# DexGate Governance One-Pager

## Purpose
Provide a concise overview of the DexGate self-serve governance adapter model: standalone hardening first, governed action review second.

## Audience
- Platform and AI engineering teams
- Security and risk reviewers
- Enterprise evaluators of self-serve governance adapter deployments
- Self-serve users assessing whether the free standalone mode is useful

## What the Free Product Is
The free adapter layer, such as the DexGate OpenClaw Adapter or DexGate Codex Adapter, is a standalone local hardening layer. It can intercept high-impact actions and apply a conservative baseline without requiring the SDE PDP runtime.

Its default posture depends on the adapter. Free mode is **developer-free**: everyday read, limited edit, and constrained shell/tests under guardrails, while high-consequence actions (for example `git push`, unrestricted shell, deploy-class) stay blocked without a Passport. OpenClaw and Codex free checks should report a local-hardening baseline, not a paid PDP path.

## What DexGate Adds
DexGate adds governed action review for paid deployments. It evaluates high-impact actions, applies configured policy, and emits reviewable evidence.

Within governed adapter deployments, DexGate supports allow, deny, constrain, sandbox, and review outcomes for supported action types.

## What This Deployment Produces
- Configured `allow`, `deny`, `constrain`, or review outcomes
- Decision records and trace identifiers
- Policy and version references for declared configurations
- Evidence outputs for release validation, audit, and troubleshooting

## Why Teams Use It
- Start with a useful local hardening baseline before procurement or rollout
- Prove that high-risk actions are governed by an action-control layer
- Reduce silent drift across runtime versions and policy changes
- Preserve evidence for security, risk, audit, and operator review
- Establish a clear fail-safe posture for governed runtime actions

## Typical Adapter Governance Use Cases
- Block shell execution or destructive file operations outside policy
- Apply environment-specific constraints to runtime actions
- Validate governed enforcement posture through release evidence
- Support compatibility validation and governed rollout decisions
- Start with a useful local hardening posture before enabling the paid governance plane

## Deployment Model
- Runs in customer-controlled environments
- Supports hardened deployment for release and customer operation
- Uses signed and versioned policy artifacts with traceable evidence

## Engagement Paths
- Self-serve adapter hardening, runtime verification, and software subscription flow: `dexgate.ai`
- Enterprise DexGate briefings, implementation planning, and rollout support: `dexgate.ai`
