A deterministic payment kernel designed for a world where AI reasons but never decides alone
- Prerequisites
- Installation & Setup
- Running the Application
- Project Overview
- Core Philosophy
- System Architecture
- Component Specifications
- System Workflow
- Fraud Prevention Strategy
- Policy & Risk Engine
- Implementation Roadmap
- Technology Stack
Before you begin, ensure you have the following installed on your system:
| Requirement | Version | Purpose |
|---|---|---|
| Python | 3.10 or higher | Backend server & CAPS engine |
| Node.js | 18+ (LTS recommended) | Frontend build tooling |
| npm | 9+ (comes with Node.js) | Frontend package management |
| Ollama | Latest | Local LLM for intent interpretation |
| Git | Latest | Cloning the repository |
Linux (Ubuntu/Debian)
# Python 3.10+
sudo apt update
sudo apt install python3 python3-pip python3-venv -y
# Node.js 18+ (via NodeSource)
curl -fsSL https://deb.nodesource.com/setup_18.x | sudo -E bash -
sudo apt install nodejs -y
# Ollama
curl -fsSL https://ollama.com/install.sh | sh
# Git
sudo apt install git -ymacOS
# Install Homebrew (if not already installed)
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"
# Python 3.10+
brew install python@3.12
# Node.js 18+
brew install node
# Ollama
brew install ollama
# Git (usually pre-installed on macOS)
brew install gitWindows
-
Python 3.10+ — Download from python.org. During installation, check "Add Python to PATH".
-
Node.js 18+ — Download the LTS installer from nodejs.org.
-
Ollama — Download from ollama.com/download and run the installer.
-
Git — Download from git-scm.com. During installation, select "Git from the command line and also from 3rd-party software".
[!TIP] On Windows, use PowerShell or Git Bash for running the commands below. All
python3references should be replaced withpythonon Windows.
After installing Ollama, pull the required model:
# Start Ollama service (if not running)
ollama serve &
# Pull the CodeLlama model used for intent interpretation
ollama pull codellama:7bNote
The first pull will download ~3.8 GB. You can substitute a different model by modifying the LLM configuration in the server, but codellama:7b is the tested default.
git clone https://github.com/Atharva-Mendhulkar/CAPS.git
cd CAPSLinux / macOS
# Create a virtual environment
python3 -m venv venv
# Activate the virtual environment
source venv/bin/activate
# Install the project and all dependencies
pip install -e ".[dev]"Windows (PowerShell)
# Create a virtual environment
python -m venv venv
# Activate the virtual environment
.\venv\Scripts\Activate.ps1
# If you get an execution policy error, run this first:
# Set-ExecutionPolicy -ExecutionPolicy RemoteSigned -Scope CurrentUser
# Install the project and all dependencies
pip install -e ".[dev]"Windows (Command Prompt)
:: Create a virtual environment
python -m venv venv
:: Activate the virtual environment
venv\Scripts\activate.bat
:: Install the project and all dependencies
pip install -e ".[dev]"# Navigate to the frontend directory
cd frontend
# Install dependencies
npm install
# Return to the project root
cd ..Create a .env file in the project root:
Linux / macOS
cat > .env << 'EOF'
# Gemini API Configuration (optional - for cloud LLM mode)
GOOGLE_API_KEY=your_google_api_key_here
# Agent Configuration
GEMINI_MODEL=gemini-pro
AGENT_TEMPERATURE=0.1
AGENT_MAX_TOKENS=1024
# UPI Lite Constraints (Default Values)
MAX_TRANSACTION_AMOUNT=500
MAX_DAILY_SPEND=2000
MAX_TRANSACTIONS_PER_5MIN=10
# Logging
LOG_LEVEL=INFO
EOFWindows (PowerShell)
@"
# Gemini API Configuration (optional - for cloud LLM mode)
GOOGLE_API_KEY=your_google_api_key_here
# Agent Configuration
GEMINI_MODEL=gemini-pro
AGENT_TEMPERATURE=0.1
AGENT_MAX_TOKENS=1024
# UPI Lite Constraints (Default Values)
MAX_TRANSACTION_AMOUNT=500
MAX_DAILY_SPEND=2000
MAX_TRANSACTIONS_PER_5MIN=10
# Logging
LOG_LEVEL=INFO
"@ | Out-File -FilePath .env -Encoding UTF8Important
The GOOGLE_API_KEY is only needed if you want to use Google's cloud Gemini models. By default, CAPS uses a local Ollama model (codellama:7b), which requires no API key.
Use the included startup script to launch both backend and frontend:
# Make the script executable (first time only)
chmod +x scripts/start_server.sh
# Start everything
./scripts/start_server.shThis will start:
- Backend on
http://localhost:8000 - Frontend on
http://localhost:5175
If the startup script doesn't work for your platform, start each component separately:
Linux / macOS
# Activate the virtual environment
source venv/bin/activate
# Set Python path and start the server
export PYTHONPATH=$PYTHONPATH:$(pwd)/src
python3 -m caps.server🪟 Windows (PowerShell)
# Activate the virtual environment
.\venv\Scripts\Activate.ps1
# Set Python path and start the server
$env:PYTHONPATH = "$env:PYTHONPATH;$(Get-Location)\src"
python -m caps.server🪟 Windows (Command Prompt)
:: Activate the virtual environment
venv\Scripts\activate.bat
:: Set Python path and start the server
set PYTHONPATH=%PYTHONPATH%;%cd%\src
python -m caps.serverYou should see output like:
INFO: CAPS Components Initialized
INFO: Fraud Intelligence seeded with demo data
INFO: Uvicorn running on http://0.0.0.0:8000
cd frontend
npm run devYou should see:
VITE v6.x.x ready in XXX ms
➜ Local: http://localhost:5175/
- Open your browser and navigate to http://localhost:5175
- You should see the CAPS interface with a voice orb and text input
- Try typing:
pay 100 to amazon@upito test a payment flow - Try typing:
pay 200 to fakeshop99@upito see fraud blocking in action
# Activate the virtual environment first, then:
pytestWith coverage report:
pytest --cov=caps --cov-report=term-missingOne-Line Summary: CAPS is a deterministic payment kernel that survives AI failure. It is designed for a world where AI reasons but never decides alone.
Traditional payment systems assume human operators with explicit intent. Agentic systems violate this assumption because intent is inferred, actions are chained, and failures can amplify automatically. CAPS addresses this by strictly decoupling the reasoning layer (LLM) from the control plane (Policy Engine).
Important
In agentic payment systems, the risks are fundamentally different:
- Intent is inferred, not explicit
- Actions can chain automatically
- Failures amplify without human intervention
- Prompt injection can become financial fraud
CAPS creates a trust boundary between AI reasoning and payment execution, ensuring that no money moves unless all deterministic safety gates pass.
The main interface with voice orb, text input, and persistent balance bar.
Crowdsourced merchant reputation system with report submission and scam tracking.
Real-time transaction history with approval/denial status and confidence scores.
Trust decreases as data moves up the stack (towards the LLM) and increases as it moves down (towards the Ledger).
graph TD
A[User Input] -->|Low Trust| B[LLM Intent Interpreter]
B -->|Untrusted Suggestion| C[Schema Validator]
C -->|Validated Structure| D[Policy Engine]
D -->|High Trust| E[Execution Sandbox]
E -->|Cryptographic Guarantee| F[Immutable Ledger]
style A fill:#ff6b6b
style B fill:#feca57
style C fill:#48dbfb
style D fill:#1dd1a1
style E fill:#5f27cd
style F fill:#00d2d3
The system defaults to a denial state for any ambiguity.
The LLM is treated as an untrusted user input source. It interprets natural language but has zero authority to authorize transactions.
graph TB
subgraph "Interaction Layer"
UI[User Interface]
Voice[Voice Input]
end
subgraph "Reasoning Layer (Untrusted)"
LLM[LLM Intent Interpreter]
end
subgraph "Intelligence & Context Layer"
Memory[Session Memory]
RAG[RAG Vector Store]
Intel[Fraud Intelligence]
end
subgraph "Deterministic Control Plane (Trust Boundary)"
Validator[Schema Validator]
Context[Context Evaluator]
Policy[Policy & Risk Engine]
Consent[Consent Manager]
Router[Decision Router]
end
subgraph "Execution Layer"
Execution[Execution Sandbox]
end
subgraph "Audit Layer"
Ledger[(Immutable Audit Ledger)]
end
UI --> LLM
Voice --> LLM
Memory --> LLM
RAG --> LLM
LLM -->|JSON Intent| Validator
Validator -->|Valid Schema| Context
Context --> Policy
Intel --> Policy
Policy -->|Decision| Router
Router -->|APPROVE| Consent
Router -->|DENY/ESCALATE| Ledger
Consent -->|Signed Token| Execution
Execution --> Ledger
style LLM fill:#feca57
style Policy fill:#1dd1a1
style Execution fill:#5f27cd
style Ledger fill:#00d2d3
style Intel fill:#ff9ff3
style Memory fill:#54a0ff
style RAG fill:#54a0ff
| Layer | Purpose | Trust Level |
|---|---|---|
| Interaction Layer | Captures human intent via UI or Voice | |
| LLM Intent Interpreter | Translates natural language into structured JSON | |
| Deterministic Control Plane | Schema Validator, Context Evaluator, and Policy Engine | ✅ High Trust |
| Execution Sandbox | Mock UPI Lite execution with cryptographic invariants | ✅ Highest Trust |
| Immutable Audit Ledger | Write-only, hash-chained record of all actions | 🔒 Cryptographic Trust |
Role: Input capture and decision visualization.
Behavior: Displays the machine's decision to the user. Prevents "dark patterns" by forcing explicit consent visibility for every action proposed by the agent.
Warning
The frontend cannot execute payments directly. All requests must pass through the API gateway to the Intent Interpreter.
Role: Semantic translation. Converts unstructured text into strict JSON schema.
Example Transformation:
User Input: "Pay the canteen 50 rupees"
{
"intent_type": "PAYMENT",
"amount": 50,
"currency": "INR",
"merchant_vpa": "canteen@vit",
"confidence_score": 0.95
}Caution
Safety Mechanism: The LLM is never provided with sensitive context (balances, hard limits) in its system prompt. This prevents prompt injection attacks where a user might instruct the model to "ignore safety rules."
Role: Syntactic validation.
Logic: Enforces strict typing. If the LLM outputs a string where a float is required, or adds hallucinated fields, the request is instantly rejected with a PARSE_ERROR.
Fraud Prevention: Prevents payload smuggling and stops the LLM from hallucinating unauthorized parameters.
Role: Ground truth retrieval.
Function: Fetches real-time data strictly after the intent is parsed.
Data Sources:
- Wallet Balance
- Daily Spending Velocity
- User Location / Device Fingerprint
- Merchant Reputation Score
Note
Design Principle: Context is injected into the Policy Engine, not the LLM. This prevents the AI from "gaming" the rules.
This is a deterministic state machine that evaluates the tuple (parsed_intent, user_context, system_state). It utilizes a multi-layered defense model.
graph TD
Start([Intent Received]) --> L1[Layer 1: Hard Invariants]
L1 -->|Pass| L2[Layer 2: Velocity & Temporal]
L1 -->|Fail| Deny[DENY]
L2 -->|Pass| L3[Layer 3: Agentic Threat Defense]
L2 -->|Fail| Cool[COOLDOWN/ESCALATE]
L3 -->|Pass| L4[Layer 4: Behavioral Analysis]
L3 -->|Fail| Kill[DENY + Session Kill]
L4 -->|Pass| Approve[APPROVE]
L4 -->|Fail| Verify[REQUIRE_REAUTH]
style Deny fill:#ff6b6b
style Approve fill:#1dd1a1
style Cool fill:#feca57
style Kill fill:#ee5a6f
style Verify fill:#48dbfb
| Invariant | Rule | Action on Violation |
|---|---|---|
| Transaction Amount | ≤ ₹500 INR | ❌ DENY |
| Daily Spend | ≤ ₹2000 INR | ❌ DENY |
| Wallet Balance | ≥ Transaction Amount | ❌ DENY |
- Rule: Max 10 transactions per 5 minutes
- Rule: Detect rapid repetition of identical amounts (Draining Attack)
- Rule: Flag night-time spikes or rapid merchant switching
- Action: Violation results in
COOLDOWNorESCALATE
| Threat | Defense Mechanism |
|---|---|
| Recursive Execution | Execution events are write-only. Agent cannot read "Success" and trigger new payment in a loop |
| Confused Deputy | Consent tokens are bound to specific intents. Cannot reuse old consent for new transaction |
| Intent Splitting | Detects if large transaction is broken into micro-transactions (e.g., 10 × ₹199) |
- New devices, geolocation mismatches, session anomalies trigger additional verification
Role: Explicit control flow.
stateDiagram-v2
[*] --> PolicyDecision
PolicyDecision --> RequestConsent: APPROVE
PolicyDecision --> Terminate: DENY
PolicyDecision --> BiometricAuth: VERIFY
PolicyDecision --> PauseAgent: COOLDOWN
RequestConsent --> Execute
BiometricAuth --> Execute: Success
BiometricAuth --> Terminate: Failure
Execute --> [*]
Terminate --> [*]
PauseAgent --> [*]
Role: Simulator for UPI Lite execution.
Security: Uses idempotency keys and payload hashing.
Caution
The execution payload must match the approved intent hash exactly. Any deviation causes an abort.
Role: Forensic storage.
Structure: Append-only, hash-chained log.
Requirement: Every decision (Approved or Denied) is logged. This allows full reconstruction of the system state for post-incident analysis.
graph LR
A[Block 1] -->|Hash| B[Block 2]
B -->|Hash| C[Block 3]
C -->|Hash| D[Block 4]
A1[Intent ID<br/>Decision<br/>Timestamp] -.-> A
B1[Intent ID<br/>Decision<br/>Timestamp] -.-> B
C1[Intent ID<br/>Decision<br/>Timestamp] -.-> C
D1[Intent ID<br/>Decision<br/>Timestamp] -.-> D
style A fill:#00d2d3
style B fill:#00d2d3
style C fill:#00d2d3
style D fill:#00d2d3
Role: Conversational continuity.
Function: Stores the last N turns of conversation to resolve ambiguous references like "pay that merchant again" or "use the same amount".
Privacy: In-memory only. Cleared on session reset.
Role: Retrieval-Augmented Generation for transaction history.
Mechanism:
- Embeds transaction history using Gemini models.
- Stores vectors in a local Numpy store.
- Retrieves relevant past transactions for queries like "How much did I spend at Starbucks last week?".
Role: Community-driven reputation system.
Mechanism: Aggregates user reports to assign trust badges to merchants:
- VERIFIED_SAFE: High trust, low scam reports.
- LIKELY_SCAM: High volume of scam reports.
Integration: Feeds directly into Policy Layer 4 for behavioral blocking.
Role: Secure token issuance.
Mechanism:
- Generates JWT (JSON Web Tokens) for authorized intents.
- Enforces Scope (Merchant, Amount, Expiry).
- Single-Use: Replay protection via JTI tracking.
- Anti-Confused-Deputy: Validates
audclaim matches the intended merchant.
sequenceDiagram
actor User
participant UI as Interaction Layer
participant LLM as Intent Interpreter
participant Val as Schema Validator
participant Router as Decision Router
participant Context as Context Evaluator
participant Policy as Policy Engine
participant Router as Decision Router
participant Consent as Consent Manager
participant Sandbox as Execution Sandbox
participant Ledger as Audit Ledger
User->>UI: "Pay canteen ₹50"
UI->>LLM: Natural Language
LLM->>Val: JSON Intent
alt Invalid Schema
Val->>Ledger: Log PARSE_ERROR
Val->>UI: Show Error
else Valid Schema
Val->>Router: Valid Intent
Router->>Context: Fetch Auth Context
Context-->>Router: Balance, Velocity, Geo
Router->>Policy: Evaluate (Intent + Context)
Policy-->>Router: Result (APPROVE/DENY/VERIFY)
alt Policy Result: DENY
Router->>Ledger: Log Policy Violation
Router->>UI: Reject Transaction
else Policy Result: APPROVE
Router->>Consent: Request Human Authorization
Consent->>User: Display Consent Modal
User->>Consent: Biometric Signature
Consent-->>Router: Signed JWT
Router->>Sandbox: Execute (Intent + JWT)
Note over Sandbox: Validate JWT Hash == Intent Hash
Sandbox->>Ledger: Append Immutable Entry
Sandbox->>UI: Success Confirmation
end
end
- Input: User speaks or types a command
- Interpretation: LLM Agent converts text to JSON Intent
- Validation: Schema Validator ensures JSON integrity
- Contextualization: System fetches Balance and Velocity data
- Evaluation: Policy Engine runs deterministic checks (Layers 1-4)
- Routing: Decision Router determines the next step
- Authorization: User signs a Consent Token (JWT)
- Execution: Sandbox validates the Token and logs the transaction
- Feedback: User receives a confirmation message
CAPS addresses specific fraud vectors inherent to Agentic AI systems.
| Fraud Vector | Traditional System | CAPS Defense |
|---|---|---|
| Hallucination | N/A | LLM output is treated as suggestion. Strict schema validation rejects unknown merchants |
| Prompt Injection | N/A | LLM has no access to system tools or bank APIs. It only outputs text |
| Wallet Draining | Rate limiting | Velocity limits (Layer 2) + hard caps (Layer 1) prevent rapid fund depletion |
| Replay Attacks | Session tokens | Consent tokens are single-use and bound by intent_id and timestamps |
| Silent Automation | Assumed safe | Mandatory human consent step for every transaction (Human-in-the-loop) |
| Intent Splitting | N/A | Pattern detection identifies micro-transaction sequences (e.g., 10 × ₹199) |
graph TB
subgraph "Attack Vectors"
A1[Prompt Injection]
A2[Hallucination]
A3[Wallet Draining]
A4[Replay Attack]
A5[Silent Automation]
A6[Intent Splitting]
end
subgraph "Defense Layers"
D1[Zero-Trust LLM<br/>No System Access]
D2[Schema Validation<br/>Strict Typing]
D3[Velocity Controls<br/>Rate Limiting]
D4[Single-Use Tokens<br/>Cryptographic Binding]
D5[Mandatory Consent<br/>Human-in-Loop]
D6[Pattern Detection<br/>Intent Analysis]
end
A1 -.->|Blocked by| D1
A2 -.->|Blocked by| D2
A3 -.->|Blocked by| D3
A4 -.->|Blocked by| D4
A5 -.->|Blocked by| D5
A6 -.->|Blocked by| D6
style D1 fill:#1dd1a1
style D2 fill:#1dd1a1
style D3 fill:#1dd1a1
style D4 fill:#1dd1a1
style D5 fill:#1dd1a1
style D6 fill:#1dd1a1
style A1 fill:#ff6b6b
style A2 fill:#ff6b6b
style A3 fill:#ff6b6b
style A4 fill:#ff6b6b
style A5 fill:#ff6b6b
style A6 fill:#ff6b6b
The Policy & Risk Engine is a deterministic, zero-trust control layer that treats both the user and the agent as potential risk sources.
APPROVE | DENY | ESCALATE | REQUIRE_REAUTH | COOLDOWN
Important
This engine never consumes free-form LLM output — only validated structured intents + context snapshots.
txn_amount ≤ per_txn_cap (₹200-500)
daily_spend + txn_amount ≤ daily_cap (₹2000)
wallet_balance ≥ txn_amount
reload_frequency ≤ allowed_reload_rate
No overdraft / no auto-top-up without explicit consentViolation → DENY
Detect scripted or agent-driven abuse:
- Too many transactions in short window (e.g., N txns / 5 min)
- Repeated same-amount micro-payments (₹199 loops)
- Rapid merchant switching (spray pattern)
- Night-time anomaly vs user baseline
Violation → COOLDOWN or ESCALATE
Caution
These threats do not exist in traditional UPI, only in agent-mediated flows.
Rule: Agent cannot chain actions:
- One intent → one execution
- No implicit retries unless explicit idempotency key
Rule: Agent cannot modify after approval:
merchant_idamountpayee_vpa
Violation → DENY + Agent Session Kill
- Policy engine ignores LLM reasoning text
- Only consumes:
{intent_type, amount, merchant_id, user_id, consent_token} - Any attempt to smuggle logic via fields →
DENY
Prevent self-triggering agents:
Agent cannot trigger payments based on:
- Previous payment success
- Webhook callbacks
- Internal logs
Violation → HARD DENY
- Explicit UPI Lite merchant whitelist
- Block:
- Newly registered VPAs
- High-risk MCC categories
- VPAs with abnormal refund/chargeback ratio
- Lookalike VPAs (typosquatting)
- Known brand keyword misuse
- Sudden merchant name changes
Violation → ESCALATE
- Device fingerprint mismatch
- New device + payment attempt
- Emulator / rooted device signals
- Session age < threshold
Violation → REQUIRE_REAUTH
- User usually does P2P → now merchant payments
- Average ₹50 txns → sudden ₹200 max attempts
- Time-of-day deviation
Violation → ESCALATE
Every payment requires:
consent_tokenscoped to:- Merchant
- Amount range
- Expiry
- Token non-reusable unless explicitly marked recurring
No token → DENY
Agent cannot reuse:
- Old consent
- Consent from different merchant
- Consent from different intent type
Violation → DENY
- Unique
intent_id - Duplicate
intent_id→ NO-OP - Modified payload with same ID → DENY
Hash(intent + context snapshot)
Any mismatch between approval & execution → DENY
Escalation triggers:
- Conflicting signals (safe amount but risky merchant)
- User behavior anomaly + agent confidence < threshold
- Edge-case rule collisions
Escalation actions:
- Ask user for clarification
- Require biometric / UPI PIN
- Route to manual review (future)
Each policy decision logs:
intent_idpolicy_version- Rules triggered
- Decision outcome
- Cryptographic hashes
Logs are:
- Append-only
- Tamper-evident
- Replayable for forensic analysis
The agent can suggest.
The system decides.
The wallet obeys only math and rules.
Even if:
- LLM hallucinates
- Agent is compromised
- User prompt is malicious
No money moves unless all deterministic gates pass.
gantt
title CAPS Implementation Timeline
dateFormat YYYY-MM-DD
section Phase 1
Foundation & Agent Setup :p1, 2026-01-01, 14d
section Phase 2
Context Engineering :p2, after p1, 14d
section Phase 3
Policy Engine :p3, after p2, 21d
section Phase 4
Control Flow & Execution :p4, after p3, 14d
section Phase 5
Safety & Auditing :p5, after p4, 14d
section Phase 6
Sandbox Testing :p6, after p5, 10d
section Phase 7
Modularization :p7, after p6, 7d
Goal: Establish the local ADK environment and basic intent parsing.
Tasks:
- Initialize Antigravity/ADK environment
- Configure Gemini-based LLM Agent
- Define the JSON schema for Payment Intents
Deliverable: An agent that accepts text and outputs valid JSON objects
Goal: Ground the agent in reality without polluting the prompt.
Tasks:
- Build a Mock Context Service (REST API)
- Implement ADK OpenAPI Tool for
get_user_context() - Integrate context retrieval into the session memory, not the prompt
Deliverable: Agent can "see" user balance and location
Goal: Implement the deterministic decision logic.
Tasks:
- Develop the Rule Engine (Python microservice)
- Implement Layer 1 (Hard Limits) and Layer 2 (Velocity) checks
- Expose the engine via an ADK Function Tool (
check_policy())
Deliverable: System correctly approves/denies requests based on mock balance
Goal: Connect the brain to the hands.
Tasks:
- Implement the Decision Router using an ADK Sequential Agent
- Build the Mock Execution Engine with idempotency checks
- Create the
simulate_payment()tool
Deliverable: End-to-end flow where valid intents result in logged "transactions"
Goal: Add intelligent context, crowd-sourced fraud detection, and hardened security.
Tasks:
- Implement Session Memory and RAG Vector Store
- Build Crowdsourced Fraud Intelligence System
- Implement Immutable Audit Ledger (Hash-Chained)
- Implement Consent Manager (JWT & Scoping)
Deliverable: Intelligent system with memory, RAG, and crowdsourced fraud detection
Goal: Stress test and edge-case verification.
Tasks:
- Simulate attacks (Prompt Injection, Intent Splitting)
- Verify "Fail-Closed" behavior on system errors
- Refine fallback logic for ambiguous intents
Deliverable: A stability report and hardened code
Goal: Prepare for scale.
Tasks:
- Refactor components into standalone Antigravity Skills
- Document API boundaries
- Prepare for potential integration with real PSP adapters
| Component | Technology |
|---|---|
| Core Framework | Google Agent Development Kit (ADK) / Antigravity |
| Language | Python 3.10+ |
| LLM | Gemini (via Vertex AI or local distillation) |
| Database | SQLite / Redis (for local MVP state and ledger) |
| Transport | REST / gRPC for component communication |
| Format | JSON for all internal data interchange |
| Testing | pytest, locust (for load testing) |
| Deployment | Docker, Kubernetes (future) |
This project is licensed under the MIT License - see the LICENSE file for details.
Contributions are welcome! Please feel free to submit a Pull Request.
Built for a safer AI-powered payment future