Yes it's configurable in the toml. For example
```
[directory_requirements]
"src/auth" = 0
"src/api" = 1
```
Will force auth to have tier 0, not allow auth to import from anything other than tier 0 files, api will be enforced to have at most tier 1, and won't be able to import from anything vibe coded
Any plans for tooling that would enable rules like "no code above tear <N> allowed in the production build"?