mod capability_detect

module capability_detect

First-run/install-time capability probes: OS keychain (keyring), clipboard (arboard), display server, and configured seal providers. Assembled into paranoid_ops::CapabilityReport, modeled on FederalCryptoProviderEvidence::collect_from_environment().

The probes live here (not in paranoid-core or paranoid-ops) because they are the only crates in the workspace with real keyring/arboard dependencies; the seal-provider evidence is reused from paranoid_vault::seal_posture_for_path() rather than re-derived.

Functions

fn collect_capability_report(vault_path: &Path) -> CapabilityReport

Collects the full capability report for the given vault path, probing the OS keychain and clipboard live and reusing seal-provider evidence from the vault header at vault_path (if any).