How verification works before an operator is listed.

We assume submissions may be malicious. Operators must pass malware scanning, adversarial prompt tests, sandbox scope checks, and human review before publish.

View Verified Operators Example Safety Profile

Release Gate Sequence

Artifact scan for malware, IOC, and obfuscation patterns.
Adversarial tests for prompt injection and policy bypass.
Sandbox execution against connector scope boundaries.
Human review for high-risk paths and release notes.
Signature issuance only after all gates pass.

Live Safety Checklist

Signature chain validationPASS
Permission model consistencyPASS
Outbound exfiltration controlsPASS
Rollback readinessPASS

What Buyers Can Inspect Before Install

publisher_id: verified
artifact_signature: required
risk_class: low | medium | high
required_permissions: explicit
human_review_timestamp: included
kill_switch_support: required