For platform, security, and DevEx

Enterprise rollout guidance

dexgate is designed for a pilot first, then expansion—not “every developer, every agent, day one.” This page is the recommended adoption path for OpenClaw, Codex, and other beachhead adapters.

Product posture: public beta adapters and paid early access / pilot. Treat this as a controlled security/platform program, not a silent plugin install.

Who this is for

Individual engineers should start from Get started for free install only. Enterprise-wide enablement should follow the phases below.

What not to do on day one

Recommended phases

Phase 0 — Free evaluation (days 0–3)

Goal: Prove the free local hard gate without SDE infrastructure.

OpenClaw free quickstart Codex free quickstart

Phase 1 — Paid pilot (about 1–2 weeks)

Goal: One real governed decision (GateDecision + Passport evidence) for one team.

Minimum paid setup Pricing (early access / pilot)

Phase 2 — Expand carefully

Goal: Broader use without multiplying failure modes.

What engineers will feel (set expectations)

Mode Usually still works Typically blocked / governed
Free local hard gate Read, search, limited edit, test runners, safe shell inspection git push / commit-style mutation, deploy-class, unrestricted shell launchers — no Passport
Paid pilot (PDP) Same day-to-day work when policy allows; high-risk actions may require Passport / approval path Production-bound change without entitled policy + evidence; misconfigured tenant/gateway/token

If free mode blocks normal coding work, engineers will remove the adapter. Keep free useful and the paid wall obvious.

Change-management checklist (copy for your pilot kickoff)

Roles and systems (don’t confuse them)

Observe agent activity, then configure

Why monitor-and-record is a strong pilot reason: free mode only hard-gates on each laptop. Paid gives platform and security a shared stream of what agents request—tools, allow/deny, Passport gaps—recorded as decisions you can review. That capability can justify the subscription even before broader policy automation.

In a paid pilot, treat the PDP dashboard as your first operations surface:

  1. Stand up the minimum SDE runtime and point one adapter at it.
  2. Open http://localhost:8001/dashboard (tunneled if needed) while the pilot team uses the agent normally.
  3. Note which tools and action classes appear, what is allowed vs denied, and where evidence / Passport is missing.
  4. Only then define the managed policy set, approvals, and console deployment checks—so configuration matches real traffic, not a blank-sheet guess.

Free evaluation (Phase 0) has no SDE dashboard: you only get the local hard gate. Monitoring authorize traffic starts in Phase 1 once the PDP is running.

Adapter maturity (for rollout planning)

All adapters are public beta (no external licensed production reference yet). Recommended free path: OpenClaw (most mature free path). Also mature beta: Codex (controlled host coverage; readonly governance gaps possible). Early beta: Grok Build, Claude Code, Cursor, and GitHub Copilot — same free hard-gate / paid Passport model. See all adapters. Paid runtime: early access / pilot until first-customer governed success is proven. Compatibility matrix labels are internal evidence scope, not a general production guarantee.

Related docs

Start free evaluation Paid pilot setup Contact