Everything you need to integrate governance: HTTP API reference, official SDKs, framework guides, runbooks, launch checklists, optional enterprise SSO (SAML / OAuth) for dashboard sign-in, and Policy-as-Code via GitHub for ruleset JSON.
POST /api/v1/evaluate
Run policy evaluation; may return auto-approval, pending human review, or rejection. Send your API key as Authorization: Bearer ….
POST /api/v1/receipt
Record execution after downstream work completes for an approved or auto-approved evaluation.
In the dashboard, Governance analytics (/dashboard/analytics) summarizes per-workspace approval rates, human decision latency, and rejection reasons — definitions in Governance analytics.
Policy-as-Code — sync rulesets from GitHub on push (signed webhook + optional manual sync). See Policy-as-Code (GitHub).
Enterprise SSO — /login can show SAML (via Supabase signInWithSSO) and optional OAuth provider buttons. Configure your IdP, redirect URLs, and env flags as described in Enterprise SSO (SAML & OIDC).
LangChain, LangGraph, CrewAI, AutoGen — thin Python/TS clients and copy-paste patterns.
Model Context Protocol JSON-RPC at POST /api/mcp — evaluate and fetch evaluations from MCP clients; mcp_trace on run bundles.
Sync ruleset JSON from Git on push; webhook URL, secrets, public vs private repos.
Security, webhooks, reliability, and deployment checklist — technical launch bar.
Email, webhooks, env verification, signing, and day-two troubleshooting.
Dashboard metrics: approval rates, human decision latency, rejection reasons — definitions and data scope.
Per-agent evaluate cost in cents: workspace default, overrides, snapshot on evaluations, dashboard rollups.
Time-boxed human gates: policy windows, auto-reject or escalate to the next stage, cron with CRON_SECRET, audit and webhooks.
Supabase SAML SSO, optional OAuth providers, redirect URLs, and env flags for the login UI.
Engineering outline of data categories (non-legal); use with privacy/terms work.
ZIP (Markdown + PDF + CSV) or PDF-only: SOC 2 / ISO 27001 / EU AI Act Art. 14 themes; optional admin-only export and rate limits.
Roadmap mapping, pricing hypotheses, and ordered path to full production.
What we built, positioning, and market context (March 2026).
Official SDKs (source)
Python and TypeScript clients live under integrations/ in the repo — see Framework integrations.