Skip to main content

Open, content-addressed pre-payment ALLOW/DENY decisions bound to the pinned AlgoVoi substrate (agent + mandate + policy; L1 frozen)

Project description

algovoi-spend-guardrail-lite

The open, lite origination layer for AlgoVoi Spend Guardrail. One call an agent platform makes before executing a payment: bind a categorical ALLOW / DENY decision to the agent it was made for (agent_ref), the spend authority it was checked against (mandate_ref), and the policy in force (policy_bound_ref), each imported by hash, into a deterministic, recomputable guardrail_ref. Moves no funds.

The whole pre-payment decision becomes one content address. Swap the agent, the mandate, the policy, or the verdict and the guardrail_ref diverges: an ALLOW made under one policy snapshot does not recompute under a rotated policy. Additive over the frozen substrate (Apache-2.0):

guardrail_ref = "sha256:" + SHA-256(JCS({agent_ref, mandate_ref, policy_bound_ref, verdict}))

Lite vs commercial

Lite (this package) Spend Guardrail
Licence Apache-2.0, open Commercial OEM
Decision binding content-addressed guardrail_ref same, Falcon-1024 signed receipt
Enforcement bring your own verdict full Agent Passport + Payment Mandate stack
Verifier recompute offline maintained verifier

Pin lite, anchor a vector hash, carry the NOTICE → free v0 key; upgrade for post-quantum signing + the enforcement stack.

Install & use

pip install algovoi-spend-guardrail-lite
from algovoi_spend_guardrail_lite import guardrail_ref, verify

# each input is imported by hash: a passport_ref, a mandate_ref, and a policy_bound_ref
agent  = "sha256:b3594e33998af01bd1ad208172c5c1ac586daa8c75781379f034d97e50b1a9be"
mandate = "sha256:a4f8cb5ee09b29478ac1cc2f468d66e16d3d25f7a229a31d22ad521e11d04d35"
policy = "sha256:aaee2091799f376ee8cac802ea4920feaa4eca52950488a3e047ff82e6959a21"

ref = guardrail_ref("ALLOW", agent, mandate, policy)   # bind the decision
verify(ref, "ALLOW", agent, mandate, policy)           # True
verify(ref, "DENY",  agent, mandate, policy)           # False (verdict tamper)

An ALLOW bound under policy P returns a different guardrail_ref if recomputed against the policy_bound_ref under a rotated P'; rotation is detectable. Invalid verdicts and malformed refs are rejected, not hashed.

Conformance

conformance/spend_guardrail_lite_v1/: 2 positives (ALLOW/DENY), 4 divergence negatives (verdict / policy-rotation / agent / mandate tamper), 2 rejection negatives (invalid verdict + malformed ref), and 2 invariants. Verifier imports only stdlib + rfc8785:

pip install rfc8785
python conformance/spend_guardrail_lite_v1/verify.py

Adopters

The 4-check gate is scripts/check_v0_adoption.py (dependency + canonical hash anchor

License

Apache-2.0. Copyright 2026 AlgoVoi. Preserve the NOTICE in any distribution.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

algovoi_spend_guardrail_lite-0.1.2-cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.whl (153.1 kB view details)

Uploaded CPython 3.11manylinux: glibc 2.17+ x86-64

File details

Details for the file algovoi_spend_guardrail_lite-0.1.2-cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for algovoi_spend_guardrail_lite-0.1.2-cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 570e94aa5a42662a56eb72de1b3c02d24da6c2edcefa08a37735f693377293f1
MD5 f4382cdd94b41e4813a4a3163f54f8d9
BLAKE2b-256 203c5261d2f0374c30ffd7ab2d45ab8f77ecf218ef0049230a9d95e0852c78b5

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page