naftiko: 1.0.0-alpha2
info:
  title: Nwm Servicenow Zero Touch Governance Flow
  description: A Northwestern Mutual ServiceNow flow that auto-creates a governance ticket on every Naftiko-detected control failure.
  tags: [Naftiko, NWM, ServiceNow, Governance]
  created: '2026-05-01'
  modified: '2026-05-04'
binds:
- namespace: servicenow-env
  keys: {SN_HOST: SN_HOST, SN_USER: SN_USER, SN_PASSWORD: SN_PASSWORD}
capability:
  consumes:
  - namespace: servicenow
    type: http
    baseUri: https://{{SN_HOST}}
    authentication: {type: basic, username: '{{SN_USER}}', password: '{{SN_PASSWORD}}'}
    resources:
    - {name: incidents, path: /api/now/table/incident, operations: [{name: create-incident, method: POST}, {name: list-incidents, method: GET}]}
    - name: incident
      path: /api/now/table/incident/{{sys_id}}
      operations:
      - {name: get-incident, method: GET, inputParameters: [{name: sys_id, in: path}]}
  exposes:
  - type: rest
    address: 0.0.0.0
    port: 8080
    namespace: nwm-servicenow-zero-touch-governance-flow-rest
    description: REST surface for zero-touch governance.
    resources:
    - {name: incident, path: /incidents, operations: [{method: POST, name: create-governance-incident, call: servicenow.create-incident}]}
  - type: mcp
    address: 0.0.0.0
    port: 3010
    namespace: nwm-servicenow-zero-touch-governance-flow-mcp
    description: MCP for zero-touch governance.
    tools:
    - {name: create-governance-incident, call: servicenow.create-incident}
    - {name: list-incidents, hints: {readOnly: true}, call: servicenow.list-incidents}
    - name: get-incident
      hints: {readOnly: true}
      inputParameters: [{name: sys_id, type: string, required: true}]
      call: servicenow.get-incident
  - type: skill
    address: 0.0.0.0
    port: 3011
    namespace: nwm-servicenow-zero-touch-governance-flow-skills
    description: Skill for zero-touch governance.
    skills:
    - name: nwm-servicenow-zero-touch-governance-flow
      description: Zero-touch ServiceNow governance flow.
      location: file:///opt/naftiko/skills/nwm-servicenow-zero-touch-governance-flow
      allowed-tools: create-governance-incident,list-incidents,get-incident
      tools:
      - {name: create-governance-incident, from: {sourceNamespace: nwm-servicenow-zero-touch-governance-flow-mcp, action: create-governance-incident}}
      - {name: list-incidents, from: {sourceNamespace: nwm-servicenow-zero-touch-governance-flow-mcp, action: list-incidents}}
      - {name: get-incident, from: {sourceNamespace: nwm-servicenow-zero-touch-governance-flow-mcp, action: get-incident}}