Tractatus AI Safety Framework
0e6be3eaf1
CRITICAL FIX: Server would CRASH ON STARTUP (multiple import errors)
REMOVED (2 scripts):
1. scripts/framework-watchdog.js
- Monitored .claude/session-state.json (OUR Claude Code setup)
- Monitored .claude/token-checkpoints.json (OUR file structure)
- Implementers won't have our .claude/ directory
2. scripts/init-db.js
- Created website collections: blog_posts, media_inquiries, case_submissions
- Created website collections: resources, moderation_queue, users, citations
- Created website collections: translations, koha_donations
- Next steps referenced deleted scripts (npm run seed:admin)
REWRITTEN (2 files):
src/models/index.js (29 lines → 27 lines)
- REMOVED imports: Document, BlogPost, MediaInquiry, CaseSubmission, Resource
- REMOVED imports: ModerationQueue, User (all deleted in Phase 2)
- KEPT imports: AuditLog, DeliberationSession, GovernanceLog, GovernanceRule
- KEPT imports: Precedent, Project, SessionState, VariableValue, VerificationLog
- Result: Only framework models exported
src/server.js (284 lines → 163 lines, 43% reduction)
- REMOVED: Imports to deleted middleware (csrf-protection, response-sanitization)
- REMOVED: Stripe webhook handling (/api/koha/webhook)
- REMOVED: Static file caching (for deleted public/ directory)
- REMOVED: Static file serving (public/ deleted in Phase 6)
- REMOVED: CSRF token endpoint
- REMOVED: Website homepage with "auth, documents, blog, admin" references
- REMOVED: Instruction sync (scripts/sync-instructions-to-db.js reference)
- REMOVED: Hardcoded log path (${process.env.HOME}/var/log/tractatus/...)
- REMOVED: Website-specific security middleware
- KEPT: Security headers, rate limiting, CORS, body parsers
- KEPT: API routes, governance services, MongoDB connections
- RESULT: Clean framework-only server
RESULT: Repository can now start without crashes, all imports resolve
🤖 Generated with Claude Code
Co-Authored-By: Claude <noreply@anthropic.com>
|
||
|---|---|---|
| .github | ||
| data/mongodb | ||
| deployment-quickstart | ||
| docs | ||
| scripts | ||
| src | ||
| tests | ||
| .env.example | ||
| .env.test | ||
| .eslintrc.json | ||
| .gitignore | ||
| CODE_OF_CONDUCT.md | ||
| CONTRIBUTING.md | ||
| jest.config.js | ||
| LICENSE | ||
| NOTICE | ||
| package-lock.json | ||
| package.json | ||
| README.md | ||
| tailwind.config.js | ||
Tractatus Framework
AI governance framework enforcing architectural safety constraints at runtime
For background, research, and detailed documentation, see https://agenticgovernance.digital
Quick Start
Prerequisites
- Node.js 18+
- MongoDB 7+
- npm or yarn
Installation
git clone https://github.com/AgenticGovernance/tractatus-framework.git
cd tractatus-framework
npm install
Configuration
cp .env.example .env
# Edit .env with your MongoDB connection details
Initialize Database
npm run init:db
Run Tests
npm test
Start Development Server
npm run dev
# Server runs on port 9000
Core Services
The framework provides six governance services:
| Service | Purpose |
|---|---|
| InstructionPersistenceClassifier | Categorizes instructions by persistence level (HIGH/MEDIUM/LOW) and quadrant (STRATEGIC/OPERATIONAL/TACTICAL/SYSTEM/STOCHASTIC) |
| CrossReferenceValidator | Validates AI actions against stored instruction history to prevent override |
| BoundaryEnforcer | Blocks AI from making decisions requiring human judgment |
| ContextPressureMonitor | Tracks context window usage and triggers pressure management |
| MetacognitiveVerifier | Validates AI reasoning against governance rules |
| PluralisticDeliberationOrchestrator | Manages multi-stakeholder deliberation processes |
Basic Usage
1. Initialize Services
const {
InstructionPersistenceClassifier,
CrossReferenceValidator,
BoundaryEnforcer,
ContextPressureMonitor
} = require('./src/services');
const classifier = new InstructionPersistenceClassifier();
const validator = new CrossReferenceValidator();
const enforcer = new BoundaryEnforcer();
const monitor = new ContextPressureMonitor();
2. Classify Instructions
const classification = classifier.classify({
text: "Always use MongoDB on port 27027",
source: "user",
context: "explicit_configuration"
});
// Returns: { quadrant: "SYSTEM", persistence: "HIGH", ... }
3. Validate Actions
const validation = await validator.validate({
type: 'database_config',
proposedPort: 27017,
storedInstruction: { port: 27027 }
});
// Returns: REJECTED if action conflicts with instructions
4. Enforce Boundaries
const decision = {
type: 'modify_values_content',
description: 'Update ethical guidelines'
};
const result = enforcer.enforce(decision);
// Returns: { allowed: false, requires_human: true, ... }
API Documentation
Full API reference: docs/api/
- Rules API - Governance rule management
- Projects API - Project configuration
- OpenAPI Specification - Complete API spec
Deployment
Quick Deployment
See deployment-quickstart/ for Docker-based deployment.
cd deployment-quickstart
docker-compose up -d
Production Deployment
- systemd service configuration: systemd/
- Environment configuration: .env.example
- Troubleshooting: deployment-quickstart/TROUBLESHOOTING.md
Architecture
Architecture decision records: docs/architecture/
Diagrams:
Testing
# Run all tests
npm test
# Run specific suites
npm run test:unit
npm run test:integration
npm run test:security
# Watch mode
npm run test:watch
Test Coverage: 625 passing tests, 108 known failures under investigation
Contributing
See CONTRIBUTING.md for contribution guidelines.
Key areas:
- Testing framework components across different LLMs
- Expanding governance rule library
- Improving boundary detection algorithms
- Documentation improvements
License
Apache License 2.0 - See LICENSE
Contact
- Email: research@agenticgovernance.digital
- Issues: GitHub Issues
- Website: https://agenticgovernance.digital
Last Updated: 2025-10-21