Aegis Arbiter

Autonomy with authority.

Aegis Arbiter is a governed run engine that mediates tool access, enforces approvals and budgets, logs every action, and fails closed.

Request access Back to home

Core guarantees

Default deny permissions
Explicit authority + approvals
Budgeted runs (time/steps/tool calls/output)
Kill switches + fail-closed safety

Receipts, not vibes

Append-only audit log (tamper-evident chain)
Evidence bundle per run (evidence.json + artifacts)
No silent escalation
Designed for replayability and review

Minimal API surface

Aegis Arbiter is intentionally simple: create a run, fetch receipts, approve when required, and kill when necessary.

# Create a run (plan-only)
curl -s -X POST http://127.0.0.1:8080/runs \
  -H "Content-Type: application/json" \
  -d '{"mode":"plan_only"}'

# Get status
curl -s http://127.0.0.1:8080/runs/<run_id>

# Fetch evidence bundle
curl -s http://127.0.0.1:8080/runs/<run_id>/evidence

# Approve (when approval_required)
curl -s -X POST http://127.0.0.1:8080/runs/<run_id>/approve \
  -H "Content-Type: application/json" \
  -d '{"approval_id":"<id>"}'

# Kill a run
curl -s -X POST http://127.0.0.1:8080/runs/<run_id>/kill

Local-first by default. Bind to localhost unless you explicitly expose it.