Related doc
Security & Trust BoundariesEight named trust boundaries, four data classifications, deny-by-default egress, and the declassifier projection contract.
Open docDefined term / workflow
Egress proxy
The deny-by-default outbound network gate with frozen per-route rate limits.
ADR 0005 routes all outbound traffic through the egress proxy. Edge functions and compute containers cannot ad-hoc fetch external hosts; knowledge fetchers use signed providers; web search returns indexed snippets through a controlled lane.