Computer-Use Agent Gateway — Deep Research & Implementation Reference
- Deep Research Report — 2026 landscape and MVP blueprint
- Review Log — dated reviewer interventions while agents continue writing
- Execution Backlog — execution and closure status across passes #5-#17
- Pass #18 Execution Plan — release integrity + long soak + full RDP side-channel E2E blockers
- Execution Agent Handoff Prompt — ready-to-run prompt for implementation pass
- Pass #14 Handoff Prompt — E3/E4/code-review team execution prompt
- Verifier Flow Spec — pass-seven normative verifier order and error taxonomy
- Attestation Verifier Policy — pass-seven policy source of truth
- Signer Migration Plan — pass-seven dual-sign + rollback sequencing
- CUA Schema Package — pass-seven versioned metadata schema registry
- CUA Migration Fixtures — pass-seven fixture corpus and expected outcomes
- Pass #8 Verifier Harness — executes fixture corpus with stable
VFY_*/AVP_*outcomes - Pass #8 Harness Report — latest local run results
- Remote Desktop Policy Matrix — pass-nine
B1machine-checkable feature/mode/tier controls - Pass #9 Matrix Harness — fixture-driven matrix validator with fail-closed codes
- Pass #9 Matrix Report — latest local run results
- Injection Outcome Schema — pass-nine
B2standardized injection outcome contract - Injection Backend Capabilities — pass-nine
B2backend feature/permission limits - Injection Capability Fixtures — pass-nine
B2fixture corpus - Pass #9 Injection Harness — fixture-driven injection capability validator
- Pass #9 Injection Report — latest local run results
- Policy Event Mapping — pass-nine
B3end-to-end preflight/audit mapping - Policy Event Mapping Matrix — pass-nine
B3machine-checkable flow mapping - Policy Mapping Fixtures — pass-nine
B3fixture corpus - Pass #9 Policy Mapping Harness — fixture-driven mapping validator
- Pass #9 Policy Mapping Report — latest local run results
- Post-Condition Probe Suite — pass-ten
C1deterministic click/type/scroll/key-chord probe contract - Post-Condition Probe Fixtures — pass-ten
C1fixture corpus - Pass #10 Post-Condition Harness — fixture-driven probe-state validator
- Pass #10 Post-Condition Report — latest local run results
- Remote Session Continuity Suite — pass-ten
C2reconnect/packet-loss/gateway-restart continuity contract - Session Continuity Fixtures — pass-ten
C2fixture corpus - Pass #10 Session Continuity Harness — fixture-driven continuity chain validator
- Pass #10 Session Continuity Report — latest local run results
- Ecosystem Integration Plan — pass-eleven provider/runtime integration strategy (OpenAI/Claude/OpenClaw/trycua)
- Integration Team Handoff Prompt — team-parallel execution prompt for runtime integration
- Envelope Semantic Equivalence Suite — pass-eleven
C3wrapper equivalence contract - Envelope Equivalence Fixtures — pass-eleven
C3fixture corpus - Pass #11 Envelope Equivalence Harness — fixture-driven wrapper parity validator
- Pass #11 Envelope Equivalence Report — latest local run results
- Repeatable Latency Harness — pass-eleven
D1benchmark harness contract - Latency Benchmark Fixtures — pass-eleven
D1fixture corpus - Pass #11 Latency Harness — fixture-driven benchmark validator
- Pass #11 Latency Report — latest local run results
- Verification Bundle Format — pass-twelve
D2end-to-end bundle contract - Verification Bundle Fixtures — pass-twelve
D2fixture corpus - Pass #12 Verification Bundle Harness — fixture-driven bundle validator
- Pass #12 Verification Bundle Report — latest local run results
- Browser Action Policy Suite — pass-twelve browser action policy contract
- Browser Action Fixtures — pass-twelve browser action fixture corpus
- Pass #12 Browser Action Harness — fixture-driven browser action validator
- Pass #12 Browser Action Report — latest local run results
- Session Recording Evidence Suite — pass-twelve evidence pipeline contract
- Session Recording Fixtures — pass-twelve session recording fixture corpus
- Pass #12 Session Recording Harness — fixture-driven evidence validator
- Pass #12 Session Recording Report — latest local run results
- Orchestration Isolation Suite — pass-twelve container/VM isolation contract
- Orchestration Fixtures — pass-twelve orchestration fixture corpus
- Pass #12 Orchestration Harness — fixture-driven isolation validator
- Pass #12 Orchestration Report — latest local run results
- CUA Policy Evaluation Suite — pass-twelve CUA policy evaluation contract
- Policy Evaluation Fixtures — pass-twelve policy evaluation fixture corpus
- Pass #12 Policy Evaluation Harness — fixture-driven policy evaluation validator
- Pass #12 Policy Evaluation Report — latest local run results
- CUA Remote Desktop Ruleset — pass-thirteen built-in remote-desktop ruleset (guardrail mode)
- CUA Remote Desktop Strict Ruleset — pass-thirteen strict remote-desktop ruleset (fail-closed mode)
- CUA Remote Desktop Permissive Ruleset — pass-thirteen permissive remote-desktop ruleset (observe mode)
- Canonical Adapter CUA Contract — pass-thirteen
E1adapter-core CUA flow contract - Adapter Contract Fixtures — pass-thirteen
E1fixture corpus - Pass #13 Adapter Contract Harness — fixture-driven adapter contract validator
- Pass #13 Adapter Contract Report — latest local run results
- Provider Conformance Suite — pass-thirteen
E2cross-provider parity contract - Provider Conformance Fixtures — pass-thirteen
E2fixture corpus - Pass #13 Provider Conformance Harness — fixture-driven provider parity validator
- Pass #13 Provider Conformance Report — latest local run results
- Pass #14 Code Review Report — thorough review of passes #11–#13 (3 critical issues fixed)
- OpenClaw CUA Bridge Suite — pass-fourteen
E3OpenClaw CUA bridge event mapping contract - OpenClaw Bridge Fixtures — pass-fourteen
E3fixture corpus - Pass #14 OpenClaw Bridge Harness — fixture-driven OpenClaw bridge validator
- Pass #14 OpenClaw Bridge Report — latest local run results (10/10 pass)
- trycua Connector Evaluation — pass-fourteen
E4trycua/cua runtime connector evaluation - trycua Connector Suite — pass-fourteen
E4connector compatibility contract - trycua Connector Fixtures — pass-fourteen
E4fixture corpus - Pass #14 trycua Connector Harness — fixture-driven connector compatibility validator
- Pass #14 trycua Connector Report — latest local run results (9/9 pass)
- Browser Automation — Playwright, Puppeteer, Selenium, CDP, WebDriver BiDi, chromedp
- Focus: action APIs, structured context (DOM/A11y), tracing, CDP proxy/mediation
- Remote Desktop — Guacamole, noVNC, VNC, RDP, Weston, Xvfb, GNOME Remote Desktop, WebRTC, DCV
- Focus: protocol mediation, session recording, headless compositors, containment
- Input Injection — uinput, XTEST, SendInput, Quartz Events, UIA, XDG Portals
- Focus: platform-specific injection, permission models, Wayland security
- Session Recording — FFmpeg, ScreenCaptureKit, Desktop Duplication API, PipeWire, CDP capture
- Focus: frame capture pipelines, artifact encoding, receipt evidence collection
- Attestation & Signing — TPM 2.0, Nitro Enclaves, SGX, SEV-SNP, TDX, Sigstore, COSE, Secure Enclave
- Focus: hardware roots of trust, keyless signing, transparency logs, receipt integrity
- Orchestration — Docker, containerd, gVisor, Firecracker, Kata Containers, KVM, QEMU
- Focus: isolation models, microVM vs container tradeoffs, runtime lifecycle
- Receipt Design — hash chains, COSE envelopes, evidence hashing, redaction, multi-signature
- Focus: schema design, verification flows, artifact storage, append-only ledger patterns
- Policy Engine — allowlists, redaction, approval hooks, rate limits, observe/guardrail/fail-closed modes
- Focus: policy language design, enforcement mechanics, integration with Clawdstrike guards
- Ecosystem Integrations — OpenAI/Claude/OpenClaw/trycua adapter strategy
- Focus: canonical contract first, provider translators, parity fixtures, fail-closed adapter drift handling
| Topic | Status | Last Updated |
|---|---|---|
| Browser Automation | Pass #12 Execution Artifacts + Harness-Validated | 2026-02-18 |
| Remote Desktop | Pass #18 Release-Gate Validation In Progress (matrix harness + restore hardening complete; long-run host validation pending) | 2026-02-19 |
| Input Injection | Pass #18 Release-Gate Validation In Progress (soak harness timeout + determinism hardening complete; 6-24h run pending) | 2026-02-19 |
| Session Recording | Pass #12 Execution Artifacts + Harness-Validated | 2026-02-18 |
| Attestation & Signing | Pass #12 Verification Bundle (D2) + Harness-Validated |
2026-02-18 |
| Orchestration | Pass #12 Execution Artifacts + Harness-Validated | 2026-02-18 |
| Receipt Schema | Pass #11 Envelope Equivalence (C3) + Harness-Validated |
2026-02-18 |
| Policy Engine | Pass #17 Runtime Hardening Complete; Pass #18 Production Gate Validation In Progress | 2026-02-19 |
| Ecosystem Integrations | Pass #17 Runtime Hardening Complete; Pass #18 Production Gate Validation In Progress | 2026-02-19 |
Program status: Pass #17 implementation remediation is complete. Pass #18 release-gate validation is now the active blocker set: signed/notarized artifact verification, sustained 6-24h soak execution, full Windows/Linux side-channel host validation evidence, and closure of remaining PR review threads.