAI, and Ollama models directly. single static binary.
techniques.config
+5
@@ -0,0 +1,5 @@ techniques
1
Pluggable sandbox adapter architecture (docker, bwrap, sandbox-exec)
2
Plugin-extensible core with minisign verification
3
Pub/sub messaging across instances via NATS leaf nodes
4
Tamper-evident audit logging with hash chains
5
Layered authentication (Unix peer-cred, bearer, mTLS, WebAuthn)