-
Notifications
You must be signed in to change notification settings - Fork 0
Home
Welcome to the CAVRA Wiki. This wiki now opens as a technical textbook for CAVRA, Controlled Agentic Verification and Runtime Authority. It is written for developers, security engineers, platform owners, compliance teams, architects, and enterprise evaluators who need to understand what CAVRA is, how it works, how to run it, and how to operate it safely.
CAVRA exists for a simple reason: AI agents should not receive unchecked authority over code, cloud, data, identity, CI/CD, MCP tools, and production workflows. CAVRA gives organizations a runtime authority layer that evaluates agent actions before they happen, records evidence after they happen, and turns that evidence into AI Security Posture Management, or AISPM.
Read the book in order if you are new to CAVRA. Jump directly to the command, GUI, AISPM, or deployment chapters if you already know the product shape.
- Foreword, Preface, And Reader Paths
- Why CAVRA Exists
- The Runtime Authority Model
- Architecture And Open-Core Design
- Editions, Licensing, And Feature Boundaries
- Install And Deploy CAVRA
- Community Edition User Guide
- Enterprise Edition User Guide
- CAVRA CLI Command Reference
- CAVRA GUI And Sandbox Guide
- AISPM Guide
- Policies, Approvals, Evidence, And Attestations
- Operations, Integrations, And Deployment Patterns
- Use Cases, Labs, And Example Workflows
- Reference Appendices
| Topic | Diagram |
|---|---|
| Runtime authority | CAVRA runtime authority map |
| Architecture context | Architecture context |
| Runtime decision flow | Runtime flow |
| Editions | Edition map |
| CLI command families | Command map |
| AISPM posture loop | AISPM posture loop |
| Enterprise sequence | Enterprise sequence |
- CLI
- API
- Diagrams
- Edition Boundaries
- AI Agent Enforcement And Anti-Bypass Model
- Agent Registry And MCP Trust
- Approval Workflows
- Evidence Hub And Attestation
- Policy Engine Hardening
- AISPM Dashboard Roadmap
- AI Security Posture Dashboard Contract
- AISPM CSO Report Center
- AISPM Enterprise Live Ingestion
- CAVRA Trial Field Guide
- AISPM Trial Access And Operator Approval
- AISPM Trial Revocation, Expiry, And Closeout
- Enterprise Trial Availability
- Enterprise Trial Self-Service Access
Historical implementation notes, release packets, validation records, trial synchronization notes, rollback-drill records, closeout documents, and readiness artifacts are preserved in one archive:
The archive is intentionally separated from the textbook so new readers can learn CAVRA without walking through every development milestone.
Before the agent acts, CAVRA asks: who is acting, what will change, what policy applies, and what evidence will prove it?
| Start | Build | Operate | Assure |
|---|---|---|---|
| Quick Start | CLI | Enterprise Guide | AISPM |
| Reader Paths | Policy Syntax | Deployments | Evidence |
| Community | GUI | Troubleshooting | Conclusion |
- Foreword And Reader Paths
- Why CAVRA Exists
- Runtime Authority Model
- Architecture
- Editions
- Install And Deploy
- Community Guide
- Enterprise Guide
- CLI Reference
- GUI And Sandbox
- AISPM Guide
- Policy And Evidence
- Operations And Integrations
- Labs And Use Cases
- Appendices And FAQ
- Policy Language Reference
- Troubleshooting Playbook
- Conclusion