Skip to content

humancoreai/Gategraph

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1,861 Commits
.github/workflows
.github/workflows
 
 
contracts
contracts
 
 
db
db
 
 
docs
docs
 
 
gategraph
gategraph
 
 
playbooks
playbooks
 
 
registry
registry
 
 
src
src
 
 
tests
tests
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
ARCHITECTURE.md
ARCHITECTURE.md
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CONTEXT_GOVERNANCE_MODEL.md
CONTEXT_GOVERNANCE_MODEL.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
EXTERNAL_REVIEW.md
EXTERNAL_REVIEW.md
 
 
GOVERNANCE.md
GOVERNANCE.md
 
 
INVARIANTS.md
INVARIANTS.md
 
 
KNOWN_LIMITATIONS.md
KNOWN_LIMITATIONS.md
 
 
LICENSE
LICENSE
 
 
NON_SCOPE.md
NON_SCOPE.md
 
 
OWASP_AGENTIC_AI_MAPPING.md
OWASP_AGENTIC_AI_MAPPING.md
 
 
PRODUCTION.md
PRODUCTION.md
 
 
README.md
README.md
 
 
RELEASE_CONTENT_RULES.md
RELEASE_CONTENT_RULES.md
 
 
RELEASE_MANIFEST.json
RELEASE_MANIFEST.json
 
 
RELEASE_METADATA.json
RELEASE_METADATA.json
 
 
RELEASE_NOTES.md
RELEASE_NOTES.md
 
 
RELEASE_PROCESS.md
RELEASE_PROCESS.md
 
 
RELEASE_STATUS.md
RELEASE_STATUS.md
 
 
SECURITY.md
SECURITY.md
 
 
SECURITY_MODEL.md
SECURITY_MODEL.md
 
 
TRUST_MODEL.md
TRUST_MODEL.md
 
 
VERSION.md
VERSION.md
 
 
config.example.yaml
config.example.yaml
 
 
pyproject.toml
pyproject.toml
 
 
task.example.json
task.example.json
 
 

Repository files navigation

Release: v0.17.1_STABLE

GateGraph

Current release: v0.17.1_STABLE
Base: v0.17.0_STABLE
Base stable: v0.17.0_STABLE
Status: candidate
Version: 0.17.1
Phase: Promotion Status Drift Guard
Release focus: Promotion Status Drift Guard

GateGraph is a deterministic governance layer for AI-agent actions. It evaluates requested actions before execution, produces bounded governance decisions, and keeps execution authority outside the model.

What GateGraph is

GateGraph is designed to sit between an agent or operator workflow and an action surface.

It can:

  • evaluate action requests,
  • return allow/block/review/approval decisions,
  • issue bounded capability-token surfaces,
  • produce audit and explainability artifacts,
  • run deterministic evidence checks.

What GateGraph is not

GateGraph is not:

  • an autonomous agent,
  • a policy-learning system,
  • a production internet gateway,
  • an identity provider,
  • a KMS,
  • a multi-node trust fabric,
  • a replacement for human approval.

Current production boundary

Current scope is local, protected, single-node operation.

Out of scope for the current release:

  • public internet exposure,
  • built-in TLS/auth for hostile networks,
  • external agent-framework production integration,
  • multi-node consensus,
  • managed secret infrastructure,
  • autonomous policy mutation.

Quickstart

First verify the local package and supported command surfaces:

python tests\fresh_clone_reproducibility_evidence.py
python tests\single_node_cli_evidence.py

Then run the full evidence suite before treating a candidate as release-ready:

python tests\evidence_ci.py

Expected evidence result:

CI EVIDENCE REPORT
Passed: True

Review surfaces

Core public review files:

  • VERSION.md
  • RELEASE_STATUS.md
  • RELEASE_METADATA.json
  • RELEASE_MANIFEST.json
  • RELEASE_PROCESS.md
  • PRODUCTION.md
  • SECURITY.md
  • TRUST_MODEL.md
  • docs/SCOPE_BACKLOG.md
  • docs/RELEASE_v0.17.1_STABLE.md

Security posture

GateGraph uses fail-closed defaults and separates governance decision surfaces from execution authority. The current release does not add runtime authority, auto-promotion, auto-repair, autonomous policy mutation, or public deployment capability.

License

Apache-2.0.

Runtime namespace

Canonical runtime namespace: gategraph.

src/ package is the canonical runtime/governance surface. gategraph/context/ package is a bounded context-governance extension layer and must not become an alternative governance or execution path.

Security mapping

OWASP_AGENTIC_AI_MAPPING.md is a descriptive mapping from GateGraph evidence surfaces to agentic-AI risk categories. It is a review aid, not a compliance certification or normative policy source.

About

deterministic governance layer for AI-assisted task execution

Topics

python audit policy-enforcement llm ai-governance fail-closed agent-control

Resources

Readme

License

View license

Contributing

Contributing

Security policy

Security policy
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

176 tags

Packages

 
 
 

Contributors

Languages