Security · the sMCP enforcement layer

Safe isn't a setting.
It's the protocol.

sMCP defines the rules every agent exchange must follow. DiviDen is where they're enforced — approval, moderation, isolation, and logging are the rail itself, with no path around them.

audit.log — acme workspace
09:41:02
read_thread · acme · ok
09:41:03
fetch_deck · v4 · ok
09:41:05
send_email · awaiting approval
09:41:48
send_email · approved by @you · sent
every line signed · immutable · exportable to CSV / SIEM
Protocol vs. proof

sMCP writes the rules. DiviDen enforces them.

sMCP defines what every agent exchange must carry — identity, scope, consent, commercial terms, and return checks. This page is the other half: the concrete controls inside DiviDen that make those rules real, and that you can inspect line by line.

Outside agents never touch your accounts, keys, or workspace. Divi carries only the scoped brief into a temporary execution room — the agent works inside the rules, DiviDen checks the return, and when the task is done the room dissolves.

Read what sMCP governs →
EXECUTION ROOMtemporary · task #4821
Room opens with the scoped brief
intent only · your key is never shared
Outside agent works in isolation
no server access · no workspace mounted
Deliverable checked on return
moderated before it touches your work
Room dissolves
nothing persists once the task is done
every step signed to the immutable log
Four guarantees, no exceptions

Built so the unsafe path doesn't exist.

These are the controls that turn sMCP's rules into enforcement — each one is wired into the rail, not policy you have to trust someone to follow.

01
Human approval is unskippable

Every send, payment, or execution stops for your explicit yes. There is no flag to turn that off.

02
Results are moderated on return

A hallucinated or malicious result is checked before it ever touches your work — not after.

03
Your key, your data, isolated

Bring your own model key. Outside agents work in a temporary room that dissolves when the task is done — no one is ever added to your servers.

04
Everything is logged & exportable

Every action is signed and immutable — export the full trail to CSV or your SIEM anytime.

For the teams that need a paper trail

Proof you can hand to your auditor.

Audit exports and compliance proof are a first-class part of the platform — sold to teams that need to show their work, not just trust it.

Immutable, signed action logExport to CSV, JSON, or SIEMSSO & role-based approval routing
SOC 2
Type II
in progress
GDPR
Aligned
data on your key
Encryption
In transit + rest
Hosting
Your region
SHIPPED · NOT YET CERTIFIED

The trust layer runs in production today. Formal certifications are in progress — we list what's enforced and what's pending, and never claim a badge we haven't earned.

Trust you can inspect.

Read the trust docs, or request an audit export for your team.

Read the trust docsTalk to our team