🛡️ Architecture Overview

Aegis: The Agent Firewall

Aegis is Satoshium's AI agent inspection and lifecycle verification service. This architecture page documents the read-only service boundary behind the public inspection panel, including how Aegis receives inspection inputs, returns structured lifecycle and readiness information, exposes export surfaces, and separates evaluation from execution authority, routing authority, registry mutation, and ledger mutation.

System Purpose

Aegis exists to make agent stability visible through a current Satoshium service surface. Users can review the public panel, run sample read-only inspections, compare response payloads, and examine how lifecycle verification is separated from execution, routing, registry mutation, and ledger writes.

Read-only service boundary Aegis describes posture, transitions, compatibility, and export readiness without granting execution rights.

Deterministic evaluation Classification and readiness outputs are derived from explicit lifecycle conditions rather than hidden heuristics.

Service-layer clarity Outputs are structured for inspection, documentation, screenshots, and technical review without implying automatic certification or enforcement.

High-Level Architecture

agent signals
→ containment lifecycle evaluation
→ stability posture
→ inspection readiness
→ service boundary classification
→ exportable review surfaces
→ documentation and verification surfaces
→ deterministic hash identity

The architecture is intentionally layered. Each surface builds on prior surfaces so evaluation stays inspectable, portable, auditable, and clearly separated from execution authority.

Major Capability Families

Lifecycle intelligence Tracks stability posture, transitions, persistence, and multi-state lifecycle behavior across containment lifecycles.

Service inspection readiness Produces structured signals for review, screenshots, documentation, and comparison across sample actor states.

Boundary and readiness review Exposes readiness reasons and inspection-safe review outputs without granting routing authority.

Artifact exportability Supports manifest descriptors, bundle inspection, ZIP schema, and deterministic hash identity for portable review.

Documentation compatibility Provides review-friendly structures that can be documented, compared, screenshotted, and inspected over time.

Ledger-safe boundary Provides verification review shapes without performing external Bitcoin writes or ledger mutation.

Trust Boundaries

Evaluation surfaces are declarative. They describe state and readiness but do not grant authority.
Verification previews are non-operative. They show review shapes without triggering external actions.
Export surfaces are artifact-focused. They define how Aegis is packaged for inspection, documentation review, download, and hash comparison without mutating evaluation logic.
Hashes identify published artifacts. Deterministic bundle identity supports comparison and verification, not automatic trust assignment.

Representative Surfaces

Lifecycle posture surfaces Stability posture, transition detection, persistence modeling, and aggregate readiness signals.

Readiness review surfaces Readiness reasons, discovery signals, and structured transition tracking.

Compatibility review surfaces Boundary checks and review-safe compatibility outputs.

Export surfaces Capability manifest, readiness endpoint, bundle descriptor, ZIP schema, and deterministic hash identity.

Bundle & Export Model

Aegis supports an inspectable export lifecycle for its canonical subsystem bundle:

write
→ inspect
→ manifest read
→ download
→ deterministic hash
→ verification preview

The canonical bundle is represented as:

aegis-lifecycle-verification.bundle.zip

This bundle is designed to be portable, inspectable, and hash-addressable while preserving strict separation between artifact publication and documentation review surfaces or verification review surfaces.

Current Public-Facing Surfaces

Readiness endpoint — machine-readable operational summary
Bundle inspection endpoint — confirms archive structure and manifest readability
Manifest access endpoint — returns manifest.json directly from the written bundle
Bundle download endpoint — streams the canonical Aegis bundle
Hash surface endpoint — exposes deterministic bundle identity and content fingerprints
Verification preview endpoint — provides documentation and verification review shapes without external writes

Evaluation Positioning

Aegis is published as a current inspection and technical review service surface. Researchers, developers, and infrastructure teams can use the public panel, documentation links, canonical bundle references, and JSON output examples to review how Satoshium models agent lifecycle stability.

This page positions Aegis as an inspectable service surface rather than a finished mass-market enforcement product. The claim is intentionally narrow: inspection, lifecycle verification, documentation, and review.

Open the Aegis Service Panel → Contact Satoshium About Aegis Evaluation →

Status

Aegis is represented as an operational public service surface within Satoshium, with machine-readable readiness, inspection, packaging, hashing, and verification-review surfaces.

Operational

Inspectable

Exportable

Service-Boundary Clear

Review Ready