Skip to content
Operator console

The view an SRE actually wants.

Live policy constitution, registered tools, and the controls a human keeps when SentinelCloud asks for confirmation.

Policy constitution

7 clauses
  • C1critical

    Production services must always have at least 3 replicas at the end of any action.

    applies to: rollback, scale, right_size, restart_pods
  • C2critical

    No action may delete persistent storage without an explicit human "DELETE" confirmation.

    applies to: open_pr, right_size
  • C3high

    WAF rules must include a TTL no longer than 14 days and must reference a CVE id.

    applies to: waf_rule
  • C4high

    Mesh weight changes may not move more than 25% of traffic in a single step.

    applies to: mesh_weight
  • C5high

    Cost-affecting actions over USD 500 must be paused for human review.

    applies to: scale, right_size, open_pr
  • C6critical

    Critical-severity actions always pause for human-on-the-loop confirmation.

    applies to: rollback, scale, right_size, open_pr, waf_rule, mesh_weight, cache_purge, feature_flag, restart_pods
  • C7medium

    Feature flag flips on payment-related services require a 5-minute cooldown between toggles.

    applies to: feature_flag

Tool registry

10 tools
  • rollbackrisk lowreversible yes

    Roll a service back to a previous revision

    {from: string, to: string, memoryBumpPct?: number}
  • restart_podsrisk lowreversible yes

    Rolling restart a deployment

    {deployment: string, batchSize?: number}
  • scalerisk lowreversible yes

    Adjust replica count

    {deployment: string, replicas: number}
  • right_sizerisk mediumreversible yes

    Adjust CPU/memory requests-limits

    {deployment: string, cpu: string, memory: string}
  • open_prrisk safereversible yes

    Open a GitHub PR with an IaC change

    {repo: string, branch: string, files: object, title: string, body: string}
  • waf_rulerisk mediumreversible yes

    Insert a WAF rule

    {cve: string, ruleExpr: string, ttlDays: number}
  • mesh_weightrisk mediumreversible yes

    Adjust mesh traffic weights

    {vs: string, dest: string, shiftPct: number}
  • cache_purgerisk lowreversible no

    Purge a cache namespace

    {cache: string, namespace: string}
  • feature_flagrisk lowreversible yes

    Flip a feature flag

    {flag: string, value: boolean}
  • human_reviewrisk safereversible yes

    Pause for human review

    {reason: string}