🛡️ Ambient Proposal Execution Boundary
Governance verification: no path from audio/transcript/proposal can execute, mint tokens, or bypass approval.
28
Checks
28
Passed
0
Failed
0
Critical
0
High
Checked at: 2026-05-19T09:19:18.800048+00:00
— ALL CLEAR
All Findings
| Severity | Surface | Invariant | Result |
|---|---|---|---|
| info | /ac audio command /ac audio ingress |
command is inspection/proposal only | ✓ |
| info | /ac audio command /ac audio transcripts |
command is inspection/proposal only | ✓ |
| info | /ac audio command /ac audio proposals |
command is inspection/proposal only | ✓ |
| info | /ac audio command /ac audio readiness |
command is inspection/proposal only | ✓ |
| info | /ac audio command /ac audio verify-speaker |
command is inspection/proposal only | ✓ |
| info | audio_route GET /ui/audio/ingress |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /ui/audio/ingress/{event_id} |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /ui/audio/transcripts |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /ui/audio/proposals |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /ui/audio/readiness |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /api/audio/ingress |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /api/audio/ingress/{event_id} |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /api/audio/transcripts |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /api/audio/proposals |
route is read-only or metadata-only | ✓ |
| info | audio_route GET /api/audio/readiness |
route is read-only or metadata-only | ✓ |
| info | audio_route POST /api/audio/readiness/check |
route is read-only or metadata-only | ✓ |
| info | db_table:audio_ingress_events all_rows |
execution_prohibited = 1 | ✓ |
| info | db_table:audio_speaker_verification_log all_rows |
execution_prohibited = 1 | ✓ |
| info | db_table:audio_task_proposals all_rows |
execution_prohibited = 1 | ✓ |
| info | db_table:audio_node_readiness_snapshots all_rows |
execution_prohibited = 1 | ✓ |
| info | capability_token global |
no capability token for audio source before approval | ✓ |
| info | execution_log global |
no execution from audio source | ✓ |
| info | tool_mcp_provider_invocation global |
no tool/MCP/provider invocation from audio source | ✓ |
| info | agent_activation global |
no agent activation from audio source | ✓ |
| info | secret_exposure global |
no secrets in audio metadata | ✓ |
| info | local_node_data 303b0da5-6332-41fc-a173-12408f66f6ab |
local nodes not publicly exposed | ✓ |
| info | local_node_data 7680f411-0f94-4e17-8e00-560ae378e11f |
local nodes not publicly exposed | ✓ |
| info | local_node_data 56c6b6f0-6817-46c5-84c2-2f5067db0c39 |
local nodes not publicly exposed | ✓ |