Identity & access.
SAML SSO with group-to-role mapping and auto-provisioning. SCIM provisioning (Phase 1). MFA. Eight-role RBAC. Agent identity is first-class: verified, expiring, audited.
Keys with hard edges.
API keys are scoped — and account-management capability is structurally non-grantable. Not a setting someone can flip; the permission model makes account-management scopes impossible to grant to API keys.
Tenancy.
Per-tenant isolation, tenant-facing audit surfaces, and data-region recording. Your evidence stays your evidence.
Dispatch protections.
Egress protections, upstream credential custody, and minimized anonymous responses on the single governed dispatch path.
Evidence by default.
Routing decisions versioned and replayable. Trust provenance anchored with SHA-256 Merkle commitments. Traces for accepted and rejected requests, correlation IDs throughout, configurable retention.
Discipline as a feature.
Recurring internal security audits with recorded dispositions. Extensive automated regression testing with contract drift guards. We hold ourselves to the standard we sell.