Enclaves & security
An enclave is the security boundary in Halyard. Every project belongs to one enclave, fixed at creation.
What an enclave scopes
Section titled “What an enclave scopes”AI accounts, Git tokens, and nodes are all scoped to an enclave. A public-repo agent in one enclave can never reach the credentials or nodes of another — so corporate secrets stay isolated from open-source work.
Enforced at dispatch
Section titled “Enforced at dispatch”Enclave membership is enforced when a session is scheduled, not just in the UI. Sessions only land on nodes within the matching enclave.