BIND · WARDEN

No agent runs unbound.

Paste an AI agent's declared identity, tools, and actions. WARDEN binds it to a signed identity and a capability allowlist before it can run — refusing unsigned, unscoped, or unaudited agents. The runtime an agent lives inside, not a checklist.

Deterministic gate online

WARDEN deterministic workbench

No agent runs unbound

API manifest

Step 1 · Your packet — edit this sample, or paste your own↑ Upload your own file

Deterministic — the same packet returns the same verdict and hash, every run. Your result appears on the right →

VerdictREFUSE - AGENT UNBOUND

Blocked. The runner found release-breaking evidence gaps or unsafe behavior.

🔒 DETERMINISTIC RECEIPT0 runtime LLM callssame input → same verdict, every runcorpus_seal 942c7e0e83ffe400…input_hash 64df73128777ac55…engine engineering-suite-runner-v0.1.0

Identitysigned

Signed, verifiable agent identity

Capability scopewildcard

Enforced at call time

Audittamper-evident

Reconstructable record of every call

SeverityFindingRemediation

critical

WARDEN-SCOPE-001 · Over-broad capability scope

The agent requests wildcard or unrestricted access to tools or data.

Wildcard / 'all access' grant detected.

Replace blanket access with an explicit per-task allowlist of tools, scopes, and data.

CORPUS_SEALsha256:942c7e0e83f

Engineering suite deterministic rule corpus

PACKET_HASHsha256:64df7312877

Input packet hash

RUNNERengineering-suite-runner-v0.1.0

WARDEN bind gate

DECISIONREFUSE - AGENT UNBOUND

1 finding(s), score 68