Governance Coordinator — Architecture
Decision Sources
🔴 RTK Signal
Circuit breaker
should_halt → block ALL
🔍 SBL
System Reconnaissance
snapshot + deps
⚙️ Policy Engine
Allow / Deny / Param rules
evaluate() + audit
📋 Governance Coordinator
plugins/governance/__init__.py
1. RTK check
2. SBL deps
3. Policy eval
4. Merge
Mode: off → audit → simulate → enforce
Decision
block / pass
4 modes
off — everything passes
audit — logged, passes
simulate — block + context
enforce — hard block
✅ PASS
🔴 BLOCK
action: "block"
message: json {...}
6 protection layers (pipeline)
1. SBL (paths+dependencies)
2. Policy (allow/deny/rules)
3. Tirith (homograph)
4. Approval (user confirm)
5. Sanitize MCP (injections)
6. RTK (compression)
Coordinator manages layers 1-3
Legend
Pass
Block
Simulate