Dashboard for approvals and policy. CLI for automation. Every gated action routes through the same queue — no bypass via native shell tools.
When an agent triggers approval_required, it appears here. Approve or reject. The agent receives the result asynchronously.
Real-time stream of all capability invocations. Also available via WebSocket on port 7701.
Hash-chained CBOR log. Filter by agent, capability, tier, time range. Tamper-evident and replayable.
Visual and YAML editor for rules at /data/kruxos/policies/. Four tiers per pattern. Changes hot-reload without restart.
| Section | What you control |
|---|---|
| Tokens | Create, rotate, revoke User API Bearer tokens |
| Models | Anthropic, OpenAI, OpenRouter, Gemini, local (Ollama/vLLM) |
| Agents | Create, configure, schedule agents |
| Vault | Manage secrets (use-not-read contract) |
| Workspace | Agent working directory |
kruxos ships on the appliance at /opt/kruxos/bin/kruxos. User API is loopback HTTP on port 7703 with krx_user_* bearer auth:
Five-field cron schedules, one-shot delays, or manual trigger via kruxos agent run <name>. Inter-agent communication via topic-based broker.
Dashboard → Models. Supports Anthropic, OpenAI (+ Codex), OpenRouter (200+ models), Google Gemini, and local inference. Per-agent model assignment.
References: Policy docs · Developer guide · auth.md