-
Notifications
You must be signed in to change notification settings - Fork 0
Textbook 12 Operations Integrations And Deployment Patterns
CAVRA can run locally, inside CI/CD, next to a hosted API, or as part of an Enterprise control plane. The right pattern depends on scope.
Use local mode for learning, policy authoring, demos, and repository-specific workflows.
cavra evaluate write_file src/example.py --json
cavra evidence bundle --output .cavra/evidence/latestUse CI/CD when CAVRA decisions should become required checks. The workflow normally:
- Evaluates proposed changes.
- Generates evidence.
- Verifies evidence or PR attestation.
- Blocks merge or deployment if the gate fails.
Use the API when multiple clients need a shared decision or evidence surface. The sandbox UI can query the API for backend-driven scenario runs, session history, decision records, approvals, registry data, and evidence metadata.
Use live connectors for production operations:
- SIEM export.
- ITSM ticketing.
- ChatOps notifications.
- SMTP or report provider delivery.
- Cloud and endpoint inventory ingestion.
- Private queue handoff.
- Managed release and rollback evidence.
All connector outputs should redact credentials and record delivery evidence.
Enterprise tenant isolation requires separate identity context, entitlement status, policy assignment, audit stores, and report delivery records. Tenant boundaries must be tested with live validation before production.
Runtime workflow validation should test actual agent and tool behavior, not only synthetic payloads. Production readiness requires proving that real workflows pass through CAVRA and that bypass paths are blocked or detected.
Post-GA operations should include:
- Publication validation.
- First-wave activation readiness.
- Customer-success operating review.
- Security advisory drill closeout.
- GA operating archive closeout.
- Final docs and status sync.
Historical records for these operating chains are stored in Development And Testing Artifacts.
Before the agent acts, CAVRA asks: who is acting, what will change, what policy applies, and what evidence will prove it?
| Start | Build | Operate | Assure |
|---|---|---|---|
| Quick Start | CLI | Enterprise Guide | AISPM |
| Reader Paths | Policy Syntax | Deployments | Evidence |
| Community | GUI | Troubleshooting | Conclusion |
- Foreword And Reader Paths
- Why CAVRA Exists
- Runtime Authority Model
- Architecture
- Editions
- Install And Deploy
- Community Guide
- Enterprise Guide
- CLI Reference
- GUI And Sandbox
- AISPM Guide
- Policy And Evidence
- Operations And Integrations
- Labs And Use Cases
- Appendices And FAQ
- Policy Language Reference
- Troubleshooting Playbook
- Conclusion