Execution Boundary Demo

Execution Boundary Demo

AI proposes, systems can commit, and PFC governs the action before execution.

Blocked before commit.

Without PFC

The action executes after the proposal.

state changed

Without PFC

  • Action executes
  • No authority validation
  • System state changes
1
Request sentThe refund is proposed to the execution path.
18:42:16Z
2
No authority checkThe system proceeds without validating delegated authority.
18:42:16Z
3
Commit occursThe refund updates system state before review.
18:42:16Z

Outcome

  • Action executes
  • No authority validation
  • System state changes

With PFC

The action is evaluated before execution.

blocked before commit

With PFC

  • Action evaluated before execution
  • Authority verified
  • Blocked before commit
1
Request sentThe same refund is proposed through the governed path.
18:42:16Z
2
Authority verifiedPFC checks whether the actor can approve the refund.
18:42:16Z
3
Commit blockedThe deny decision stops the action before state changes.
18:42:16Z

Outcome

  • Action evaluated before execution
  • Authority verified
  • Blocked before commit

Demo Scenario

Refund request proposed to the wrong destination account. This shows how AI execution risk emerges when outputs become actions.

requestrefund_payment / req_demo_7F3A91
amount$5,000 USD
decisiondeny
commit statusblocked

Receipt Preview

Governed deny receipt

Visible before any protected commit.

Execution evidence 
{
  "receipt_status": "signed_deny",
  "decision_id": "dec_refund_20260323_19af",
  "request_id": "req_demo_7F3A91",
  "action": "refund_payment",
  "authority_result": {
    "principal": "ai.refunds.autopilot",
    "required_scope": "refunds:release:high_value",
    "result": "deny",
    "reason": "principal not delegated for high-value refunds to external destination"
  },
  "policy_result": {
    "policy_id": "refunds-high-risk-v4",
    "result": "deny",
    "matched_rules": [
      "deny_external_destination_without_case-owner-attestation",
      "deny_high_value_refund_without_finance_delegate"
    ]
  },
  "risk_level": "high",
  "commit_status": "blocked_before_commit",
  "blocked_at": "2026-03-23T18:42:16.601Z",
  "executor_status": "no_side_effect_applied",
  "receipt_hash": "sha256:4f0d6f7f4b55e3f4df1aa8ec7d54f0e5b3d585b8351db78e75e78df9e30c6c92",
  "signature": "ed25519:MEQCIDemoGovernedReceipt8m1xH2oYw0P8mQ4n4c3o7Kp2",
  "committed": false
}

Next Step

Verify this decision.

Review the governed path or see how the control point fits into the rest of the system.

Verify this decision Ready to try this in your own workflow? Get Started View how it works