diff --git a/dsl/agent-runtime.config.yaml b/dsl/agent-runtime.config.yaml
index baa4e71..96d812d 100644
--- a/dsl/agent-runtime.config.yaml
+++ b/dsl/agent-runtime.config.yaml
@@ -1,2 +1,5 @@
 dsl: ./micro-contracts-dsl.yaml
 generated_dir: ../src/generated/dsl
+bindings:
+  - ./bindings/runtime.yaml
+active_guardrail_policy: openapi-review-policy
diff --git a/dsl/bindings/runtime.yaml b/dsl/bindings/runtime.yaml
new file mode 100644
index 0000000..3188e18
--- /dev/null
+++ b/dsl/bindings/runtime.yaml
@@ -0,0 +1,33 @@
+software: micro-contracts
+version: 1
+
+# output-schema-conformance and confidence-threshold are semantic guardrails
+# enforced at runtime (Zod validation and output content checks).
+# No standard binding matcher applies.
+guardrail_impl:
+  no-file-modification:
+    checks:
+      - matcher:
+          type: file_glob
+          pattern: "spec/**/openapi/**/*.yaml"
+        message: >-
+          Modifying OpenAPI specs is forbidden.
+          openapi-design-reviewer operates in read-only analysis mode.
+      - matcher:
+          type: file_glob
+          pattern: "**/*.overlay.yaml"
+        message: >-
+          Modifying overlay files is forbidden.
+          openapi-design-reviewer operates in read-only analysis mode.
+      - matcher:
+          type: file_glob
+          pattern: "micro-contracts.config.yaml"
+        message: >-
+          Modifying micro-contracts config is forbidden.
+          openapi-design-reviewer operates in read-only analysis mode.
+      - matcher:
+          type: file_glob
+          pattern: "**/guardrails.yaml"
+        message: >-
+          Modifying guardrails config is forbidden.
+          openapi-design-reviewer operates in read-only analysis mode.