← Policy gallery

dual_approval_critical

agentic-governance safety pure_temporal agentic-aigovernancefix-ai-wgcapabilityrag-redtier-4

Tier 4 (Critical Autonomous) release requires two distinct authenticated approvals before proceeding.

Formula

G(Release → P(UserApproval ∧ approver_1) ∧ P(UserApproval ∧ approver_2))

Why it matters

Tier 4 default-deny governance: dual approval must be logged before a Critical Autonomous release. Distinctness of the two approvers is guaranteed by the governance layer.

Examples

passes UserApproval(approver_1) and UserApproval(approver_2) before Release

fails Release with a single approver at Tier 4

Use it

ponens policies add dual_approval_critical --into ./trace.json
ponens trace check ./trace.json