Identity and secrets
Agents authenticate at the proxy. The full production design uses mTLS and keeps upstream credentials in a separate secret store until a call is authorized.
Clavenar is founder‑led and being built toward v1. This page documents the current security boundaries and limitations; the product is not presented as independently certified or suitable for every production workload today.
| Area | What is available now | Important limit |
|---|---|---|
| Product maturity | Tagged open‑source releases, public specifications, a browser verifier, and a full‑stack pilot path. | The commercial control plane is pre‑v1 and requires direct founder involvement for any scoped evaluation. |
| Compliance | Evidence fields and starter policies can be mapped to common control frameworks. | Mappings are not certification, attestation, legal advice, or proof that a customer deployment complies. |
| Performance | The published mock‑mode run measured 2.20 ms p95 on a cache hit and 20.1 ms p95 on a cache miss. | The mock run excludes live provider latency. Models, policies, network, and storage can dominate the real result; review the setup and re‑measure it. |
| Cryptographic evidence | Canonical ledger rows commit to their predecessors with SHA‑256 and can be replayed by correlation ID. | A hash chain can reveal alteration after capture; it cannot prove that omitted or inaccurate input was true. |
The production design keeps the authorities needed to cause and approve side effects outside the agent process.
Agents authenticate at the proxy. The full production design uses mTLS and keeps upstream credentials in a separate secret store until a call is authorized.
Rego policy, velocity state, and human approval resolve before the upstream side effect. Sensitive requests stay pending until an authorized decision or expiry.
A pilot defines which request, verdict, approval, and outcome fields are stored; who can replay them; where exports go; and how long each tier is retained.
A production pilot should leave none of these implicit.
Your security, legal, and compliance teams remain responsible for deciding which controls and obligations apply.
Send the affected component, impact, reproduction steps, and commit or release identifier. Please avoid accessing data that is not yours or disrupting shared services.