# Attesta

## Docs

- [ActionContext](https://attesta.kyberon.dev/api/action-context.md): Dataclass representing all information about a function call under review
- [ApprovalResult](https://attesta.kyberon.dev/api/approval-result.md): Dataclasses representing the outcome of a gate evaluation and challenge verification
- [Attesta Class](https://attesta.kyberon.dev/api/attesta-class.md): High-level entry point for configuring and using Attesta in production
- [Enums](https://attesta.kyberon.dev/api/enums.md): RiskLevel, Verdict, and ChallengeType enumerations used throughout Attesta
- [Environment](https://attesta.kyberon.dev/api/environment.md): Auto-detect deployment environments and apply risk multipliers based on production, staging, CI, or development context
- [Events](https://attesta.kyberon.dev/api/events.md): Pub/sub event bus for subscribing to pipeline lifecycle events such as risk scoring, challenge completion, and approval decisions
- [Exporters](https://attesta.kyberon.dev/api/exporters.md): Export audit trail entries to CSV and JSON formats using the CSVExporter and JSONExporter classes
- [@gate Decorator](https://attesta.kyberon.dev/api/gate-decorator.md): Protect any function with human-in-the-loop approval using the @gate decorator
- [Protocols](https://attesta.kyberon.dev/api/protocols.md): Structural interfaces for risk scoring, rendering, auditing, and challenge presentation
- [RiskAssessment](https://attesta.kyberon.dev/api/risk-assessment.md): Dataclasses representing risk scores, levels, and contributing factors
- [Webhooks](https://attesta.kyberon.dev/api/webhooks.md): Send HTTP POST notifications to external endpoints when pipeline events occur using WebhookConfig and WebhookDispatcher
- [Changelog](https://attesta.kyberon.dev/changelog.md): Version history and release notes for Attesta
- [attesta audit](https://attesta.kyberon.dev/cli/audit.md): Verify audit log integrity, view approval statistics, and detect rubber-stamp approvals
- [attesta init](https://attesta.kyberon.dev/cli/init.md): Generate an attesta.yaml configuration file with sensible defaults
- [attesta mcp wrap](https://attesta.kyberon.dev/cli/mcp-wrap.md): Wrap any MCP server with Attesta approval gating using a single CLI command
- [CLI Overview](https://attesta.kyberon.dev/cli/overview.md): The attesta command-line interface for managing configuration, audit logs, trust profiles, and MCP proxying
- [attesta trust](https://attesta.kyberon.dev/cli/trust.md): View, list, and revoke trust profiles for AI agents using the Bayesian trust engine
- [Audit Trail](https://attesta.kyberon.dev/concepts/audit-trail.md): Tamper-proof SHA-256 hash-chained audit log for every gated action, decision, and incident
- [ConfirmChallenge](https://attesta.kyberon.dev/concepts/challenge-confirm.md): Simple Y/N approval with a mandatory review pause to prevent rubber-stamping
- [MultiPartyChallenge](https://attesta.kyberon.dev/concepts/challenge-multi-party.md): Two or more independent approvers must each pass a different sub-challenge before critical actions execute
- [QuizChallenge](https://attesta.kyberon.dev/concepts/challenge-quiz.md): Auto-generated comprehension questions that force operators to read and understand actions before approving
- [TeachBackChallenge](https://attesta.kyberon.dev/concepts/challenge-teach-back.md): Free-text explanation challenge that validates operator understanding through keyword matching
- [Challenge System](https://attesta.kyberon.dev/concepts/challenges.md): How Attesta selects and presents escalating human verification challenges based on risk level
- [Domain Profiles](https://attesta.kyberon.dev/concepts/domain-profiles.md): Industry-specific risk configurations using Attesta's domain profile framework
- [Renderers](https://attesta.kyberon.dev/concepts/renderers.md): Terminal, plain-text, and custom renderers that control how Attesta presents challenges and results to operators
- [Risk Levels](https://attesta.kyberon.dev/concepts/risk-levels.md): The four risk tiers — LOW, MEDIUM, HIGH, CRITICAL — and how scores map to challenges
- [Risk Scorers](https://attesta.kyberon.dev/concepts/risk-scorers.md): Combine, override, or compose multiple risk scoring strategies with Composite, Max, and Fixed scorers
- [Risk Scoring](https://attesta.kyberon.dev/concepts/risk-scoring.md): How DefaultRiskScorer analyzes AI agent actions across 5 weighted factors to produce a 0–1 risk score
- [Trust Engine](https://attesta.kyberon.dev/concepts/trust-engine.md): Adaptive Bayesian trust model that learns from past decisions to reduce friction for reliable agents
- [attesta.yaml Reference](https://attesta.kyberon.dev/configuration/attesta-yaml.md): Complete configuration reference for the attesta.yaml file — policies, risk tuning, trust parameters, domain profiles, and audit settings
- [Domain Activation](https://attesta.kyberon.dev/configuration/domain-activation.md): Activate domain profiles for industry-specific compliance via attesta.yaml or programmatically
- [Policy Section](https://attesta.kyberon.dev/configuration/policy-section.md): Configure challenge mappings, minimum review times, multi-party approval, fail modes, and timeouts
- [Risk Section](https://attesta.kyberon.dev/configuration/risk-section.md): Configure risk level overrides and regex-based score amplifiers to customize risk scoring per action
- [Trust Section](https://attesta.kyberon.dev/configuration/trust-section.md): Configure the Bayesian trust engine — influence, ceiling, initial score, and decay rate
- [Custom Domain Profiles](https://attesta.kyberon.dev/domains/custom-domains.md): Build, register, and deploy custom domain profiles for industry-specific compliance and risk scoring
- [Domain Profiles Overview](https://attesta.kyberon.dev/domains/overview.md): Architecture and structure of Attesta's domain profile framework for industry-specific risk scoring
- [DevOps Pipeline Example](https://attesta.kyberon.dev/examples/devops-pipeline.md): Complete example of an AI agent managing infrastructure deployments with SOC 2 compliance, deployment gating, rollback protection, and database migration controls
- [LangChain Tool Approval](https://attesta.kyberon.dev/examples/langchain-tooling-approval.md): Wrap LangChain tools with risk-based gating
- [Multi-Framework Example](https://attesta.kyberon.dev/examples/multi-framework.md): Share a single attesta.yaml across LangChain, OpenAI Agents SDK, and Anthropic Claude for unified risk policies, trust scores, and audit trails
- [OpenAI Agents Change Control](https://attesta.kyberon.dev/examples/openai-agents-change-control.md): Gate high-risk tool calls before agent-side effects execute
- [Vercel AI Ops Gate](https://attesta.kyberon.dev/examples/vercel-ai-ops-gate.md): Apply Attesta middleware to operations-oriented tool calls
- [Frequently Asked Questions](https://attesta.kyberon.dev/faq.md): Common questions about Attesta's approval framework, security model, performance, and integrations
- [Building a Custom Challenge](https://attesta.kyberon.dev/guides/custom-challenge.md): Implement the ChallengeProtocol to create TOTP, manager-approval, biometric, or any custom verification challenge
- [Building a Custom Renderer](https://attesta.kyberon.dev/guides/custom-renderer.md): Implement the Renderer protocol to present approval prompts and challenges via Slack, web UIs, email, or any custom channel
- [Building a Custom Risk Scorer](https://attesta.kyberon.dev/guides/custom-risk-scorer.md): Implement the RiskScorer protocol to create domain-specific, ML-based, or rule-based risk scoring strategies
- [Maintainer Operations](https://attesta.kyberon.dev/guides/maintainer-operations.md): Triage cadence, ownership, and escalation workflow for OSS maintenance
- [Migration Guide](https://attesta.kyberon.dev/guides/migration.md): Migrate from manual approval flows to Attesta, upgrade between versions, and update domain profiles
- [Production Deployment Guide](https://attesta.kyberon.dev/guides/production-deployment.md): Recommended configuration, audit persistence, trust tuning, performance, and monitoring for production Attesta deployments
- [Testing with Attesta](https://attesta.kyberon.dev/guides/testing.md): How to test gated functions, mock challenges, auto-approve in tests, and write integration tests for custom scorers and challenges
- [TrailProof Integration](https://attesta.kyberon.dev/guides/trailproof-integration.md): Switch from the legacy audit backend to TrailProof for enhanced tamper-evident logging with HMAC signing and multi-tenancy
- [How It Works](https://attesta.kyberon.dev/how-it-works.md): The 4-stage approval pipeline behind every gated action
- [Installation](https://attesta.kyberon.dev/installation.md): Install Attesta for Python or TypeScript
- [Anthropic Claude](https://attesta.kyberon.dev/integrations/anthropic-claude.md): Gate Claude tool_use blocks with AttestaToolGate before executing tool calls
- [CrewAI](https://attesta.kyberon.dev/integrations/crewai.md): Gate CrewAI task outputs with AttestaHumanInput as a task callback
- [LangChain & LangGraph](https://attesta.kyberon.dev/integrations/langchain.md): Wrap LangChain tools and insert LangGraph gate nodes with Attesta approval
- [MCP (Model Context Protocol)](https://attesta.kyberon.dev/integrations/mcp.md): Gate MCP tool calls with a decorator for custom servers or a zero-config stdio proxy for any MCP server
- [OpenAI Agents SDK](https://attesta.kyberon.dev/integrations/openai-agents.md): Integrate Attesta with the OpenAI Agents SDK via approval handlers and tool guardrails
- [Integrations Overview](https://attesta.kyberon.dev/integrations/overview.md): Connect Attesta to any AI agent framework — LangChain, OpenAI, Anthropic, CrewAI, MCP, Vercel AI, and more
- [Vercel AI SDK](https://attesta.kyberon.dev/integrations/vercel-ai.md): Wrap Vercel AI SDK tools and intercept tool calls with Attesta middleware (TypeScript)
- [Introduction](https://attesta.kyberon.dev/introduction.md): Human-in-the-loop approval framework for AI agent actions
- [Dify Integration](https://attesta.kyberon.dev/no-code/dify.md): Add human-in-the-loop approval to Dify workflows with the Attesta plugin
- [Flowise Integration](https://attesta.kyberon.dev/no-code/flowise.md): Add human-in-the-loop approval to Flowise chatflows with the Attesta Approval tool component
- [Langflow Integration](https://attesta.kyberon.dev/no-code/langflow.md): Add human-in-the-loop approval to Langflow pipelines with the Attesta Approval component
- [n8n Integration](https://attesta.kyberon.dev/no-code/n8n.md): Add human-in-the-loop approval to n8n workflows with the Attesta Approval node
- [No-Code Platform Integrations](https://attesta.kyberon.dev/no-code/overview.md): Drop-in Attesta components for n8n, Flowise, Langflow, and Dify -- no code required
- [OSS vs Cloud](https://attesta.kyberon.dev/oss-vs-cloud.md): Public feature boundary for the mostly OSS + services model
- [Quickstart](https://attesta.kyberon.dev/quickstart.md): Get Attesta running in 5 minutes
- [5-Minute Quickstart](https://attesta.kyberon.dev/quickstart-5-minutes.md): A strict first-success path for production-style gating
- [Support Policy](https://attesta.kyberon.dev/support-policy.md): Open-source support scope and response expectations
- [Python vs TypeScript API](https://attesta.kyberon.dev/typescript/api-differences.md): Side-by-side comparison of naming conventions, async patterns, and feature parity between the Python and TypeScript SDKs
- [TypeScript Getting Started](https://attesta.kyberon.dev/typescript/getting-started.md): Install, configure, and use Attesta in TypeScript with full type safety

## OpenAPI Specs

- [openapi](https://attesta.kyberon.dev/api-reference/openapi.json)