Archived

This repository has been archived on 2026-03-13. You can view files and clone it. You cannot open issues or pull requests or push a commit.

Files

JY Tan 8db245f56e Refactor and improve documentation, add examples

2025-12-23 18:43:07 -08:00

Recipe: `git clone` / `git fetch`

Goal: allow fetching code from a limited set of hosts.

HTTPS clone (GitHub example)

{
  "network": {
    "allowedDomains": ["github.com", "api.github.com", "codeload.github.com"]
  },
  "filesystem": {
    "allowWrite": ["."]
  }
}

Run:

fence --settings ./fence.json git clone https://github.com/OWNER/REPO.git

SSH traffic may go through SOCKS5 (ALL_PROXY) depending on your git/ssh configuration.

If it fails, use monitor/debug mode to see what was blocked:

fence -m --settings ./fence.json git clone git@github.com:OWNER/REPO.git