Skip to content

docs(limitations): merge ded-furby boundary clarifications from #155#166

Merged
sergeyenin merged 1 commit into
mainfrom
docs/limitations-guide
Jun 3, 2026
Merged

docs(limitations): merge ded-furby boundary clarifications from #155#166
sergeyenin merged 1 commit into
mainfrom
docs/limitations-guide

Conversation

@sergeyenin
Copy link
Copy Markdown
Contributor

@sergeyenin sergeyenin commented Jun 3, 2026
edited by cursor Bot
Loading

Summary

Resolves merge conflicts for community PR #155 by rebasing onto current main and applying @ded-furby's two sharper boundary statements to the consolidated LIMITATIONS.md:

  1. Evidence boundary — HMAC claim now includes assuming that key remains protected.
  2. Tool-governance boundary — Talon does not prevent the same tool from being invoked on a separate path that does not pass through Talon.

The full alternate LIMITATIONS.md from #155 is superseded by the version already on main; this PR lands only the net-new clarifications with Co-authored-by: ded-furby.

Closes #117 when merged. After merge, we will close #155 with a pointer here.

Test plan

  • scripts/check-claim-discipline.sh

Note

Low Risk
Documentation-only edits to capability boundaries; no code, auth, or data-path changes.

Overview
LIMITATIONS.md picks up two boundary clarifications from community PR #155 (merged into the current doc on main):

The evidence boundary now states that HMAC integrity holds only assuming the signing key remains protected, not unconditionally after signing.

The tool-governance boundary adds that Talon cannot block the same tool if it is invoked outside the gateway path.

No runtime or policy code changes—documentation and claim discipline only.

Reviewed by Cursor Bugbot for commit 1b7e975. Configure here.

@sergeyenin @ded-furby
docs(limitations): apply ded-furby boundary clarifications on main (#117
1b7e975 
)

Rebase PR #155 onto current main: keep the consolidated LIMITATIONS.md
structure and add the two sharper boundary statements from @ded-furby:
signing-key custody in the HMAC claim and tool invocation outside the
governed path.

Co-authored-by: ded-furby <190979964+ded-furby@users.noreply.github.com>
@sergeyenin sergeyenin merged commit c3f8e17 into main Jun 3, 2026
5 checks passed
@sergeyenin sergeyenin deleted the docs/limitations-guide branch June 3, 2026 13:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Write LIMITATIONS.md

1 participant

@sergeyenin