Product · Agent Governor

Rewrite, don’t validate.

Agent Governor sits in front of the databases you already run and gives every AI agent a key with a scope. Instead of screening an agent’s SQL against a blocklist and hoping, the governor compiles your policy into the query itself — so it cannot reach what the policy doesn’t grant. Agents ground themselves with one request: their visible schema, with verified, runnable examples. Postgres first; warehouses next.

default-deny any PG client row-level scope full audit
What it gives you

Give agents the keys — keep the fence.

enforce

Rewrite, don’t validate

Policy is compiled directly into each query. After the rewrite, arbitrarily clever SQL — joins, windows, CTEs — cannot see past the fence, because the fence is part of the query.

policy

Default-deny policies

One policy language for sources, tables, columns, and rows. An empty policy grants nothing; every grant is explicit.

protect

Rows scoped, columns masked

Row filters confine every result to the agent’s slice — one tenant, one region. Sensitive columns come back masked without changing the query the agent wrote.

write

Writes with a seatbelt

INSERT, UPDATE, and DELETE run under the same scope: a write that would move a row outside the agent’s slice is rejected, and nothing changes.

connect

Any client the agent speaks

A Postgres wire listener, native MCP tools, and REST — psql, drivers, and agent frameworks connect with zero custom integration. Same enforcement on every path.

account

Audited and budgeted

Every statement — allowed or denied — lands in a durable audit trail with what was rewritten, masked, or clamped. Per-agent egress budgets cap how much any key can pull.

Part of the Oliver platform

One discipline, every database.

Put a fence between your agents and your Postgres.