Doctrine
Keep the swarm powerful without letting it become predatory.
No agent gets more power than the system can explain, revoke, audit, and contain.
Action Firewall — Pending Intents
PA-2201R4Deploy / Walletreq: Treasurer
Transfer 12.5 zkLTC from treasury → vendor escrow
Ledger-54 · lineage LIN-A8F1
Pending
PA-2202R5Irreversiblereq: Executive
Publish vendor listing to public registry
Atlas-54 · lineage LIN-A8F2
Pending
PA-2203R0Safe Readreq: Observer
Read internal compliance report
Vanta-54 · lineage LIN-A8F3
Approved
PA-2204R2External APIreq: Worker
Call vendor pricing API
Forge-54 · lineage LIN-A8F4
Executed
Anti-Moloch Root Law
no_unbounded_autonomy:No unbounded autonomy
no_raw_secrets_to_agents:No raw secrets to agents
no_execution_without_lineage:No execution without lineage
no_payment_without_permission:No payment without permission
no_public_action_without_review:No public action without review
no_memory_overwrite_without_gate:No memory overwrite without gate
fail_closed_by_default:Fail closed by default
Risk Ladder
R0Safe Read
Safe read
R1Draft
Internal draft
R2External API
External API
R3Payment Intent
Email / Pay intent
R4Deploy / Wallet
Deploy / Wallet
R5Irreversible
Irreversible / Public
Agent Action Firewall
Intent→Classify→Risk Score→Policy→Permission→Approval→Harness→Receipt→Causal Graph