Docs / Security / Fail-Closed
Fail-closed enforcement.
If Gvner cannot make a decision, execution is denied. No silent fallbacks.
How to use
1. Review control
Understand the control definition.
2. Verify implementation
Confirm evidence output exists.
3. Export proof
Generate evidence for auditors.
4. Monitor drift
Track changes to control posture.
Fail-closed conditions
Decision timeout
Intent expires before decision. Execution is denied.
Policy ambiguity
Conflicting policies result in deny until resolved.
Service unavailability
Any governance outage blocks execution.
Missing approvals
Required approvals are absent or expired.
Evidence impact
Denied actions recorded with explicit reason
Audit ledger records fail-closed triggers
Exports include denial counts and causes
Key API endpoints
POST /decisions — decision evaluationEvidence outputs
Fail-closed decision logs
Timeout denial records