Kernel live
Fail-closed execution.
Offline receipt verification.
Models propose. HELM governs execution.
It reads company state, turns drift into reviewed specs, executes approved actions through a fail-closed Kernel, and leaves signed receipts.
The Kernel is live. Company OS is preview. Enterprise is coming soon.
Fail-closed execution.
Offline receipt verification.
Reviewed access.
Outcome-to-receipt loop.
Reviewed commercial path.
No self-serve GA claim.
Verified public
artifacts
From outcome to receipt
Name the company result and the side effect required to produce it.
Read company state, owner, policy, prior receipts, and drift signals.
Turn drift into a reviewed GeneratedSpec or approval request.
Only approved side effects cross the fail-closed Kernel boundary.
Signed receipts and EvidencePack refs close the loop.
Where HELM fits
Decide what an agent should attempt.
Route and observe tool and MCP traffic.
Prove who or what is acting.
Reconstruct what happened from logs and traces.
Organize policy and compliance records.
Decides whether the side effect may run, returns ALLOW / DENY / ESCALATE, and records a signed receipt.
Proof, not logs
A log says traffic moved. A HELM receipt says the action was authorized under policy, and lets anyone check it.
HELM AI Kernel · Open source, Apache-2.0
Interposition, policy checks, sandboxing, signed proofs, and offline verifiability. Run anywhere. Integrate everywhere.
+ helm kernel status
HELM AI Company OS · Reviewed access
Company AI OS turns drift, requests, and operational signals into reviewed specs, approvals, Kernel-governed execution, and closure evidence.
Map agents, tools, owners, and policies in one operating layer.
Apply access, approval, and budget rules before work runs.
Require source hashes, receipts, and EvidencePack refs before web Search/Fetch evidence informs specs.
Bind decisions, receipts, and effects to governed actions.
Review drift and update policy from observed outcomes.
Governed work in action
Access change, deploy, customer-data update, finance transfer, vendor onboarding, competitive briefing, and board pack routes now have explicit proof paths.
Verifiable by design
HELM proof paths bind decisions to receipts and EvidencePacks where a source-owned route exists. Receipts show the decision. EvidencePacks show the review chain for that route. The ProofGraph links each decision to the policy, actor, and effects behind it.
Your browser recomputes the SHA-256 content hash and checks the Ed25519 signature. No network call is made.
The bundled sample is signed with a demonstration key. The verification math is real.
“HELM makes autonomy possible without giving up control.”
Start with the live Kernel, preview Company OS with review, and use Enterprise only when the workflow is ready for receipts.