Evidra
Fail-closed policy guardrails for AI agents running kubectl, terraform, helm, and argocd.
Ask AI about Evidra
Powered by Claude · Grounded in docs
I know everything about Evidra. Ask me about installation, configuration, usage, or troubleshooting.
0/500
Reviews
Documentation
Evidra
Evidra — Behavioral reliability for infrastructure automation.
A new observability layer for CI/CD, IaC, and AI agents.
Evidra records automation intent and outcome as signed evidence, computes behavioral signals, and produces scorecards.
How To Use
Two primary operation modes:
evidra run= Evidra executes and observes a command live.evidra record= Evidra ingests a completed operation from structured input.
Both modes feed the same lifecycle and scoring engine.
Install
# Homebrew
brew install samebits/tap/evidra
# Binary release (Linux/macOS)
curl -fsSL https://github.com/samebits/evidra/releases/latest/download/evidra_$(uname -s | tr '[:upper:]' '[:lower:]')_$(uname -m | sed 's/x86_64/amd64/;s/aarch64/arm64/').tar.gz \
| tar -xz -C /usr/local/bin evidra
# Build from source
make build # produces bin/evidra and bin/evidra-mcp
Quick Start (10-minute path)
# 1) Generate a signing key (strict mode)
evidra keygen
export EVIDRA_SIGNING_KEY=<base64>
# 2) Run and capture one operation
evidra run \
--tool kubectl \
--operation apply \
--artifact deploy.yaml \
--environment staging \
-- -- sh -c "kubectl apply -f deploy.yaml"
# 3) View score context
evidra scorecard --period 30d
The run output includes first useful fields:
risk_levelscorescore_bandsignal_summarybasis(previewvssufficient)confidence
CI/CD Ingestion Path
Use record when pipelines already run native commands and you only want ingestion:
evidra record --input record.json
Contract details:
How It Works
run/record -> prescribe -> report -> signals -> scorecard
- Evidra records operation intent (
prescribe). - Operation outcome is recorded (
report). - Signal engine computes behavior signals from evidence.
- Score engine calculates reliability score + band + confidence.
Current signals are documented in:
Supported Tools
| Adapter | Tools | Artifact |
|---|---|---|
| k8s/v1 | kubectl, helm, kustomize, oc (OpenShift) | YAML manifests |
| terraform/v1 | terraform | Plan JSON (terraform show -json) |
| docker/v1 | docker | Container inspect JSON |
| generic/v1 | Any (fallback) | Raw bytes — use --canonical-action for structured tools |
Full details: Supported Tools
Core Commands
| Command | Purpose |
|---|---|
run | Execute command live and record lifecycle outcome |
record | Ingest completed operation payload |
scorecard | Compute reliability scorecard |
explain | Show signal-level breakdown |
prescribe | Record pre-execution intent |
report | Record post-execution outcome |
validate | Verify evidence chain and signatures |
ingest-findings | Ingest SARIF findings |
compare | Compare actor reliability |
keygen | Generate Ed25519 signing keypair |
Full flags and subcommands:
MCP Integration Point
Evidra speaks MCP. Any MCP-capable automation client can report to Evidra.
evidra-mcp --evidence-dir ~/.evidra/evidence
Details:
CI Integration
GitHub Actions
- name: Setup Evidra
uses: samebits/evidra/.github/actions/setup-evidra@main
Generic CI (GitLab, Jenkins, CircleCI, etc.)
curl -fsSL https://github.com/samebits/evidra/releases/latest/download/evidra_$(uname -s | tr '[:upper:]' '[:lower:]')_$(uname -m | sed 's/x86_64/amd64/;s/aarch64/arm64/').tar.gz \
| tar -xz -C /usr/local/bin evidra
Guides:
API Backend (Self-Hosted)
Run the Evidra API backend with Docker Compose for centralized evidence collection.
Self-hosted supports evidence ingestion, key issuance, and entry browsing today. /v1/evidence/scorecard and /v1/evidence/explain are experimental and currently return 501 Not Implemented; use CLI/MCP for authoritative analytics. See Self-Hosted Experimental Status.
Docker Compose Quickstart
export EVIDRA_API_KEY=my-secret-key
docker compose up --build -d
curl http://localhost:8080/healthz
Environment Variables
| Variable | Purpose | Default |
|---|---|---|
DATABASE_URL | PostgreSQL connection string | (required) |
EVIDRA_API_KEY | API key for authenticated endpoints | (required) |
LISTEN_ADDR | HTTP listen address | :8080 |
EVIDRA_SIGNING_KEY | Base64 Ed25519 private key for signing | (optional) |
EVIDRA_SIGNING_KEY_PATH | Path to PEM Ed25519 private key | (optional) |
EVIDRA_SIGNING_MODE | strict or optional | strict |
EVIDRA_INVITE_SECRET | Secret for key issuance endpoint | (optional) |
Online Mode (CLI)
Point the CLI at the API backend to forward evidence:
evidra run \
--url http://localhost:8080 \
--api-key my-secret-key \
--tool kubectl --operation apply --artifact deploy.yaml \
-- kubectl apply -f deploy.yaml
Docs Map
Architecture and contracts:
- Architecture Overview
- V1 Architecture
- Protocol
- Core Data Model
- Canonicalization Contract
- Signal Spec
Operational guides:
Environment
| Variable | Purpose |
|---|---|
EVIDRA_SIGNING_KEY | Base64 Ed25519 private key |
EVIDRA_SIGNING_KEY_PATH | PEM Ed25519 private key path |
EVIDRA_SIGNING_MODE | strict (default) or optional |
EVIDRA_EVIDENCE_DIR | Evidence storage directory |
EVIDRA_ENVIRONMENT | Environment label (MCP server) |
EVIDRA_EVIDENCE_WRITE_MODE | strict or best_effort |
EVIDRA_METRICS_TRANSPORT | none (default) or otlp_http |
EVIDRA_METRICS_OTLP_ENDPOINT | OTLP HTTP endpoint |
EVIDRA_METRICS_TIMEOUT | Metrics export timeout (duration) |
Local smoke convenience (ephemeral signing):
export EVIDRA_SIGNING_MODE=optional
make test-mcp-inspector
Build and Test
make build
make test
make lint
make test-signals
License
Licensed under the Apache License 2.0.