Skip to content
cCordum
Menu
Request accessTalk to Sales
Deterministic control plane

Deterministic control plane for autonomous workflows.

Run autonomous workflows without losing control. Policy decisions, approvals, and replay are built in. Source-available core. Domain logic ships as installable packs.

Deterministic orchestration. Autonomy at the edges.

Workflows are explicit DAGs with schemas, retries, timeouts, approvals, and an append-only timeline. Execution stays inside bounded workers.

Request accessTalk to SalesDocs
Source-available (SAL)Policy decisionsAudit + replay
License details → /legal/license
Safety Kernel
Safety Kernelevaluate · approve · constrain
Policy decision
ALLOW / DENY
Approvals
Human gate
Audit trail
Immutable
The problem

Platform teams need boundaries.

Autonomous workflows move fast. Without policy and approvals, they also move unsafely.

Ungoverned actions

Automation can write to prod with unclear boundaries. Security blocks the whole initiative.

No audit trail

When incidents hit, you cannot answer what ran, what changed, who approved. Response stalls.

Shadow automation

Every team ships its own scripts. Risk and compliance become unmanageable.

Control plane

The control plane for autonomous operations

Safety Kernel evaluates every job. Approvals gate risk. Audit trail records decisions. Packs extend behavior.

Safety Kernel

Every job is evaluated before dispatch.

Approvals

Policy can require human approval for prod writes.

Audit trail

Append-only audit trail for every run and decision.

Packs

Extend behaviors without touching core.

How it works

From job to result — governed every step

Six steps. No hidden side effects.

1
Submit job
Gateway writes a context pointer.
2
Policy evaluation
Safety Kernel returns a decision.
3
Dispatch or approval
Jobs pause until approved.
4
Worker executes
Runs with enforced budgets.
5
Result stored
Result pointer written to Redis.
6
Audit trail recorded
Decision + outcome appended.
If it is risky, it stops. If it is safe, it ships.
Workflow snippet
steps:
  - id: triage
    uses: worker.incident.enricher
  - id: approval
    type: approval
    reason: "Prod write detected"
  - id: patch
    uses: worker.patch.apply
    requires: ["prod", "write"]
    constraints:
      max_lines_changed: 500
Policy decision
REQUIRE_APPROVAL · policy snapshot v1.2.4 · risk_tags: [prod, write]
Approval required before execution.
Architecture

Architecture you can audit

NATS bus, Redis state, reconciler loops, DLQ, Cordum Automation Protocol (CAP) v2.

Control plane topology
API GatewayHTTP · gRPC · WS
Scheduler + Safety KernelPolicy enforcement
Workflow EngineDAG orchestration
Redis + NATSState + bus
Durability

JetStream durability, retry loops, and DLQ handling keep jobs moving.

Audit trail

Append-only audit trail for every run and decision. Exportable logs for compliance.

Governance

Policy bundles, simulations, and approvals tied to snapshots.

Built on

Built on known infrastructure

NATS, Redis, Go, and Kubernetes — no mystery dependencies.

NATSRedisGoKubernetesCAP v2JetStream
Source-available

Source-available. No black boxes.

Inspect what runs before it touches production. Policies are explicit, approvals are intentional, and every decision is recorded.

License details → /legal/license
Request accessCommunity
Core boundary

Cordum only handles jobs, workflows, state, policy, scheduling, and audit trail. Domain logic lives in packs so the core stays stable and upgradeable.

No black boxesCommunity-ledExtensible packs
Enterprise

Enterprise controls and support

SSO, RBAC, SIEM export, and SLA-backed support.

SSO / SAML integration
Advanced RBAC
Dedicated support + SLA
Custom pack development
On-premise deployment
Audit export + SIEM hooks
Enterprise is for orgs that need compliance controls and guaranteed response times.
Already using Temporal? Keep it. Cordum governs autonomous actions.
Security review? Start with policy simulation + approvals.
You can inspect and audit the source. Commercial terms exist for hosted/resale use cases.
Talk to SalesEnterprise details
Ready?

Ready to ship autonomous workflows safely?

Request source access or talk to our team about enterprise deployments.

Request accessTalk to Sales