# ====================================================================
# ORBITALWEAPON ARSENAL SECURITY MANIFEST
# TARGET ENVIRONMENT: VERSION 26.1 (JAVA 25 RUNTIME)
# FILE: security.txt
# ====================================================================
# This file governs structural safety rules, runtime data overrides,
# and master bypass keys for the entire high-velocity tactical suite.
#
# 26.1 SPECIFIC CHANGELOG:
# - Legacy NBT component tag parsing migrated to modern Data Components.
# - Added permission checks matching new 26.1 block/item variants.
# - Hard-coded enforcement for dynamic 'os.<weapon>.<size>' rules.

[SYSTEM_CORE_RULES]
enforce-strict-op-checking = true
cancel-unauthorized-interact = true
send-security-alerts-to-ops = true
log-unauthorized-attempts = true

[DYNAMIC_PERMISSION_MAPPING]
# Every permission node below strictly defaults to Server Operators (OP Only)
mapping.nuke         = os.nuke.<size>
mapping.stab         = os.stab.<size>
mapping.railgun      = os.railgun.<size>
mapping.wolf         = os.wolf.<size>
mapping.darkness     = os.darkness.<size>
mapping.pearl        = os.pearl.<size>
mapping.stasis       = os.stasis.1
mapping.totem-stasis = os.totem-stasis.1

[26.1_TECHNICAL_FILTERS]
# Ensures data component modifications do not strip weapon attributes
track-custom-data-components = true
allow-baby-mob-interaction-bypass = false
protect-golden-dandelion-meta = true

[MASTER_BYPASS_UUIDS]
# Add player UUIDs below (one per line) to completely bypass permission
# checks even if they are not explicitly set to Server Operator (OP).
# Format: uuid = username
# Example: 12345678-abcd-1234-abcd-123456789abc = Survivalist

[PROTECTED_WEAPON_INTEGRITY]
# Prevents creative mode players or exploits from modifying or duplicating
# maximum-tier payloads (like Tier 32 Nukes) without authorization tokens.
block-anvil-renaming = true
block-illegal-creative-spawns = true