-
Notifications
You must be signed in to change notification settings - Fork 0
Diagrams
See docs/diagrams/c4-context.md.
See docs/diagrams/c4-container.md. The current container diagram marks the Approval Router as an implemented JSON/SQLite-backed lifecycle service with repository routing, signed OIDC/JWKS validation, repository RBAC, console actions, console break-glass creation, approval audit details, provider request specs, and live provider delivery evidence. It also marks the Agent and MCP Trust Registry as a JSON/SQLite implementation for governed agent identities, MCP trust decisions, predefined agent profiles, MCP capability classifications, and console registry views. The metadata store now includes JSON/SQLite evidence, session, decision, approval, registry, repository inventory, policy rollout metadata, integration inventory, backup/restore operations, and retention planning. The console security boundary is exposed as read-only OIDC/RBAC/CORS readiness metadata. The Go enforcement plane remains planned.
See docs/diagrams/agent-mcp-registry.svg for the dedicated registry view that separates profiles, registered identities, trust records, classifications, storage modes, runtime decisions, console views, and evidence consumers.
See docs/diagrams/c4-component-runtime.md.
See docs/diagrams/runtime-decision-flow.md.
See docs/diagrams/evidence-lifecycle.md.
Repository diagram images:
docs/diagrams/architecture-context.svgdocs/diagrams/c4-container.svgdocs/diagrams/runtime-flow.svgdocs/diagrams/evidence-hub.svgdocs/diagrams/policy-lifecycle.svgdocs/diagrams/developer-journey.svgdocs/diagrams/agent-orchestration.svg
Before the agent acts, CAVRA asks: who is acting, what will change, what policy applies, and what evidence will prove it?
| Start | Build | Operate | Assure |
|---|---|---|---|
| Quick Start | CLI | Enterprise Guide | AISPM |
| Reader Paths | Policy Syntax | Deployments | Evidence |
| Community | GUI | Troubleshooting | Conclusion |
- Foreword And Reader Paths
- Why CAVRA Exists
- Runtime Authority Model
- Architecture
- Editions
- Install And Deploy
- Community Guide
- Enterprise Guide
- CLI Reference
- GUI And Sandbox
- AISPM Guide
- Policy And Evidence
- Operations And Integrations
- Labs And Use Cases
- Appendices And FAQ
- Policy Language Reference
- Troubleshooting Playbook
- Conclusion