Replace static protection rules with agentic guardrails. Watchflow ensures consistent quality standards with smarter, context-aware protection for every repo.
Watchflow is a governance tool that uses AI agents to automate policy enforcement across your GitHub repositories. By combining rule-based logic with AI-powered intelligence, Watchflow provides context-aware governance that adapts to your team's workflow and scales with your organization.
Traditional governance tools are rigid and often fail to capture the complexity of real-world development scenarios. Teams need:
- Intelligent rule evaluation that understands context and intent
- Flexible acknowledgment systems that allow for legitimate exceptions
- Real-time governance that scales with repository activity
- Plug n play GitHub integration that works within existing workflows
Watchflow addresses these challenges through:
- AI-Powered Rule Engine: Uses AI agents to intelligently evaluate rules against repository events
- Hybrid Architecture: Combines rule-based logic with AI intelligence for optimal performance
- Intelligent ACKs: Processes acknowledgment requests through PR comments with context-aware decision-making
- Plug n play Integration: Works within GitHub interface with no additional UI required
Define governance rules in plain English. Watchflow translates these into actionable YAML configurations and provides intelligent evaluation.
rules:
- id: no-weekend-deployments
name: No Weekend Deployments
description: Prevent deployments on weekends to avoid maintenance issues
enabled: true
severity: high
event_types: [deployment]
parameters:
days: [Saturday, Sunday]
message: "Deployments are not allowed on weekends"Define governance rules in YAML format with rich conditions and actions. Support for approval requirements, security reviews, deployment protection, and more.
When rules are violated, developers can acknowledge them with simple comments. AI agents evaluate requests and provide context-aware decisions.
Watchflow uses a unique hybrid architecture that combines rule-based logic with AI-powered intelligence:
- Rule Engine: Fast, deterministic rule evaluation for common scenarios
- AI Agents: Intelligent context analysis and decision making
- Decision Orchestrator: Combines both approaches for optimal results
- GitHub Integration: Plug n play event processing and action execution
Get Watchflow up and running in minutes to start enforcing governance rules in your GitHub repositories.
Go to GitHub App Installation
- Visit Watchflow GitHub App
- Click "Install"
Create .watchflow/rules.yaml in your repository root:
rules:
- id: pr-approval-required
name: PR Approval Required
description: All pull requests must have a min num of approvals unless the author is a maintainer
enabled: true
severity: high
event_types: [pull_request]
parameters:
min_approvals: 2
- id: no-deploy-weekends
name: No Weekend Deployments
description: Prevent deployments on weekends
enabled: true
severity: medium
event_types: [deployment]
parameters:
restricted_days: [Saturday, Sunday]- Create a test pull request
- Try acknowledgment workflow: Comment
@watchflow acknowledgewhen rules are violated - Verify rule enforcement: Check that blocking rules prevent merging
For advanced configuration options, see the Configuration Guide.
Use these commands in PR comments to interact with Watchflow:
# Acknowledge a violation
@watchflow acknowledge "Documentation updates only, no code changes"
@watchflow ack "Documentation updates only, no code changes"
# Acknowledge with reasoning
@watchflow acknowledge "Emergency fix, team is unavailable"
@watchflow ack "Emergency fix, team is unavailable"
# Evaluate the feasibility of a rule
@watchflow evaluate "Require 2 approvals for PRs to main"
# Get help
@watchflow helpCan Acknowledge: When a PR lacks required approvals but it's an emergency fix, developers can acknowledge with
@watchflow acknowledge "Emergency fix, team is unavailable" or @watchflow ack "Emergency fix, team is unavailable".
Remains Blocked: When deploying to production without security review, the deployment stays blocked even with acknowledgment - security review is mandatory.
Can Acknowledge: When weekend deployment rules are violated for a critical issue, developers can acknowledge with
@watchflow acknowledge "Critical production fix needed".
Remains Blocked: When sensitive files are modified without proper review, the PR remains blocked until security team approval - no acknowledgment possible.
- Quick Start Guide - Get up and running in 5 minutes
- Configuration Guide - Advanced rule configuration
- Features - Platform capabilities and benefits
- Performance Benchmarks - Impact metrics and results
- GitHub Issues: Report problems
- Discussions: Ask questions
- Documentation: Full documentation
This project is licensed under the MIT License - see the LICENSE file for details.
For instructions on running tests, local development, and contributing, see DEVELOPMENT.md.