Grecos Workspace
Navigation remains inside site context. Existing modules are embedded as workspace sections, not unrelated global jumps.
Plugin Manager
Plugins / Add-ons / Extensions foundation. Manifest-first only: validate packages and manage placeholder install/enable/disable states without executing unsafe code.
.nubplugin.zip proof upload zone.
Reads plugin.json and package structure only.
Manifest metadata, routes, widgets, modules and permissions.
Creates install record without executing code.
Requires permissions/dependencies/compatibility.
Disabled plugins cannot run hooks.
Writes audit event and removes installation.
Installed plugins
| Name | Status | Version | Author | Category | License | Permissions |
|---|---|---|---|---|---|---|
| Restaurant Pro | enabled | 1.2.0 | NubFlow | restaurant | placeholder_active | reservations.read, reservations.write, specials.write, menu.publish, content.write, forms.read, media.write, revisions.write, transactions.write, releases.read, deployments.read, analytics.read, payments.read |
| Forms Pro | enabled | 1.1.0 | NubFlow | forms | placeholder_active | forms.read, forms.write, analytics.read |
| NubPayments Canada | enabled | 1.0.0 | NubFlow | payments | placeholder_active | payments.read, payments.write, forms.read, forms.write, secrets.use, transactions.write, releases.read, analytics.write |
Available plugins
| Name | Version | Category | Compatibility |
|---|---|---|---|
| NubPayments Canada | 0.9.0 | payments | compatible |
| Reservations Pro | 1.0.0 | booking | compatible |
| SEO Pro | 1.0.0 | seo | compatible |
| AI Clone Pro | 0.5.0 | content | compatible |
| E-Commerce Pro | 0.8.0 | commerce | compatible |
Disabled plugins
| Name | Status | Hooks |
|---|---|---|
| Legacy Menu Importer | disabled | blocked while disabled |
Private/internal plugins
| Name | Author | Status |
|---|---|---|
| Grecos Clone Training Pack | Nub Designs | private_internal |
Plugin safety and permissions
Supported permissions: forms.read · forms.write · payments.write · secrets.use · deployments.read · content.write · media.write · analytics.read
- No plugin can access secrets unless granted.
- No plugin can publish/deploy unless granted.
- No plugin can modify another plugin.
- Disabled plugins cannot run hooks.
- Revoked plugins lose access immediately.
- Plugin actions write audit events.
Registry sources: official · private · client_specific · agency_internal
API contract
workspace-scoped installed/available/disabled/private plugin metadata
plugin manifest, status, versions, dependency and compatibility state
manifest validation result; package not executed
installation placeholder and audit event; no unsafe code execution
enabled only after permission grants/dependency/compatibility checks
disabled_at set; hooks cannot run
uninstall placeholder and audit event
required permissions and grant/deny state