Everything built.
Nothing promised.

Requirements are auto-normalized to structured EARS syntax before entering the pipeline — eliminating ambiguity at the source.

"Shall," "should," and "may" are enforced against tier policy. Weak obligations are flagged before build — not discovered in audit.

Each AC transition requires a minimum token spend threshold before advancing. Agents cannot paper over ACs with zero-work checkpoints.

Inherently coupled acceptance criteria are declared at build start and logged to the chain — not silently skipped. Every row in the attribution table is honest.

Sequential, combined, and auto sprint modes with four-layer precedence (spec → per-build → project → framework). Enforced, not advisory.

AC transition checkpoints are validated by the validate_build_governance MCP tool. Missing checkpoints block build closure.

Every audit event is cryptographically linked to the prior event. A single tampered entry breaks the chain — detectable immediately.

Spec fidelity, security posture, code quality, test coverage, AC quality, obligation strength, and token attribution — all scored at build close.

3-signal weighted composite score with 4 industry profiles. Uniform critical floor of 49. Deterministic recommendation engine — no subjective interpretation.

Token burn is tracked per session, per AC, and per phase. Every row in the attribution table represents a real token-spend window — verifiable by construction.

First hash, last hash, and entry count are injected into every build closure and rendered across all evidence adapters — Linear, Confluence, ADO, Markdown, Plain Text.

Fake or stub audit chain anchors are detected at seal time and rejected. Audit files cannot be closed against a non-real chain.

Every audit chain entry is cross-linked to the constraint token session that produced it. Session → build → requirement → token burn — the full chain of custody is literal.

Full audit report exportable as structured JSON. Security scans, validation gates, fidelity scores, and requirement traces included as first-class fields — not appended footnotes.

One human-readable YAML file governs every agent session. Version-controlled alongside your code. No external policy store required.

6 default blocked bash patterns ship with every install. Teams are protected immediately — before they've written a single custom policy rule.

5-gate evaluator — health, coverage, drift, open scans, and CVE — must pass before any deployment proceeds. Defined in behaviors.yaml, enforced in CI.

Per-build token spend minimums, AC checkpoint requirements, and sprint method mandates all configurable in behaviors.yaml — not hardcoded in tooling.

Specification-derived severity policy. Scan thresholds, CVE severity gates, and scan-fail behavior are all defined in policy — not buried in CI configuration.

Session start, pause, resume, and close are governed events. Expired sessions fail closed — agent execution halts, not warns.

Every write is blocked, evaluated against policy, and logged before it touches disk. The agent never gets to decide what is safe to write.

Agents cannot modify test files without an explicit session-scoped exception. Test suites cannot be silently overwritten to make failing builds pass.

Governance sentinels — .hook_exceptions, .session_ready, .session_paused — are OS-protected. An agent cannot grant itself permission to bypass enforcement.

Fake audit chain anchors are detected at seal time. An agent cannot close an audit file against a non-real chain — governance evidence cannot be fabricated.

When a session expires, agent execution halts. There is no grace period during which an expired session can continue acting. Fail-closed, not fail-warn.

countability hook allow grants time-bounded, pattern-matched exceptions logged to the chain. Exceptions are auditable decisions — not invisible bypasses.

Dangerous shell patterns — destructive filesystem operations, production database commands, mass communication triggers — are blocked at the OS layer before execution.

Enforcement is invisible to the agent. Hooks run at the OS layer — the agent process has no visibility into them and no mechanism to disable or circumvent them.

Bandit, Semgrep CE, and pip-audit run with a unified FindingSchema. Every finding is normalized, deduplicated, and written to the chain — not siloed in separate tool outputs.

Scan → remediate → rescan → close. Each phase writes a chain event cross-referenced to the prior phase by hash. No finding can be marked resolved without a linked rescan record.

Bandit, pip-audit, Semgrep, and Gitleaks run as a parallel GitHub Actions job on every PR. Nightly CodeQL SARIF for deep static analysis. Builds do not merge with open critical findings.

CycloneDX and SPDX SBOMs generated via Syft on every build. Grype CRITICAL gate blocks deployment if new critical CVEs appear in the dependency tree.

9-control hybrid scoring model with 4 industry profiles and a uniform critical-control floor of 49. Two-step temporal decay reflects posture degradation over time.

Dependabot integration with weekly regression workflows. New CVEs surfaced automatically — not discovered in quarterly audits.

2 CountABILITY-specific Semgrep rules ship out of the box, targeting agentic build patterns that generic rulesets miss.

pip-audit falls back to OSV database when PyPI advisory data is unavailable. No silent gaps in dependency vulnerability coverage.

Tier-aware installer auto-detects your platform and wires every hook. Up and running in under 5 minutes on any supported platform.

Health checks, hook validation, and platform manifest verification. Identifies misconfigured or missing enforcement components before a build starts.

The portability layer manifest declares which platforms are active, which hooks are wired, and what the enforcement state is for each — version-controlled and auditable.

No cloud dependency. No proxy service. No vendor lock-in. CountABILITY runs on your existing toolchain — git hooks, stdlib Python, and your repo.

Thin platform wrappers. Same Python validators underneath. Enforcement behavior is identical across every supported platform — no behavioral divergence by client.

Reconciles local workflows and platform configuration against the CountABILITY framework baseline. Keeps governance state consistent as the framework evolves.

Cyclomatic complexity, maintainability index, test coverage, duplication, documentation density, and dependency coupling — scored per module on every build.

Architectural health scoring at the aggregate level via Sentrux sidecar. Structural debt surfaces as a scored dimension alongside the standard 6 — not as a separate tool output.

GitHub Actions workflow blocks D and F grade code from merging. Quality enforcement runs in CI — not as a post-merge advisory dashboard.

Quality scores are tracked over time per module. Drift — a module declining from B to D across builds — is surfaced as a chain event, not buried in a diff.

countability audit — run quality scoring locally at any point. Results written to the audit chain as a scored event with full module breakdown.

Code quality is one of the 7 dimensions in the build closure report. Every build closes with a quality score — not an optional add-on, a required evidence field.

Session state, audit trail, requirement coverage, security posture, code quality, and delivery confidence — each tab purpose-built for a distinct stakeholder.

9-control NIST CSF grid with expandable panels per control. Industry profile selector. CISO brief export in HTML and JSON with one click.

Exportable HTML and JSON security posture brief — formatted for executive review. Generated from live audit chain data, not manually assembled.

3-signal weighted composite with 4 industry profiles. Deterministic recommendation engine shows confidence level and the specific signals driving it.

Program-level governance evidence page published directly to Confluence at build close. Stakeholders who live in Confluence get their evidence there — no portal login required.

Full session and portfolio state exportable via export_portfolio_state(). Structured JSON — integrable with downstream reporting, BI tools, or compliance workflows.