confidential compute rooted in silicon, not a provider

attested-workload

in-tee runtime
a workload inside the tee, served over attested tls

runs an http service inside a cloud tee, proves what code is running with a hardware quote, and serves it over attested tls where the certificate spki is bound into the quote. one engine for aws nitro, amd sev-snp, and intel tdx.

$ attested-workload
$ aw run ./app
$ aw check https://<host>/
ok · platform measurement · value x · tls spki bound into quote

live mesh

the attested-TLS pattern here — bind sha256(cert_spki || X) into the hardware quote, no ca needed — is live across aws sev-snp, aws nitro, and azure sev-snp. the azure node serves the layer above over attested-TLS at attest.secure.build and closes a source → silicon loop (in-tee build digest bound as value_x).
re-verify any node yourself: unified-quote/live

the stack

agentic canon

agentic canon — no proof, no privilege
no proof, no privilege.
make behavior enforceable · turn failures into evolution · compose through proofs · carry trust forward.