Policy Linter

This tool performs static analysis on a policy by decoding a provided Base64-encoded string and linting the resulting text against critical security invariants such as Atomicity, Passive TTL, and Memory Safety. It accepts one input, policy_payload, which is the Base64-encoded policy or schema content. Using only this input, it generates a structured risk assessment whose JSON output must strictly validate against the system-provided structured output schema.