Feature: Approvals / Governor
This page documents policy enforcement behavior for protected actions.Governor Policy Model
Policies define:- risk level (
safe,caution,danger) - confirm mode (
NONE,CONFIRM,WO_CODE) - approval requirement and approval type
Enforcement Paths
Server-side wrappers:withGovernor()for approval + typed confirm gatesenforceTypedConfirm()for typed-confirm-only actions
Approval Lifecycle
Approvals are persisted with statuses:pendingapprovedrejected
Typical Error Patterns
Protected route failures return structured errors such as:APPROVAL_REQUIREDAPPROVAL_PENDINGAPPROVAL_REJECTEDTYPED_CONFIRM_REQUIREDTYPED_CONFIRM_INVALID