Keep policy below the interface
Normalize MCP, API, CLI, SDK, and workflow ingress into one typed capability request so a new client does not create a weaker execution path.
For AI platform teams
Onterix is being built as the governed execution layer beneath the agent clients, model providers, internal applications, and workflows your teams choose—so trust logic does not have to be rebuilt in each experience.
Platform mandate
AI platform teams need a stable boundary between fast-changing agent experiences and the enterprise systems, credentials, policies, and operational responsibilities behind them.
Normalize MCP, API, CLI, SDK, and workflow ingress into one typed capability request so a new client does not create a weaker execution path.
Adapters describe provider semantics. The runtime remains responsible for identity, data protection, policy, approval, credential resolution, execution, and evidence.
Represent waiting, approval, retry, uncertain outcomes, compensation, and reconciliation explicitly instead of reporting false synchronous success.
The target contract keeps the same principal, capability, protection, approval, and evidence semantics across managed and customer-controlled modes.
Evidence-bound execution
The target runtime carries one request from principal and capability resolution through destination-aware data protection, policy, exact-action approval, data-plane credential resolution, execution, and safe evidence.
Adoption path
A useful private-preview evaluation chooses a consequential action, identifies every system and control owner, and proves the boundary before expanding interfaces or connector breadth.
Name the actor, agent, client, sources, destination, payload, approval owner, expected result, and failure consequences.
Decide which credentials, content, indexes, findings, workflow state, model routes, and evidence must remain customer-local.
Test stale revisions, changed policy, transformed payloads, denied approval, provider failure, retries, and uncertain outcomes—not only the happy path.
Project the verified capability through additional interfaces without creating a parallel authorization or execution path.
Target customer-controlled plane
In strict customer-data-plane and fully self-hosted target modes, the assigned runtime is intended to own the sensitive execution path while the central service coordinates narrow metadata, signed configuration, and deployment control.
Onterix is in private-preview development. The common runtime, client compatibility, connector depth, regional placement, customer-hosted packaging, and end-to-end evidence claims described here remain subject to implementation and verification.
AI platform design partner
We will map its interfaces, systems, principals, data boundaries, approval semantics, deployment requirements, and proof obligations into one concrete target contract.