OS9 by AwebWave 1 governed shell
WorkspaceAweb / command-private

Create your AI fleet, connect tools, set rules, and watch it work.

This first OS9 shell turns the fleet product contract into a private, typed, governed surface. Governance truth is visible now; registry APIs are published, signed approval evidence is bounded, and broader mutation remains fail-closed.

Private route

This shell inherits authenticated page-route posture and is not exposed as a public marketing surface.

Bounded authority

Runner registration and connector mutation stay blocked; signed Mission approval issuing, sandbox eval summaries, cost visibility, and operator sandbox interrupts are live.

Manual API gate

Published /api/v2/os9 fleets, runners, approvals, and mission contracts use route-level auth and explicit OpenAPI registration; broader OS9 APIs remain closed.

Fleets3

Governed inventory anchored to one workspace.

Active runners2/4

Hosted and local posture are visible without widening trust.

Pending approvals2

Blocked actions stay explicit instead of silently enabled.

Mission contracts2

Preflight contracts bind intent, capabilities, gates, and receipts.

Receipts3

Hash-linked action evidence is visible to operators.

Mirror attention1

Process Mirror summaries classify what still needs review.

Launch posture

The current product boundary is deliberate: private UI, bounded registry APIs, signed approval evidence, and no silent live mutation.

UI route

Private

Private page route behind session auth

API posture

Read-only

Published /api/v2/os9/fleets, /api/v2/os9/runners, /api/v2/os9/approvals, and /api/v2/os9/mission-contracts behind API-key auth

Mutation mode

Read-only

Only signed Mission approval token issuing is live; broader mutation remains blocked

Workspace scope

Single tenant

Aweb / command-private

Operator boundary

Wave 1 proves visibility across the four product objects that matter first.

Fleet registry

Visible

Fleet inventory, policy mode, connector reach, and blocked reasons are exposed as typed records.

Runner posture

Governed

Hosted, BYOC, and local runners show trust posture and heartbeat truth without pretending write admission already exists.

Approvals and Mirror

Read-only

Approval pressure and Process Mirror narratives are legible, but no live action buttons are exposed yet.

Mission Contract

Compiled before execution so Maestro, Trust Runtime, and receipts share the same authority boundary.

Enforced preflight

communications_funding_ops

Build and run a governed communications and funding-ops agent fleet that can research, triage, draft, update records, pause for approval, and prove every meaningful action.

v1
Contractmission_contract_46bf27361c2fc8ff11c6
CompiledMay 29, 12:00 AM UTC
Capabilities15
Approval gates12
Capability graph11 bound / 15 total
search.web:search.ai-poweredapi_warehouse:llm.structuredemail.search:gmail.search_messagesemail.thread.read:gmail.get_threademail.draft.create:gmail.create_draftemail.send:gmail.send_messageknowledge.page.update:notion.update_page_markdownknowledge.page.create:notion.create_page

Gates and receipts

Sensitive actions default to block; evidence and receipts link back to the contract.

Default deny

Mailbox identity boundary

Any Gmail thread or message body read beyond the explicit search result envelope.

identity
cap_search_inboxcap_read_thread

External communication send

Any email, Slack message, or multi-channel communication that leaves draft mode.

send
cap_send_email

Business record mutation

Any write to the funding ledger, CRM-like workspace, or durable operator record.

write
cap_update_funding_ledgercap_create_research_doccap_operator_slack_update

Agent Receipt binding

Required fields include contract authority, policy decision, approval, redaction, result, failure, and recovery.

Hash linked
contract_idmission_idaction_idauthoritycapabilityproviderpolicy_decisionapprovalredaction

Fleet registry preview

A bounded slice of the governed fleet model the product is built around.

Open fleets

Platform Control

Govern cross-substrate operations with explicit policy and stop authority.

active
Missions18
Policy modeapproval heavy
readwriteadmin

Product Forge

Package internal Aweb substrate into governed customer-facing OS surfaces.

pilot
Missions9
Policy modeobserve
readwrite

Revenue Response

Coordinate monitored commercial interventions without widening spend posture.

paused
Missions5
Policy modegoverned write
readspend

Runner and approval pressure

The runtime model is visible next to the review queue it still depends on.

Open runners

Hosted West 1

Aweb / command-private

active
hostedverifiedPlatform ControlProduct Forge

BYOC Ops EU

Aweb / command-private

degraded
byoclimitedPlatform Control

OS9 API widening

Keep /api/v2/os9 publication bounded to read-only fleets, runners, and mission contracts

pending

Approval token issuing is published, but broader mutation-capable controls remain intentionally unpublished.

Runner scope widening

Admit BYOC write-capable connector reach for Platform Control

pending

Connector attestation still shows degraded posture.

Process Mirror snapshots

Redacted mission narratives classify what happened, what was touched, and what remains blocked.

Open mirror

mission_os9_product_phase2a

Route-auth proof is complete: /os9 stays private while /api/v2/os9 is now bounded to read-only fleets, runners, and mission contracts.

fresh
Next actionsafe read only
UpdatedMay 23, 03:26 PM UTC
copilotworkspace/aweb

mission_platform_connector_drift

Connector reach is visible, but the BYOC runner is still degraded and cannot widen write posture.

blocked on approval
Next actionapproval required
UpdatedMay 23, 02:58 PM UTC
GrafanaWarehouse MCPNeon

mission_revenue_archive_replay

Historical revenue-response traces are preserved, but the replay runner is stale and should not be scheduled.

stale
Next actionsafe read only
UpdatedMay 22, 10:49 PM UTC
LedgerProcess Mirror