Aller au contenu

Use case: Governance rules

Ce contenu n’est pas encore disponible dans votre langue.

You deploy LLM agents in a context where outputs matter: legal advice, financial reports, compliance audits, medical summaries. The agents are capable, but you need guarantees:

  • Agents stay within their declared scope.
  • Outputs follow a defined method, not improvisation.
  • Decisions are traceable and auditable.
  • When something goes wrong, there is a structured recovery path.

Telling the LLM “please follow the rules” via a system prompt is not governance. LLMs can ignore instructions, hallucinate compliance, or drift out of scope without anyone noticing.


Cortex enforces governance server-side. Rules are stored as atoms in the graph, applied at runtime, and violations result in structured HTTP 4xx errors — not polite LLM refusals.

Cortex organizes governance into nine transversal sous-familles, each covering a specific axis:

Sous-familleWhat it governs
SAFETY_BASELINEFoundational safety constraints
META_COGNITIONSelf-awareness, reflection, calibration
ERROR_RECOVERYError handling and correction procedures
UNCERTAINTY_MANAGEMENTBehavior under ambiguity or missing information
SCOPE_CONTROLStaying within declared boundaries
CONSISTENCY_CONTROLMaintaining coherence across outputs
GOAL_ALIGNMENTStaying aligned with the mission objective
DISAGREEMENT_HANDLINGResolving conflicts between agents
NAVIGATION_STRATEGYHow to approach complex, multi-step tasks

A governance pack is a collection of governance atoms assembled for a specific context. It defines what a given role is allowed to do in a given phase. Packs are versioned like any other Cortex artefact.

When an agent makes a request through the MCP server or REST API, Cortex checks the request against applicable governance rules. If the request violates a rule, Cortex returns a structured error with a specific code and message. The agent does not get to decide whether the rule applies — Cortex decides.

This is fundamentally different from prompt-based governance, where the LLM interprets the rules and may choose to ignore them.

Cortex enforces a four-level role hierarchy on both the REST API and the MCP server:

RoleLevelCan do
reader0Read catalogue, search, browse
contributor1Draft workspace artefacts, deposit memory
producteur2Ingest blocs, profiles, governance atoms
admin3Full access including configuration

Every MCP tool and REST route declares a minimum required role. Requests below that threshold are rejected.

Every mutation is versioned (semver + content hash). The governance layer maintains a history of events and amendments on mission contracts, ODMs and tasks. When a decision is made, Cortex records who made it, when and why.


  • Governance pack — governance atom collections
  • ATOM — governance rules as typed, versioned atoms
  • Versioning — every rule has a semantic version
  • CR — structured delivery and QA reports
  • Mission contract — the top-level governance frame

Scenario: a team of three agents (expert, QA, leader) executing a compliance audit.

  1. Setup — The leader creates a mission contract with scope_in (“audit modules A, B, C against ISO 27001”) and scope_out (“do not modify production code”). The contract is validated and enters IN_PROGRESS.

  2. Scope enforcement — The expert agent requests to modify a production file. Cortex checks the active scope rules and returns a 403: “SCOPE_VIOLATION: production code modification is excluded from this mission scope.” The agent cannot proceed.

  3. Method enforcement — The ODM specifies the 7-axis QA method. The expert delivers an audit that skips the security axis. The QA agent’s review references the method atom and marks the delivery as FAIL with a blocking issue: “security axis not covered per method requirement.”

  4. Rework governance — The task enters REWORK status. The resilience profile allows two rework cycles before escalation. The expert corrects the delivery, the QA agent re-evaluates and delivers a PASS verdict.

  5. Audit trail — At mission completion, every decision, rework, verdict and amendment is recorded in the governance audit history. A compliance officer can trace exactly what happened: who did what, when, why, and what the outcome was.

  6. Version control — Six months later, the ISO 27001 reference is updated. The governance atoms are bumped to a new major version. Projects still using the old version see a drift report. They can choose when to upgrade.