Roadmap
What we're working on.
No version numbers we can't honor and no dates we haven't earned — three honest buckets instead.
Now
What design partners are using today
- Composite identity binding (user · agent · workload)
- Task-bound credential issuance
- Inline policy evaluation via SDK
- Signed, chained decision log
Next
What we're building now
- Transparent proxy with MCP awareness
- Policy proposal queue (observed-traffic → drafted rules)
- Evidence export packs
Later
What's on the line after that
- Third-party security audit
- Self-hosted control plane GA
- Public SDK