Private beta, testnet-first.
Hekate Gate is not yet claiming mainnet certification or enterprise production certification. Those claims require real custody, real facilitator verification, and external security review.
Security center
Hekate is built as a security control plane, so the public claims stay intentionally narrow: preflight checks, policy gates, signed receipts, and audit evidence.
Hekate Gate is not yet claiming mainnet certification or enterprise production certification. Those claims require real custody, real facilitator verification, and external security review.
Send vulnerability reports, disclosure coordination, and security review requests to the dedicated security inbox. Do not include private keys, seed phrases, or customer secrets.
Claim boundaries
Preflight checks, policy gates, signed receipts, hash-linked audit evidence, and clear remediation paths.
A guarantee of agent safety, full prompt-injection prevention, legal approval, or mainnet production certification.
Not certified. Mainnet claims require real custody, real facilitator verification, real settlement proofs, and external review.
Private beta. Enterprise production claims require SSO/RBAC hardening, incident runbooks, retention controls, and review evidence.
Controls
Deterministic allow, warn, block, and approval decisions. No LLM in the approval path.
Production mode requires remote custody and verifier-key pinning before mainnet claims.
Security receipts carry evidence hashes, policy hashes, scanner version, and signer identity.
Findings, approvals, payments, and evidence-retention events are append-only and hash chained.
Public discovery advertises private beta and mainnet not certified until external review passes.
High/critical dependency gate is enforced; moderate Next/PostCSS risk is tracked explicitly.
Production gates
KMS, HSM, MPC, or managed-wallet custody gateway configured and tested.
Verifier URL pinned, settlement proof available, and replay checks passing.
Real payment proof or testnet settlement proof attached to evidence bundle.
Receipt signature verifies against trust material and retained evidence hash.
External security review complete before any mainnet or enterprise certification language.
Production receipts bind subject hash, policy hash, evidence hash, scanner version, issuer, and signature. Verifiers should fail closed when any field, signature, schema, or trust key does not match.
View sample receiptConfigure Ed25519 signerProduction readinessSend vulnerability reports, disclosure coordination, and external security review notes to security@hekategate.com. Please do not include private keys, seed phrases, or customer secrets.
Contact securityHekate reduces ambiguity before agents call, trust, pay, or deploy. It does not guarantee agent safety, replace legal review, or replace an external security audit.