Demo Flow

The hosted demo separates the human-readable story from the JSON endpoints used by scripts and tests.

Agent blocked, then authorized

This terminal recording shows the local quickstart path: a dangerous action is denied before execution, then an allowed action runs and returns audit-shaped evidence.

Open cast file

Loading terminal recording. If the player does not load, open the cast file.

Nono sandbox broker

This terminal recording shows the Nono Execution Broker: the control plane denies a sandbox spawn, then policy allows the same action and the broker invokes the configured nono executable with network blocked.

Open cast file

Loading Nono terminal recording. If the player does not load, open the cast file.

1. Agent asks to act

The intentionally unsafe action is aws.ec2.terminate_instances.

2. Adapter checks policy

The adapter calls POST /actions before any protected function runs.

3. Deny skips execution

A deny response means the action is not forwarded or executed.

Open deny JSON Open allow JSON Run locally

On Vercel, the JSON demo endpoints need ZT_CONTROL_PLANE_URL to point at a reachable control plane. Without that setting, they return a clear configuration error while the website and docs remain viewable.