Loading catalog…
Product briefing
ArcoreCodex
ProductionSecurity & Assurance
The 'Legal Brain' of Arcore. Codex provides a dual-engine architecture for digitizing federal contracts (financials, CLINs, rates) and enforcing executable policy-as-code using OPA/Rego for AI guardrails, data governance, and dynamic access control.
API: Available
Endpoints
4
Key features
5
Stack components
6
Controls noted
5
What changed
May 15, 2026: Added governance-aligned copy, compare tooling support, and transparency notes.
Key Features
- 1Federal Contract Digitization (CLINs/Rate Cards)
- 2Policy-as-Code Engine (OPA/Rego)
- 3Centralized Policy & Version Repository
- 4AI Prompt & Output Guardrails (Infrastructure)
- 5Dynamic Access Control Enforcement
API Endpoints
| Method | Path | Description |
|---|---|---|
| POST | /api/policy/evaluate/ | Evaluate a policy against input data |
| GET | /api/codex/contracts/ | List digitized federal contracts |
| POST | /api/policy/policies/ | Manage policy definitions |
| POST | /api/policy/policy-versions/ | Create immutable policy versions |
Usage Example
python
import requests
# Example interaction
response = requests.post(
url="https://api.arcore.internal/api/policy/evaluate/",
headers={"Authorization": "Bearer <token>"},
json={
"policy_key": "ai_guardrails",
"input": {"prompt": "hello", "user_id": "123"}
}
)
print(response.json())Recommended next products
Tech Stack
PythonDjangoOPA (Open Policy Agent)RegoNext.js/ReactGraphQL
Authentication
- •**Header:** `Authorization: Bearer <token>`
- •**Scopes:** RBAC is enforced at the object level via `ArcoreCodex` policies.
Compliance & Security
Compliance
- ✓Input Validation: Strict schema checks
- ✓Immutable Policy Versioning
- ✓Audit Logging: All policy decisions logged
Security
- ✓TLS 1.3
- ✓AES-256 encryption
Coming Soon
4 plannedAI Guardrail Policy Templates
Target: Q1 2025
Real-time Policy Violation Alerts
Target: Q2 2025
Automated Contract Ingestion (OCR/AI Parser)
Target: Q3 2025
Federal Regulation Library (FAR/DFARS)
Target: Q4 2025
Related Products
Arcore Sentinel
A high-performance application testing service built with .NET 8.0 and Blazor. Sentinel provides multi-protocol testing (REST API, Database, WebSocket), load testing with detailed performance metrics, API compliance analysis, and real-time health monitoring with comprehensive test result storage.
Multi-Protocol Testing (REST API, SQL Database, WebSocket)
Load & Performance Testing with Concurrent User Simulation
.NETBlazorEntity Framework Core
4 endpointsOpen
Arcore Test
An automated architecture discovery and tech-stack scanning platform. ArcoreTest traverses application repositories and database schemas to build a living inventory of applications, components, triggers, actions, technologies, and test scenarios for governance and review.
Automated repository and database introspection
Centralized metadata registry for applications, components, triggers, and actions
PythonDjangoPostgreSQL
5 endpointsOpen
Arcore Aegis
A cybersecurity governance, risk, and compliance platform that combines framework management, system categorization, risk assessment, audit evidence workflows, penetration-testing tracking, workforce capability mapping, and component health monitoring.
Multi-framework library and control mapping
FIPS 199 system categorization and risk assessment workflows
PythonDjangoReact
6 endpointsOpen