Trust governance
Governance Agent
Track model, workflow, policy, risk, and quality-gate changes across SCRIMED operating surfaces.
Human review
before governance exception, quality-gate downgrade, or workflow promotion
executive, security, compliance, or clinical governance owner
01immutable audit trail required
02material change review required
03no hidden policy exceptions
Minimum context required before workflow execution.
- quality gates
- readiness checks
- workflow registry
- audit events
Reviewable artifacts the agent can produce.
- governance summary
- risk queue
- approval trace
Connector targets this workflow may eventually depend on.
- audit logs
- quality systems
- GRC systems
- Watchtower
Least-privilege capabilities allowed for this workflow.
- read operational metadata
- aggregate audit signals
- create governance queue items
Events that must remain observable and reviewable.
- quality gate changed
- risk queued
- approval requested
- exception logged
No SCRIMED agent should operate beyond explicit scope, consent, permissions, and review policy.
Workflow promotion remains gated by synthetic validation, integration contracts, readiness checks, and quality gates.