Least privilege by default
Access is a grant, not a default. An agent reaches exactly the tools its skill names, and nothing else, ever.
Company
Agent access should be governed, not assumed.
Some teams are shipping agents faster than they can govern them. Just as many won't ship at all until they can. Both are stuck on the same missing piece: least privilege, real segmentation, and an audit trail for every agent action. That's what we build.
What we believe
Four convictions the product is built on.
Denials are first-class
A blocked call is not an error to swallow. It is a legible, reasoned, audited outcome: out of segment, broad tool, or no active skill.
Enforced, not advised
A policy that only lives in a document is a suggestion. The contract holds at the call, and every decision is sealed into the audit trace.
Self-hostable and portable
compileHQ runs in your infrastructure. Skills are customer-owned and the CLI is open. No lock-in to govern your own agents.
Who it's for
Built for the person on the hook.
compileHQ is built for the platform, security, and compliance teams standing up internal agents: the people who have to grant access, scope it, and answer for it when it runs.
They don't need another agent framework. They need least privilege at every call, denials they can reason about, and an audit trace they can defend.
decision: certifiedc423d3…