system: nominal $ acif --version 0.9.0-beta kvrm · human-gated

Ship network change with approval, rollback, and proof already attached.

ACIF runs infrastructure change through KVRM Agents. Review the execution plan, gate the risky steps with a human, and export a signed evidence bundle before the maintenance window closes — not during a postmortem a week later.

▸ watch a 90s flow architecture review

no card · beta invite within 48h · direct line to engineering

command center / live session

⌘K

Command center

Dispatch work, track the live session, and watch the rollout advance

The operator can issue work to the agent pool, see the deployment tracker move, and keep the session context attached to the same operating surface.

Dispatch work

Send natural-language instructions to active agents from a command center built for operations work.

Approve change

Review risky actions, hold them for sign-off, and keep production changes under operator control.

Track sessions

Watch the agent session, current task, heartbeat, and execution history in one place.

Capture proof

Evidence artifacts, timeline entries, and audit-chain status accumulate while the rollout is running.

↳ integrates with the stack you already run $ acif providers --list

◆CISCO ◆ARISTA ◆JUNIPER ◆PALO ALTO ◆FORTINET ◆VMWARE ◆AZURE ◆AWS ◆TERRAFORM ◆ANSIBLE ◆NETBOX ◆SERVICENOW ◆PAGERDUTY ◆CISCO ◆ARISTA ◆JUNIPER ◆PALO ALTO ◆FORTINET ◆VMWARE ◆AZURE ◆AWS ◆TERRAFORM ◆ANSIBLE ◆NETBOX ◆SERVICENOW ◆PAGERDUTY

kvrm agents

ACIF uses KVRM Agents to keep autonomous work inside a bounded operating envelope.

KVRM Agents are our proprietary registry-constrained decision architecture. Every request is routed through a versioned action registry, checked against the supported input envelope, validated deterministically, and only then allowed to execute, hold for approval, or hand off.

Registry-constrained actions

Agents do not invent new procedures at runtime. They work from versioned, explicit action sets that define what each agent is actually allowed to do.

Deterministic validation before execution

Prediction is separated from execution. The requested action has to exist, fit the current operating state, and clear validation before the platform can run it.

Fail-closed when the fit is wrong

If the request falls outside what the agent supports, ACIF can reject, hand off, or stop for operator review instead of forcing a best guess into production.

KVRM path

Every request moves through an explicit operating path before it can touch infrastructure.

The platform stays auditable because the route is constrained up front: match the action, validate the fit, stop for approval when needed, then either execute or fail closed.

Match the request to a supported action

The registry decides whether the requested work is actually owned by a known agent path.

Validate against the live operating envelope

Inputs, environment state, and guardrails have to fit before the platform can move forward.

Gate the risky step in the same record

Approval holds are attached to the exact change state the operator is reviewing, not to a side channel.

Execute, hand off, or fail closed

The system either runs the supported action, routes it to the right owner, or stops with a visible reason.

Versioned registries define the work each agent can actually own.

Support rules keep the action surface aligned to the live environment.

Validation and approval gates create a clean boundary between planning and effect.

Decision traces stay attached to the change record for review, audit, and proof.

execution flow

See the system dispatch work, gate change, and collect evidence in the same flow.

The product is strongest when the agent surface, the change surface, and the evidence surface are treated as one operating model instead of separate tools.

acif flow / live replay

tabbed

Orchestration

See the agent tree move while infrastructure work is still in progress

Agent roles, task progress, handoffs, and the event log stay visible at the same time, which makes the workflow legible while it is happening.

Approval and execution

Move from review to approval to execution in the same record

The blast radius, approval state, and execution controls stay bound to the request so there is no handoff gap between review and action.

Evidence

Keep command output, artifacts, and audit state attached to the work

The operator can search artifacts, switch evidence views, and keep the audit chain visible while the rollout is still active.

Topology and blast radius

Keep network context visible while the platform is changing it

Discovery, review, and rollout make more sense when the environment map and the affected services stay on-screen next to the action surface.

01 | Dispatch

Route the work to the right agent

Operators can start from plain language without dropping into a script pile or splitting intent across tools.

02 | Gate

Hold risky steps for explicit approval

Change control stays human-gated when the blast radius matters, instead of turning automation loose by default.

03 | Run

Keep live execution attached to the record

Session state, command output, event history, and current task context remain visible in one operating surface.

04 | Prove

Hand audit a trail that already exists

Evidence, artifacts, and approval history are already captured before the change window closes and memory fades.

from prompt to proof

The product earns trust when agent work, change control, and evidence stay connected.

The operating model only works if the operator can see who is acting, what is waiting for approval, and what proof has already been captured.

/var/acif/change-record ● live

operating record

One request, one approval surface, one proof trail.

The product gets stronger when the operator never has to switch mental models between planning, approval, execution, and proof.

Prompt lands with scope Intent, target systems, and blast-radius context enter the same record the team will review and run.

Approval stays attached to execution Pending gates, approved steps, and delegated work keep their context instead of bouncing into email, chat, or side tickets.

Evidence accumulates in the open Command output, artifacts, timeline entries, and audit state keep building while the rollout is still active.

Dispatch

Natural-language instructions become structured work

Operators can issue instructions to the agent pool from a workflow built for operations rather than ad hoc terminals and scripts.

Control

Human-gated rollout keeps the risky step visible

The change surface keeps review, auto-approved work, pending gates, and the live feed in the same operating record.

Proof

Evidence exists before anyone asks for it

Artifacts, command output, timelines, and audit status accumulate as the work runs instead of being reconstructed later.

operator console

The same flow, rendered as command output.

Illustrative — not a live shell. These panels show how the product above thinks: a plan gets generated, gated steps wait for a human, execution runs, and evidence accumulates. The real UI is the tour above. This is the mental model.

acif plan · prod-edge-fabric

⌘K

branch: release/2026.04 agents: kvrm-3 blast-radius: scoped

$acif plan apply --env prod-edge --change CR-4821

↳ resolving topology graph (48 nodes, 6 vendors)…

↳ kvrm-agent[01] generated 12-step execution plan

↳ policy: change-window OK · peer-review OK · blast-radius=scoped

✓ plan ready · 12 steps · 3 gated · est. 4m 18s

>review --interactive▍

plan phase · generated from intent, policy, and live topology

acif apply · step 7/12

⌘K

state: awaiting approval step: edge-acl-push

step 05 ✓ bgp-advertise prefix 10.20.0.0/16

step 06 ✓ pre-change snapshot: vmw-prod-02

◐ step 07 gated: ACL push to rtr-edge-01 (risk: data-plane)

↳ approver: on-call network lead · waiting 00:01:42

↳ rollback plan attached · ttl: 15m

>approve --with-rollback▍

gate phase · risky steps pause for a human, context intact

acif evidence · CR-4821

⌘K

state: sealed artifacts: 14 hash: sha256…3c9a

12/12 steps completed · 3/3 gates approved

14 artifacts: cli-output, config-diff, pre/post snapshots

audit chain: continuous · signed: yes · bundle: 2.3 MB

✓ evidence package ready · export / share / retain

$acif export --format soc2-evidence▍

proof phase · artifacts accumulate while the change is running

↳ conceptual view · real UI lives in the tour above · CLI example, not a product promise

built for

The part of the job where a bad change ruins a quarter.

No testimonials — we're in beta. The honest pitch is about the work itself: if your team runs the rollouts below, ACIF is built for the conditions you already operate in.

Hybrid estates where one maintenance window touches Windows, VMware, Azure, AWS, and the network in a single rollout.

Approval, rollback, and evidence obligations that all land on the same engineer in the same hour.

Operating surfaces that need to stay legible while the work is still running, not only after the retro.

Approval path Risky actions stay pinned to the same live record the operator is reviewing.

KVRM route Requests stay inside supported action paths instead of improvising into production.

Evidence chain Command output and audit proof keep accumulating while the rollout is moving.

Scenario 01

Multi-operator rollouts where one wrong step costs a weekend

Several engineers, one change window, zero tolerance for a rollback that silently skips a step. ACIF gives the approval path and the undo a first-class home.

Scenario 02

Multi-vendor network change without manual CLI drift

Cisco, Arista, Juniper, Palo Alto, Fortinet in the same estate. ACIF keeps the execution surface consistent instead of letting tribal CLI patterns accumulate change by change.

Scenario 03

Regulated windows where proof is part of the deliverable

Plan, approval, execution, and artifacts end up on the same record — not three tools, four tickets, and a Slack thread to reconstruct a week later.

request access

Join the beta queue with the environment you actually run.

The beta application asks about company size, industry, environment, deployment timing, and the rollout pressure you want ACIF to absorb. That gives us enough context to prioritize demos and early access around real deployment conditions.

Good fit

Best early fit

Hybrid infrastructure teams carrying Windows, VMware, Azure, AWS, and network changes in the same operating lane.

Rollout owners dealing with maintenance windows, approvals, rollback pressure, and evidence requirements at the same time.

Regulated or high-consequence environments where change control and proof matter as much as execution speed.

Beta scope

What beta access includes

Guided deployment review against your environment, change path, and evidence obligations instead of a generic platform tour.

Early access to the command center, approval workflow, and evidence package around the operating motions you care about first.

Direct feedback loop on workflows, integrations, and KVRM guardrails needed before broader rollout.

/etc/acif/access.request ● ready

Beta application

Open the application and tell us what environment you actually run.

We ask the operational questions up front so demo time goes into your change model, approval path, and evidence requirements instead of generic discovery.

Company size and industry so we can size the deployment conversation correctly.

Environment and deployment window so we know which workflows matter first.

Role and rollout pressure so we can tailor the walkthrough to the team carrying the risk.

Good starting motion A deployment review anchored to one real change path, one approval surface, and the proof your team has to keep.

Best first walkthrough Hybrid Windows, VMware, Azure, AWS, and network operations where multiple teams touch the same rollout window.

Work email gets beta invites, demo access, and release notes.