-
Notifications
You must be signed in to change notification settings - Fork 0
Hosted Policy Registry Readiness Contract
Status date: 2026-06-02.
CAVRA Community Edition now exposes a public-safe request and response contract for hosted policy registry readiness. The contract lets future Enterprise and SaaS services report whether a tenant can rely on policy registry availability, catalog freshness, policy-pack version state, artifact integrity, entitlement scope, and approval state after launch.
Implemented in src/cavra/saas_control_plane.py:
-
policy_registry_readinessoperation; -
build_policy_registry_readiness_request; -
PolicyRegistryReadinessSummary; -
build_policy_registry_readiness_response.
Supported readiness states:
readydegradedblockedunknown
The public repository defines shapes and validation only. Hosted registry source code, paid policy pack content, tenant catalogs, customer metadata, entitlement records, provider URLs, connector credentials, SaaS backend code, and Enterprise source code remain private.
As a SaaS operator, I can see when policy registry availability, catalog freshness, version state, entitlement scope, approval state, or rollout telemetry would block steady-state tenant operation before promising readiness to a customer.
This contract turns policy registry operation into auditable readiness evidence. It helps enterprise customers trust that policy packs are available, current, entitled, approved, and observable after onboarding.
Public tests cover request serialization, default readiness checks, invalid status rejection, sensitive payload rejection, summary serialization, and private-module handoff messaging.
Delivered in the public tenant audit-store operating contract. Continue with
private hosted policy registry readiness evidence in cavra-enterprise.
Before the agent acts, CAVRA asks: who is acting, what will change, what policy applies, and what evidence will prove it?
| Start | Build | Operate | Assure |
|---|---|---|---|
| Quick Start | CLI | Enterprise Guide | AISPM |
| Reader Paths | Policy Syntax | Deployments | Evidence |
| Community | GUI | Troubleshooting | Conclusion |
- Foreword And Reader Paths
- Why CAVRA Exists
- Runtime Authority Model
- Architecture
- Editions
- Install And Deploy
- Community Guide
- Enterprise Guide
- CLI Reference
- GUI And Sandbox
- AISPM Guide
- Policy And Evidence
- Operations And Integrations
- Labs And Use Cases
- Appendices And FAQ
- Policy Language Reference
- Troubleshooting Playbook
- Conclusion