SanctumSanctum
Start
Open-core runtime · MIT · v0.1 preview

Runtime trust infrastructure for autonomous systems

Sanctum sits between AI reasoning and real-world execution — permissions, verification, audit logs, and local governance for agents, robotics, and automation.

Start with RuntimeQuick StartEnterprise
AI agents · ROS2 · Ollama · edgeLocal-first · Offline capableBasic audit logs (OSS)

The problem

AI can think. But can you trust it?

Cloud dependence

Robots that can't think without a server can't be trusted in the field.

Remote hijacking

Open APIs and unverified prompts give attackers a direct line to motors.

Unsafe actions

Models hallucinate. In a physical world, hallucinations break things — or people.

Prompt injection

A single poisoned input can override safety constraints across an entire fleet.

Privacy exposure

Sensors stream private data to third-party clouds with no enforced boundary.

The solution

The runtime layer for trusted autonomy

Action Firewall

Every high-stakes action is intercepted, evaluated against policy, and approved, verified, or blocked — before execution.

Local Cognition

Run inference and policy locally with Ollama, llama.cpp, or your own models. Sovereign by default. Cloud-optional.

Behavioral Monitoring

Detect anomalous prompt chains, escalation attempts, and suspicious remote inputs in real time across your fleet.

Architecture

Between reasoning and execution

Operator

Human intent

AI Model

Local or cloud LLM

Sanctum Runtime

Verify · Authorize · Audit

Execution

APIs · Devices · Physical world

Developer SDK

Four lines between your model and the real world.

Sanctum sits between your agent and execution — verify, govern, and audit every action without rewriting your stack.

  • Verify before execute — middleware or protectAgent()
  • Policies: approve, verify, or block per action
  • Local Ollama risk + offline heuristics (OSS)
  • Audit log + community dashboard
runtime.ts
npm install @sanctum-runtime/sdk @sanctum-runtime/adapter-agent-runtime

import { SanctumRuntime } from "@sanctum-runtime/sdk";
import { protectAgent, AgentActions } from "@sanctum-runtime/adapter-agent-runtime";

const sanctum = new SanctumRuntime({
  baseUrl: process.env.SANCTUM_API_URL,
});

await protectAgent(sanctum, {
  action: AgentActions.SEND_EMAIL,
  context: { to: "user@example.com" },
  offlineMode: true,
  execute: async () => sendEmail(),
});

Use cases

One runtime, every autonomous system

AI Agents

Verify emails, files, APIs, and workflows before they execute.

Humanoids & Robotics

Authorize physical actions against signed policy — flagship path.

Industrial Automation

Halt unsafe sequences before they reach the floor.

Drones & Mobility

Geofenced commands and routing governance, offline-capable.

Smart Home AI

Locks, cameras, and automations with local intent verification.

Enterprise Automation

Governance, audit trails, and approval chains for AI workflows.

Trust by the numbers

Infrastructure-grade accountability

12.4M
Actions Verified
across pilot fleets
8,217
Threats Blocked
last 30 days
99.99%
Offline Integrity
no cloud required
<3ms
Runtime Latency
p99 on edge devices

Build AI humans can trust.

Open the cloud console to manage runtimes and policies, or self-host the open-source runtime from GitHub.

Start with RuntimeEnterprise