naftiko: 1.0.0-alpha2 info: title: Governance Automation Runtime Capability description: A runtime capability that automates governance evaluation across consumed APIs — every call goes through Spectral + capability-rule + audit pipeline. tags: [Naftiko, Governance, Runtime] created: '2026-05-01' modified: '2026-05-04' binds: - namespace: naftiko-env keys: {NAFTIKO_API_KEY: NAFTIKO_API_KEY} capability: consumes: - namespace: naftiko-control type: http baseUri: https://api.naftiko.com authentication: {type: bearer, token: '{{NAFTIKO_API_KEY}}'} resources: - {name: governance-rules, path: /v1/governance/rules, operations: [{name: list-rules, method: GET}]} - {name: governance-evaluations, path: /v1/governance/evaluations, operations: [{name: evaluate, method: POST}]} exposes: - type: rest address: 0.0.0.0 port: 8080 namespace: governance-automation-runtime-capability-rest description: REST surface for runtime governance. resources: - {name: evaluate, path: /evaluate, operations: [{method: POST, name: evaluate, call: naftiko-control.evaluate}]} - type: mcp address: 0.0.0.0 port: 3010 namespace: governance-automation-runtime-capability-mcp description: MCP for runtime governance. tools: - {name: list-rules, hints: {readOnly: true}, call: naftiko-control.list-rules} - {name: evaluate, call: naftiko-control.evaluate} - type: skill address: 0.0.0.0 port: 3011 namespace: governance-automation-runtime-capability-skills description: Skill for runtime governance. skills: - name: governance-automation-runtime-capability description: Runtime governance automation. location: file:///opt/naftiko/skills/governance-automation-runtime-capability allowed-tools: list-rules,evaluate tools: - {name: list-rules, from: {sourceNamespace: governance-automation-runtime-capability-mcp, action: list-rules}} - {name: evaluate, from: {sourceNamespace: governance-automation-runtime-capability-mcp, action: evaluate}}