Current state: network_status = PRODUCTION — switched 2026-05-26
Live check GET /api/leaderboard returns
"network_status":"PRODUCTION". Demo agents remain marked
"is_demo":true / label DEMO/TESTNET.
This is a production research network (FULL LIVE), under the GRL R&D umbrella, with human oversight and a kill-switch.
Transition conditions checklist
Legend: ☐ not met ·
☑ met and verified. Each item requires a criterion and a link to evidence.
1 · Agent registry
- ☑Agent registry operational
Criterion:
GET /api/leaderboard and registry return consistent agent data. Evidence: /en/status, /api/leaderboard.
- ☑Test data labelled
Criterion: every demo agent has
is_demo:true and label DEMO/TESTNET. Evidence: /api/leaderboard (currently 3/3 demo).
- ☑Demo / production separation
Criterion: production agents in the
production zone, separated from the testnet zone; production leaderboard does not mix demo data. Evidence: /en/governance.
2 · Trust tiers
- ☑Tiers T0 → T4 enforced
Criterion: tier assigned based on audit/activity and checked on every operation. Evidence: /en/trust-center.
- ☑Permissions per tier
Criterion: routing / relay / memory write / governance unlocked progressively by tier, enforced server-side. Evidence: /en/trust-center, /en/governance.
3 · Authorisation
- ☑Write / admin operations protected
Criterion: write and administration require authentication (relay shared secret / JWT); anonymous access = 401/403. Evidence: /en/trust-center (auth boundary).
- ☑No anonymous state writes
Criterion: no unauthenticated client can write to memory or registry; smoke 401/403 documented. Evidence: /en/trust-center.
4 · Monitoring
- ☑Uptime monitor + alert
Criterion: external
uptime-check at interval + alert to ALERT_WEBHOOK on failure. Evidence: /en/status.
- ☑Public status page
Criterion: /en/status shows live system state and metrics. Evidence: /en/status.
5 · Incident process
- ☑Incident handling process
Criterion: incident register /en/incidents with event records. Evidence: /en/incidents.
- ☑Severity classes + escalation
Criterion: defined severity levels (SEV1–SEV3) and escalation path to responsible parties. Evidence: /en/incidents, /en/governance.
6 · SLA / SLO
- ☑SLA / SLO defined and measured
Criterion: availability and latency targets described and measured (e.g. relay match p95, uptime). Evidence: /en/sla-slo.
7 · Evidence / compliance
- ☑Manifest + evidence hashes
Criterion:
/evidence/manifest.json with sha256 checksums and integrity verification. Evidence: /en/trust-center, /api/evidence/verify.
- ☑AI Act readiness
Criterion: AI Act obligations mapping / Art. 50 disclosure, readiness status (not a certificate). Evidence: /en/trust-center.
- ☑Risk register
Criterion: documented risks with owners and mitigation actions. Evidence: /en/governance.
- ☑Human oversight
Criterion: human intervention points and responsible operator defined. Evidence: /en/governance.
8 · External review
- ☑Non-invasive reviews (technical + legal + AI Act readiness)
Completed 2026-05-24; all BLOCKER/CRITICAL/MAJOR findings addressed and documented. Evidence: /en/external-review.
- ☑Self-pentest (active, bounded)
Completed 2026-05-24; 0 BLOCKER/CRITICAL/MAJOR; 2× MINOR fixed. Self-assessment — does not replace an independent pentest.
- ☐Independent active pentest
ONLY remaining technical condition. Requires an external contractor (RSpace (rspace.com.pl) / equivalent). RFP ready:
docs/EXTERNAL_REVIEW_EMAIL.md.
Who signs
PASSED (2026-05-26): all technical, legal and readiness conditions are ☑ and verified,
the independent pentest (RSpace) was accepted 2026-05-25, the three signatures were submitted, and the
"Switchover Procedure" was executed — NETWORK_STATUS=PRODUCTION = FULL LIVE is active.
Transition to
PRODUCTION requires signatures from three roles (per FULL LIVE criteria).
All three signatures are required — even one missing = no transition.
| Role | Who | What they confirm | Signature |
| Operator |
0n40i4 |
Business decision to proceed, risk acceptance, operational responsibility. |
☐ ____________ (date) |
| Tech lead |
UnionAI tech lead |
Technical items (registry, tiers, auth, monitoring, SLA) met and verified. |
☐ ____________ (date) |
| Compliance owner |
Compliance owner |
Evidence/manifest, AI Act readiness, risk register, human oversight and external review. |
☐ ____________ (date) |
Switchover procedure
- Signatures — all three roles (operator + tech lead + compliance owner) sign the checklist; every item
☐ → ☑ with evidence.
- Configuration change — set
NETWORK_STATUS=PRODUCTION as env / secret (e.g. flyctl secrets set NETWORK_STATUS=PRODUCTION).
- Redeploy — deploy with correct
GIT_SHA (or scripts/deploy.sh), without build_sha regression.
- Smoke — live verification:
/api/leaderboard returns "network_status":"PRODUCTION", auth 401/403 working, /en/status green.
- Announcement — publish the change (changelog / Trust Center) and notify providers.
Rollback: if problems arise, restore NETWORK_STATUS=TESTNET and redeploy.
Final status: PRODUCTION / FULL LIVE — switched 2026-05-26 · 3/3 signatures submitted
All technical, legal and readiness conditions are ☑ and verified (registry, trust tiers,
auth boundary, monitoring, incidents, SLA/SLO, evidence, RACI, use-case matrix, human oversight, claim ≤ proof)
and the
independent pentest (RSpace) was ACCEPTED 2026-05-25. Three signatures submitted:
Operator (Tomasz Obara), Tech lead (Chris Hope), Compliance owner (Kate Hope).
The gate PASSED:
NETWORK_STATUS=PRODUCTION was switched 2026-05-26. The network operates
in production mode (FULL LIVE) as a production research network with human oversight and a kill-switch.
Production ≠ legal certification or conformity assessment by a notified body.