B8Grid Cloud trust plane connecting local CLI, encrypted cloud control, product dashboard, and tamper-evident audit trail

Agent-native full-stack cloud

B8Grid Cloud

The control plane for agents and humans to plan, build, verify, deploy, and operate full-stack software without dashboard glue, secret shuffling, or hidden infrastructure folklore.

Open control planeExplore Source Graph
Main origin
b8grid.cloud
App runtime
b8grid.app
CLI and docs
b8grid.dev
Posture
production-paas-alpha / Not GA

Vision

Make full-stack product building obvious to agents.

No infrastructure ceremony

Developers should not need to wire dashboards, copy env vars, babysit CI, or understand every substrate before shipping.

Primitives over feature sprawl

Identity, source, secrets, workspaces, builds, previews, deploys, audit, and policy become composable platform primitives.

Useful affordances, honest contracts

CLI, files, logs, branches, URLs, and review surfaces can be simulated where helpful, but durability, isolation, and readiness stay explicit.

Git and GitHub are compatibility layers

Source Graph keeps familiar source workflows while moving toward verified authorship, policy-controlled writes, and tamper-evident history.

Products

One platform spine, many user-facing surfaces.

change graphproduction-paas-alpha / Not GA

Source Graph

Agent-native source control

Content-addressed source, proposals, policy, review, import/export, and a hosted management surface that keeps proprietary source text out of unsafe pages.

Open surface
zero trustlocal and server-ready primitives

Cloud Trust

Identity, secrets, and sessions

Short-lived Cloud Trust sessions, service actors, scoped grants, encrypted secret envelopes, and audit records designed so agents do not need dashboard-secret copying.

Open surface
workspace spinelocal-process-only today

Workspaces

Agent workspaces

Local-feeling workspace, build, preview, and command surfaces that can evolve into cloud-hosted private workspaces without lying about durability or isolation.

Open surface
ship loopdomain reserved for deployments

B8Grid App Runtime

Deployments and apps

A Vercel-like app runtime target for generated apps, preview URLs, deploy evidence, rollback state, and production-readiness gates on separate app origins.

Open surface
signed installdistribution surface

B8Grid Dev

CLI and distribution

Direct B8Grid CLI releases, provenance metadata, checksums, SBOMs, and install flows built for agents that need scriptable trust before first project init.

Open surface
tamper-evidentblocks GA until evidence exists

Launch Gates

Policy and operations

Readiness gates for production controls, DNS/TLS, identity, KMS, durable storage, audit export, incident response, billing boundaries, and explicit promotion.

Open surface
OrganizationsSecretsSource GraphWorkspacesBuildsPreviewsAudit

Build loop

From prompt to production evidence, without side quests.

01

Prompt

A developer or agent describes the product, workflow, or fix.
02

Plan

B8Grid captures source intent, policy, trust, and environment contracts.
03

Build

Workspaces, dependencies, scripts, tests, and previews run in explicit sandbox posture.
04

Review

Source Graph turns changes into reviewable proposals with metadata-safe visibility.
05

Deploy

Artifacts, provenance, secrets, DNS/TLS, and runtime evidence attach to the ship decision.

Trust contract

Security is a product surface, not a settings page.

B8Grid is built for proprietary code, compromised dependencies, hostile build hooks, high-value deployment tokens, and agents that follow the easiest path. The easiest path must also be the safer path.

PrimitiveDefaultVisible contract
SourceMetadata-safe hosted surfacesRaw source text is not rendered in unsafe pages.
SecretsEncrypted envelopes and scoped grantsNo raw secret values in audit, snapshots, logs, or prompts.
SessionsShort-lived Cloud Trust authorityActor, scope, expiry, and token absence stay inspectable.
BuildsSandboxed execution postureScripts, artifacts, checksums, and provenance are attached to output.
LaunchExplicit promotion gateproduction-paas-alpha is not GA until external controls are proven.

Domain map

Separate origins keep product intent and security boundaries clear.

b8grid.cloud

Main product and control plane

Console, organizations, projects, Source Graph Cloud, billing, trust, production readiness.

b8grid.app

Generated app runtime

Developer app URLs, previews, production deployments, and isolated customer origins.

b8grid.dev

Developer distribution

CLI install, SDK/API docs, provenance, templates, and release notes.

b8grid.com / b8grid.xyz

Redirects and experiments

Brand fallback and lab surfaces redirect to the control plane unless explicitly marked otherwise.

Current public-launch language stays honest: production-paas-alpha is useful for public beta work, but generalAvailability remains false until deployed controls, external evidence, and explicit promotion are complete.