Skip to content

feat: add healthcare and multi-tenant-saas examples; startup-tpm agent script#10

Merged
imran-siddique merged 1 commit into
mainfrom
feat/complete-examples
Jun 10, 2026
Merged

feat: add healthcare and multi-tenant-saas examples; startup-tpm agent script#10
imran-siddique merged 1 commit into
mainfrom
feat/complete-examples

Conversation

@imran-siddique

Copy link
Copy Markdown
Contributor

Summary

  • healthcare/ -- Clinical decision support agent with EU AI Act Art. 14 HITL enforcement. Cedar Rule 2 blocks treatment plan writes for patient_risk_category=="high". Two paths: happy path (all allowed) and --trigger-hitl (advisory deny with HITL payload). HIPAA PHI catalog, reference TRACE output.

  • multi-tenant-saas/ -- SaaS platform with per-tenant Cedar policy isolation. Acme Corp is permissive (advisory warn on data export); Globex Financial is strict (hard deny for data export outside the data-compliance-workflow). Separate config files point to separate tenants/<name>/policy/ bundles. Reference TRACE outputs for both tenants.

  • startup-tpm/agent/echo_agent.py -- Minimal Python script matching the financial-services pattern: calls test.echo, prints the TRACE record. Referenced from startup-tpm/README.md.

Test plan

  • CMCP_DEV_MODE=1 cmcp start --config healthcare/cmcp-config.yaml starts without errors
  • python healthcare/agent/clinical_decision_agent.py -- all 3 calls allowed
  • python healthcare/agent/clinical_decision_agent.py --trigger-hitl -- treatment plan write returns advisory_deny with HITL payload
  • CMCP_DEV_MODE=1 cmcp start --config multi-tenant-saas/cmcp-config-acme-corp.yaml starts with acme-corp-v1.0
  • python multi-tenant-saas/agent/saas_agent.py --tenant acme-corp -- analytics allow, user_data_export advisory_deny, config_update allow
  • CMCP_DEV_MODE=1 cmcp start --config multi-tenant-saas/cmcp-config-globex-financial.yaml starts with globex-financial-v3.2
  • python multi-tenant-saas/agent/saas_agent.py --tenant globex-financial -- analytics allow, user_data_export deny, config_update advisory_deny
  • python startup-tpm/agent/echo_agent.py -- test.echo allow, TRACE record printed

Launching at Confidential Computing Summit, San Francisco, June 23 2026.

Generated with Claude Code

…agent script

Adds two new end-to-end examples for CC Summit (June 23 2026):

- healthcare/ -- clinical decision support agent with EU AI Act Art. 14 HITL
  enforcement. Cedar Rule 2 blocks treatment plan writes when
  patient_risk_category=="high"; --trigger-hitl flag demonstrates the block.
  Three EHR tools, HIPAA PHI catalog, reference TRACE output included.

- multi-tenant-saas/ -- SaaS platform with per-tenant Cedar policy isolation.
  Acme Corp uses advisory enforcement; Globex Financial uses hard deny for
  user_data_export outside the data-compliance-workflow. Separate config files
  point to separate policy bundles under tenants/. Reference TRACE outputs for
  both tenants included.

Also adds startup-tpm/agent/echo_agent.py and updates startup-tpm/README.md.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@imran-siddique imran-siddique merged commit 7dc592d into main Jun 10, 2026
2 of 3 checks passed
imran-siddique added a commit that referenced this pull request Jun 12, 2026
PRs #11, #13, and #14 were stacked on #10. When #10 squash-merged and its
branch was deleted, GitHub closed/merged the rest of the stack into the
deleted feature branches, so their content never reached main: financial
and healthcare shipped the unparseable advice{} Cedar policies, agents
called endpoints that do not exist, the mock servers and the cmcp verify
tamper demo were missing.

This restores the verified stack tip for the four original examples plus
.gitignore, with em dashes scrubbed per repo style, and merges the root
README: corrected table and 3-terminal quickstart from the stack, plus the
industrial-embodied-ai row with the #18 wording.

Verified before commit: all Cedar bundles parse and produce the documented
decisions (workflow-scoped allow, escalation/HITL deny, default deny), and
all catalog entries validate against the cmcp schema.

Co-authored-by: Claude Fable 5 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant