AgentProof
Workspace · Readiness command centreOpen Controls & oversight →

Readiness command centre

AgentProof public beta readiness

This is the founder release-control surface. Each category is checked against live config and the Supabase readiness resolver. No env values, tokens, or secrets are ever shown.

Overall status

Public beta blocked

Public beta cannot be enabled yet.

Public beta is blocked. Backend readiness incomplete.

Supabase / auth

Ready

Sign-in, registration, and workspace persistence all sit on Supabase.

Next action: No action — Supabase auth is configured.

Workspace persistence

Blocked

Workspaces, agents, reviews, reports, invites, and connections must persist with workspace-scoped isolation.

Warnings

  • Schema migrations have not been validated. Run scripts/validate_s34d_schema.cjs.
  • Workspace tables not confirmed reachable. Expected before public registration.

Next action: Validate migrations with the S34D schema validator and confirm tables reachable.

Invite system

Ready

Private-beta invites must be created, optionally sent by email, and accepted via the documented 8-state lifecycle.

Next action: No action — invite system is enabled.

Email system

Not required yet

Invite emails are honest-disabled. The UI uses copy-link mode.

Warnings

  • Email sending is disabled. AgentProof will not claim it sent an email it did not send.

Next action: Optional — set AGENTPROOF_PRIVATE_BETA_EMAILS_ENABLED + AGENTPROOF_EMAIL_PROVIDER to enable.

Microsoft connector

Ready

Microsoft Entra OAuth is read-only. AgentProof never requests business records, only metadata.

Next action: No action — Microsoft connector is configured.

Manual non-Microsoft flow

Ready

Manual non-Microsoft agents let a tester describe a website chatbot, internal agent, OpenAI-style agent, or workflow automation agent.

Next action: No action — manual non-Microsoft flow is enabled.

Demo mode

Partial

Demo mode shows AgentProof against two isolated demo agents. Demo data never appears in real workspaces.

Warnings

  • AGENTPROOF_DEMO_MODE_ENABLED is off.

Next action: Set AGENTPROOF_DEMO_MODE_ENABLED=true to expose /demo.

Report generation

Ready

AgentProof produces a print-ready readiness report (cover, score, evidence, risks, controls, methodology). Browser print only — no PDF-export service is shipped.

Warnings

  • AgentProof does not ship a true PDF export service yet. The report is print-ready via the browser.

Next action: Use the browser print dialog to capture the report.

Data isolation

Ready

Every workspace read + write is scoped by workspace_id. RLS policies forbid cross-workspace reads at the Supabase layer.

Next action: No action — workspace isolation is structural.

Security / secret scan

Ready

AgentProof never bundles the Supabase service-role key, Microsoft client secret, OAuth tokens, refresh tokens, id tokens, raw invite tokens, or email API keys into the browser bundle.

Next action: No action — the archive build script refuses to package forbidden files.

Public registration flag

Not required yet

AgentProof is invitation-only. Public registration is being prepared.

Next action: When the readiness backend is fully green, set AGENTPROOF_PUBLIC_REGISTRATION_ENABLED=true.