Skip to content

Use Cases / DevOps

DevOps With Guardrails

Production deployments, migrations, and rollbacks execute only with signed authority decisions. Intended evaluates environment, blast radius, and reversibility before any AI agent touches production.

Start PilotView Docs

Production Risk

CI/CD pipelines already automate deployment. AI agents now decide what to deploy and when. Without runtime authority enforcement, a confident model can trigger a schema migration at 2 AM with no human in the loop. Intended enforces the boundary between AI reasoning and production execution.

bash
# AI agent requests production deployment
POST /execute
{
  "action": "deployment.trigger",
  "target": "service-payments",
  "environment": "production",
  "adapter": "github-actions",
  "context": {
    "change_scope": "schema_migration",
    "model_confidence": 0.92
  }
}

# Intended evaluates 8 risk factors:
# → base_action_risk: 0.55 (deployment)
# → environment: production (+0.20)
# → blast_radius: single service
# → reversibility: schema migration (low)
# → time_of_day: business hours (neutral)
# → actor_trust: 0.85 (established agent)
#
# Risk score: 68 → ESCALATED
# → Routed to on-call for approval
A production deployment intent evaluated by the Authority Engine.

How It Scores

Environment sensitivity

Production actions carry a +20 risk modifier. Staging and development are scored lower, enabling faster iteration where risk is bounded.

Blast radius analysis

Single-service changes score lower than multi-service or org-wide changes. The Authority Engine scales controls proportionally to impact scope.

Reversibility assessment

Reversible actions (config changes, feature flags) score lower than irreversible actions (schema migrations, data deletions). Controls match consequence.

Deployment Outcomes

Staging deployment

Authorized

deployment.trigger → staging

22

Non-production, reversible, trusted agent. Token issued with 300s TTL.

Production config change

Authorized

config.update → production

41

Below escalation threshold. Reversible change with bounded scope.

Schema migration (prod)

Escalated

database.migrate → production

68

Low reversibility + production environment. Routed to on-call approver.

Multi-service rollback

Escalated

deployment.rollback → production (3 services)

74

High blast radius across multiple services. Requires human confirmation.

Infrastructure teardown

Denied

infra.destroy → production cluster

95

Irreversible, org-wide blast radius. Exceeds deny threshold.

Adapter Coverage

GitHub Actions

GA

Workflow dispatch with token-verified execution.

GitHub Pull Requests

GA

PR creation with authority-scoped changes.

Jira

GA

Issue creation and commenting under authority.

ServiceNow

GA

Incident and change operations with audit trail.

Kubernetes

Planned

Pod, deployment, and namespace operations.

Terraform

Planned

Plan and apply with authority-gated execution.

AWS (IAM/EC2)

Planned

Cloud resource management under authority.

Custom (SDK)

GA

Build any adapter in < 200 lines with the Connector SDK.

Ship without guessing.