Skip to main content
Use this page as the architecture review index. It ties together the agent runtime, account-management systems, credential model, durable kartas, spend gates, releases, and audit surfaces that matter before a production launch.

First-pass model

Karta separates the code that runs agents from the systems that manage identity, money, keys, billing, webhooks, and audit.
The security property to review is the boundary: a running agent handles the current session, but it does not become the account administrator, billing system, or key manager.

Review checklist

Integration patterns

Private backend integration

Your server holds a scoped API key, creates sessions, sends messages, and streams events to your own UI.

Public widget

Your page ships a publishable embed key, fenced by allowed origins, and Karta mints browser-safe session credentials.

Signed-in customer app

Your backend vouches for the end user so Karta can route durable memory to the right karta.

Existing AI client

Keep an OpenAI or Anthropic-shaped client and point it at a Karta agent adapter.

Questions to answer before launch

  • Which stable id creates the karta for each user, virtual employee, backend task, or fleet member?
  • Which client surfaces need API keys, session tokens, publishable embed keys, or adapter credentials?
  • Which spend caps should be hard stops, and who receives threshold webhooks?
  • Which people can deploy, roll back, mint keys, configure BYOK, and view audit?
  • Which events should your incident, billing, analytics, or CRM systems receive?
  • Which user identity level is required before the agent can read durable per-user context or request sensitive actions?
  • Which release rollback and troubleshooting steps should be in your runbook?

How Karta works

The request path, isolation model, and runtime/management separation.

Trust & compliance

Encryption, authentication hardening, secrets, webhooks, audit, and operator access.

Security model

Prompt injection assumptions, containment boundaries, credentials, and residual risks.

Production readiness

Launch checklist for releases, access, spend controls, webhooks, audit, and support.

API authentication

API keys, session tokens, route families, and auth failures.

Usage & budgets

Metering, caps, credits, threshold alerts, and 402 behavior.

Chat widget security

CSP, origin allowlists, graceful limits, privacy, and disclosure guidance.

Troubleshooting

Operational symptoms, likely causes, and the first fix to try.