Skip to content

Textbook 00 Foreword Preface And Reader Paths

Huzefaaa2 edited this page Jun 28, 2026 · 5 revisions

Foreword, Preface, And Reader Paths

Foreword

AI agents are becoming operating actors inside engineering organizations. They read source code, propose patches, run shell commands, open pull requests, call MCP tools, trigger CI/CD jobs, and increasingly touch infrastructure and cloud configuration. The important question is no longer whether agents can act. The question is who governs them at the moment they try to act.

CAVRA is built for that moment. It is a runtime authority layer that sits between an agent and the action it wants to perform. It evaluates intent, context, policy, identity, approval state, and evidence requirements before the action proceeds. CAVRA is not just a scanner and not just a dashboard. It is a control point.

Preface

This textbook explains CAVRA end to end. It covers the Community Edition in this public repository, the Enterprise Edition model, the Trial evaluation path, the GUI, the CLI, policy authoring, approvals, evidence, AISPM, and operating patterns for production teams.

The book is intentionally practical. Every chapter maps a product concept to a user task:

  • Developers learn how to run local evaluations, use policy packs, generate evidence, and understand blocked or approved decisions.
  • Security teams learn how CAVRA models high-risk agent behavior, MCP trust, approvals, attestations, and AISPM posture.
  • Platform teams learn how to integrate CAVRA into CI/CD, API workflows, evidence stores, and release governance.
  • Enterprise evaluators learn edition boundaries, live connector expectations, tenant isolation, report delivery, and production readiness gates.

Reader Paths

If you are new to CAVRA, read chapters 1 through 5 first. Then choose your operating path.

Community users should read:

Enterprise evaluators should read:

Security architects should read:

Book Structure

Each chapter includes references to product pages, diagrams, examples, or screenshots. The wiki keeps historical development artifacts in Development And Testing Artifacts, while this book remains the reader-facing product guide.

Clone this wiki locally