Custodian β€” Operator Panel

⚠ Demo mode β€” all steps are live. Stripe charges are test-mode (no real money). SMS approval codes go to the operator's phone and appear in the mockup below each step.
Demo Script β€” run steps in order
  1. Step 0 β€” Earn $1,200 β€” Shows revenue in. No band, no approval, no cap. Earning is always unrestricted by design.
  2. Step 1 β€” Spend $85 autonomously β€” Within the agent's authority band β†’ executes with zero human input. PaymentIntent ID auto-fills the Step 7 refund input.
  3. Step 2 β€” Request $3,500 β€” Exceeds the band. System escalates and sends a real SMS to the operator's phone. The code appears in the mockup below AND auto-fills Step 3.
  4. Step 3 β€” Approve with the SMS code β€” Code is pre-filled. Just hit Approve. Money moves only after a real human approves.
  5. Step 4 β€” Engage kill switch β€” Absolute override. No band, no approval, no exception can bypass it.
  6. Step 5 β€” Prove kill switch blocks everything β€” Try a normally-fine $40 spend. Gets denied outright. The AI cannot override this.
  7. Step 6 β€” Release kill switch β€” Normal evaluation resumes.
  8. Step 7 β€” Refund $85 β€” PI is pre-filled from Step 1. Refunds always escalate β€” no autonomous refund path by design.
  9. Step 8 β€” Approve the refund β€” Second SMS code auto-fills. Hit Approve to execute.
πŸ’‘ Watch the Live Console in another tab β€” the audit feed and verdict panels update in real time as you run each step.

Step 0 β€” Real revenue in (no cap)

Earning isn't gated β€” only spend is. No band, no approval needed. This is intentional asymmetric design: receiving money carries none of the risk that spending it does.

Step 1 β€” Autonomous spend (no human needed)

$85.00 is within the agent's authority band β€” the kernel clears it with zero human involvement. The PaymentIntent ID auto-fills the refund input in Step 7.

Step 2 β€” Over-budget escalation (real SMS incoming)

$3,500.00 exceeds the per-action cap. The kernel cannot approve this β€” it escalates and sends a real SMS code to the operator's phone. The code appears in the mockup and auto-fills Step 3.

Verizon
β€”
πŸ’¬
Messages now
Custodian
Your Custodian approval code is: β€’β€’β€’β€’β€’β€’
This code expires in 10 minutes.
⬆ Real SMS delivered to operator's phone Β· Code auto-fills Step 3

Step 3 β€” Approve with the real code

The code is pre-filled from the SMS β€” shown as asterisks so it stays off-screen. Click Approve.

Step 4 β€” Engage the kill switch

Absolute override β€” every spend and refund request is denied instantly, regardless of band or cap. Not even a valid approval code can bypass it while this is engaged.

Step 5 β€” Prove the kill switch overrides everything

A normally-fine $40.00 in-band request β€” denied outright while the kill switch is engaged. The AI has no recourse.

Step 6 β€” Release the kill switch

Normal evaluation resumes. Requests are checked against the band and cap again.

Step 7 β€” Refund (always escalates β€” no autonomous refund path)

The PaymentIntent ID from Step 1 is pre-filled below. Refunds always require human approval β€” there is intentionally no autonomous refund path.

Verizon
β€”
πŸ’¬
Messages now
Custodian
Your Custodian approval code is: β€’β€’β€’β€’β€’β€’
This code expires in 10 minutes.
⬆ Real SMS delivered to operator's phone Β· Code auto-fills Step 8

Step 8 β€” Approve the refund

Code is pre-filled from the SMS β€” masked for security. Click Approve refund to execute.

Arc complete β€” see what happened

Every action you just took is recorded in real time. Open the Live Console and look at three things:

Audit Feed β†’ Every earn, spend, denial, kill-switch toggle, and refund β€” timestamped and in order. The $40 denial during the kill-switch test will show DENIED while every approved action shows the real Stripe PaymentIntent ID.
Net Balance card β†’ Shows real revenue in vs. net spend. The $1,200 earn was uncapped; the $85 autonomous spend and $3,500 override are tracked separately; the $85 refund nets out. You can see exactly which dollars the AI moved on its own vs. which required you.
Ask Nemotron β†’ Click the chat bubble on the Live Console and ask "what just happened?" β€” you'll get an answer from the actual model that ran all those requests, explaining what it could and couldn't do and why.