From ca12e621f440565e09adf6b8c91ce4f81ec83fc6 Mon Sep 17 00:00:00 2001
From: EfeDurmaz16 <efebarandurmaz05@gmail.com>
Date: Thu, 19 Mar 2026 20:38:00 +0300
Subject: [PATCH 1/2] feat(services): add Sardis Guard intelligence plane

Sardis Guard is a financial intelligence and governance service for AI
agent payments. It provides an 8-gate security pipeline with ML anomaly
detection (IsolationForest), OFAC sanctions screening, hierarchical
mandate delegation, and evidence-grade audit trails.

18 endpoints: policy evaluation, mandate CRUD, sanctions screening,
dashboard analytics, compliance reporting, and SSE event streaming.

https://sardis.sh | https://github.com/EfeDurmaz16/sardis-guard-mpp

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 schemas/services.ts | 101 ++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 101 insertions(+)

diff --git a/schemas/services.ts b/schemas/services.ts
index e08b4a50..dfa04ae6 100644
--- a/schemas/services.ts
+++ b/schemas/services.ts
@@ -4328,4 +4328,105 @@ export const services: ServiceDef[] = [
       },
     ],
   },
+  // ── Sardis Guard ────────────────────────────────────────────────────────
+  {
+    id: "sardis-guard",
+    name: "Sardis Guard",
+    url: "https://guard.sardis.sh",
+    serviceUrl: "https://guard.sardis.sh",
+    description:
+      "Financial intelligence and governance for AI agent payments. " +
+      "8-gate security pipeline with ML anomaly detection, OFAC sanctions screening, " +
+      "mandate delegation chains, and evidence-grade audit trails.",
+    categories: ["ai", "data"],
+    integration: "first-party",
+    tags: [
+      "policy",
+      "governance",
+      "compliance",
+      "sanctions",
+      "anomaly-detection",
+      "mandates",
+      "audit",
+      "firewall",
+    ],
+    status: "beta",
+    docs: {
+      homepage: "https://sardis.sh/docs",
+    },
+    provider: { name: "Sardis", url: "https://sardis.sh" },
+    realm: "guard.sardis.sh",
+    intent: "charge",
+    payment: TEMPO_PAYMENT,
+    endpoints: [
+      {
+        route: "POST /evaluate",
+        desc: "12-check spending policy evaluation",
+        amount: "1000",
+      },
+      {
+        route: "POST /evaluate/v2",
+        desc:
+          "Full 8-gate intelligence pipeline: governance, sanctions, ML risk, policy",
+        amount: "1000",
+      },
+      {
+        route: "POST /simulate",
+        desc: "Dry-run policy evaluation (no state mutation)",
+        amount: "500",
+      },
+      {
+        route: "GET /mandate",
+        desc: "View current spending mandate",
+        amount: "100",
+      },
+      {
+        route: "PUT /mandate",
+        desc: "Update spending mandate",
+        amount: "1000",
+      },
+      {
+        route: "GET /stats",
+        desc: "Agent spending statistics",
+        amount: "100",
+      },
+      {
+        route: "GET /audit",
+        desc: "Full audit trail with hash-chain integrity",
+        amount: "1000",
+      },
+      { route: "POST /mandates/root", desc: "Create root spending mandate" },
+      {
+        route: "POST /mandates/delegate",
+        desc: "Delegate child mandate with scope narrowing",
+      },
+      {
+        route: "POST /mandates/freeze",
+        desc: "Freeze mandate (with optional cascade to descendants)",
+      },
+      { route: "POST /mandates/resume", desc: "Resume a frozen mandate" },
+      {
+        route: "POST /screen/address",
+        desc: "Screen wallet address against OFAC sanctions",
+      },
+      {
+        route: "POST /screen/entity",
+        desc: "Screen entity name against sanctions lists",
+      },
+      {
+        route: "GET /dashboard/summary",
+        desc: "Aggregate dashboard statistics",
+      },
+      {
+        route: "GET /agents/:agent_id/risk",
+        desc: "Agent risk timeline and summary",
+      },
+      {
+        route: "GET /reports/session/:session_id",
+        desc: "Compliance evidence pack with hash chain validation",
+      },
+      { route: "GET /stream", desc: "SSE live evaluation event stream" },
+      { route: "GET /health", desc: "Health check" },
+    ],
+  },
 ];

From 565e3057700b1c6d597f057beb6d3e1321ea33fe Mon Sep 17 00:00:00 2001
From: EfeDurmaz16 <efebarandurmaz05@gmail.com>
Date: Thu, 19 Mar 2026 22:17:43 +0300
Subject: [PATCH 2/2] fix: update Sardis Guard URLs to live Cloud Run
 deployment

guard.sardis.sh DNS pending verification.
Using stable Cloud Run URL in the meantime.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 schemas/services.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/schemas/services.ts b/schemas/services.ts
index dfa04ae6..03d776e8 100644
--- a/schemas/services.ts
+++ b/schemas/services.ts
@@ -4332,8 +4332,8 @@ export const services: ServiceDef[] = [
   {
     id: "sardis-guard",
     name: "Sardis Guard",
-    url: "https://guard.sardis.sh",
-    serviceUrl: "https://guard.sardis.sh",
+    url: "https://sardis-guard-482463483786.us-central1.run.app",
+    serviceUrl: "https://sardis-guard-482463483786.us-central1.run.app",
     description:
       "Financial intelligence and governance for AI agent payments. " +
       "8-gate security pipeline with ML anomaly detection, OFAC sanctions screening, " +