Credential Not Expiring

warning

credential_not_expiring

agentic-governance security pure_temporal agentic-aigovernancefix-ai-wgidentityrag-ambertier-1-4

KYA/vLEI credentials must not be within the expiry window (proposed threshold < 30 days).

Formula

G(action → ¬credential_expiring)

Amber / flag-refer: a soft identity condition. Execution may continue in restricted mode pending credential renewal.

passes action with a credential valid well beyond the window

fails action whose KYA credential is < 30 days from expiry

ponens policies add credential_not_expiring --into ./trace.json
ponens trace check ./trace.json