Policy-Restricted Extension Example

This example demonstrates governance policy behavior with real registrations.

The extension declares:

commands (handler registration)
hooks (beforeCommand)
services (output_format override)

You can enforce policy so command/hooks remain allowed while service override is blocked.

Run It

From repository root:

mkdir -p .agents/pm/extensions
cp -R docs/examples/policy-restricted-extension .agents/pm/extensions/policy-restricted-extension
cd .agents/pm/extensions/policy-restricted-extension
npm install
cd -
pm extension --install --project .agents/pm/extensions/policy-restricted-extension

Add policy in .agents/pm/settings.json:

{
  "extensions": {
    "policy": {
      "mode": "enforce",
      "trust_mode": "enforce",
      "require_provenance": true,
      "trusted_extensions": ["policy-restricted-extension"],
      "default_sandbox_profile": "restricted",
      "allowed_extensions": ["policy-restricted-extension"],
      "blocked_extensions": [],
      "allowed_capabilities": [],
      "blocked_capabilities": [],
      "allowed_surfaces": [],
      "blocked_surfaces": ["services.override"],
      "allowed_commands": [],
      "blocked_commands": [],
      "allowed_actions": [],
      "blocked_actions": [],
      "allowed_services": [],
      "blocked_services": ["output_format"],
      "extension_overrides": [
        {
          "name": "policy-restricted-extension",
          "require_trusted": true,
          "require_provenance": true,
          "sandbox_profile": "strict"
        }
      ]
    }
  }
}

Then validate:

pm extension --doctor --project --detail summary
pm policy demo

Expected behavior:

pm policy demo still works (command handler allowed).
extension --doctor includes extension_policy_blocked_registration.
details.triage.policy_blocked_count is greater than 0.
trust/provenance contract fields are visible in pm contracts --json metadata.

Examples - Policy-restricted-extension - Readme remote

Report an issue