[AVAILABLE] — this is what actually runs. Cloud/KMS/multi-instance/HA deployment is [ROADMAP] — see Roadmap.
What runs today
One Express process (packages/api/src/server.ts), single instance, no load balancer or
orchestration assumed. Signing keys are local PEM files read by FileKeyProvider. Storage
is either fully in-process (memory, non-persistent) or Supabase.
Configuration
Real.env keys (from this repo, values redacted):
Running it
What this deployment does not give you
- No content-binding enforcement. The server never constructs an
ExecutionGateway. See Content Binding & TOCTOU. - No authentication. Every route is open.
- No KMS/HSM. Your private key is a file on disk, exactly the exposure that produced the incident noted on Security.
- Single process, single instance. No shared
NonceStoreacross replicas, no HA.
Node version
Rootpackage.json requires Node ≥ 22. ML-DSA-65 (post-quantum signing) specifically
requires Node ≥ 24 for native node:crypto support (CLAIMS.md 2.14).