GreenLight puts approval gates on everything that matters. Deploys, PRs, expenses, access requests. One place to review, approve, or block. Full audit trail.
See Active GatesReal approval gates from the BlackRoad fleet. Every deploy, every access request, every change goes through GreenLight.
All tests passed. 0 security findings. Ready for fleet deployment.
Scheduled key rotation. Requires manual approval for infrastructure changes.
Policy violation: no public buckets. Denied automatically by security policy.
No code reaches production without passing tests, security scans, and approval. Auto-approve when policies match. Manual review when they don't.
SSH access, database credentials, API keys. Request, justify, approve. Time-limited access with automatic revocation.
Require approvals before merge. CODEOWNERS enforcement. Block merges with failing checks. Integrates with Gitea.
Domain renewals, hardware purchases, service subscriptions. Every dollar goes through an approval flow with budget tracking.
Adding, modifying, or removing DNS records requires approval. Prevents accidental outages from misconfigurations.
AI agents request elevated permissions through GreenLight. Human-in-the-loop for sensitive operations.
Define approval policies in code. Auto-approve low-risk changes. Escalate high-risk ones. Rules, not guesswork.
Every approval, denial, and escalation logged. Who approved what, when, and why. Immutable history.
Approved access expires automatically. No permanent permissions. Request again when you need it again.
Trigger approvals from any event. Integrate with Gitea, RoadRunner, Cruise, RoadLoop. Any tool can request a gate.
Local Ollama models summarize changes, flag risks, and suggest approval/denial. Human makes the final call.
Approval data stays on your network. No SaaS dependency. SQLite + PostgreSQL storage. WireGuard encrypted.