SANDBOX MODE — use Stripe test card 4242 4242 4242 4242 (any future expiry, any CVC)
Enactenact.is
Join Waitlist
v0.6 · persistent docker exec < 20ms

Sovereign AI Agents.
Geofenced in Iceland.

Run collaborative, multi-agent teams inside isolated, single-process Docker Vaults. Engineered in Norway, hosted strictly under Icelandic jurisdiction—immune to the US CLOUD Act and FISA 702.

[01]100% GDPR Compliant (EEA)
[02]NIS2 Supply-Chain Ready
[03]Isolated Docker Sandboxing
[04]Zero US Telemetry Routing
No credit card. Early access seats limited.

[§ 00] CORE_MODULES

BLOCK_001/ 001

Multi-agent execution

Coordinator, coder, gatekeeper — pre-built blueprints with full approval gates.

EXPLORE_FEATURES BLOCK_002/ 002

Icelandic jurisdiction

Geofenced compute that the CLOUD Act and FISA 702 can't reach.

READ_THE_SHIELD BLOCK_003/ 003

Transparent pricing

€89 lifetime · €299/yr self-hosted · €19/mo Cloud Vault.

VIEW_PLANS

// Security Specifications

Crash-proof execution. Cryptographic approvals.

Every agent step is committed to an immutable ledger before it runs. Every privileged action waits for a hardware-signed user approval. No silent retries. No invisible side-effects.

01 — Durable Execution

Temporal-style ledger, soldered to SQLite.

Steps are atomically journaled before they execute. If the host process dies — kernel panic, OOM, power loss — the next worker resumes from the exact last committed step. Zero double-spends. Zero phantom writes.

  • Write-Ahead Log fsync before exec
  • Deterministic replay on restart
  • SHA-256 chained, tamper-evident rows
vault.ledger.sqlite
WAL · fsync · chained sha-256
agent.runtime
step.exec()
crash → 0x3a4
fsync
immutable WAL
commit before exec
sha256 ⛓ prev
010x3a1plan.composecommitted
020x3a2tool.read_repocommitted
030x3a3patch.applycommitted
040x3a4shell.exec resume from 0x3a4
050x3a5test.verifyqueued
host crash @ 0x3a4 resume from 0x3a4
enact · approval
14:32
Architect agent

Requests read access to

/repo/payments/stripe.ts

scope: read · 1 file · 32 lines

Touch sensor to approve

enact.vault
rpIdenact.is
algES256 / P-256
aaguidapple · secure enclave
counter0x00f3
resultverified
action authorized

02 — WebAuthn HITL Approval

Touch ID. Face ID. YubiKey. No shared secrets.

When an agent requests filesystem, network, or secret access, the request is signed by your platform authenticator. The private key never leaves your device. A stolen session token cannot approve anything on its own.

  • FIDO2 / WebAuthn level-2 attestation
  • Per-action challenge, never replayable
  • Hardware-bound private keys (Secure Enclave / TPM)