// Primust proof-first marketing pages.
const CLAIM_BOUNDARY =
'Primust proves the governed record: what was authorized, which controls ran, what evidence was observed, what gaps remained, and what outcome the chain was bound to. It does not certify that the AI output is true, safe, lawful, compliant, fit for purpose, or causally explained.';
const ASSESSMENT_MAILTO =
'mailto:hello@primust.com?subject=14-day%20Agent%20Control%20Coverage%20Assessment';
function SiteHref(href) {
if (!href || href === '#' || href.startsWith('#') || /^(https?:|mailto:)/.test(href)) return href || '#';
if (href === '/') return '/';
const localStatic = typeof window !== 'undefined'
&& (window.location.protocol === 'file:'
|| ['localhost', '127.0.0.1', '0.0.0.0'].includes(window.location.hostname));
if (!localStatic) return href;
const [path, hash] = href.split('#');
if (/\.[a-z0-9]+$/i.test(path)) return href;
return `${path}.html${hash ? `#${hash}` : ''}`;
}
function PageShell({ children }) {
return (
);
}
function HomeHeroVisual() {
const { C, F } = window.PT;
return (
Agent surfaces and frameworks Primust can bind evidence around
);
}
function HomeChainSection() {
const { C, F } = window.PT;
const narrow = typeof window !== 'undefined' && window.innerWidth < 760;
const cards = [
['Scope Authorization', 'What work was allowed: a ticket, issue, approval, work order, policy scope, or delegated agent task.'],
['Control Receipts', 'Which controls ran, what version they used, what they observed, and what result they produced.'],
['Runtime Evidence', 'Model identity, tool use, shell commands, file edits, scanner results, detector health, policy gaps, and other governed evidence.'],
['Outcome Binding', 'The PR, commit, claim decision, ticket update, record write, or business action the chain produced.'],
['Governed-Execution Credential', 'A signed, timestamped, offline-verifiable credential binding the evidence chain.'],
['Evidence Pack', 'A portable artifact for deployers, AI vendors, auditors, carriers, regulators, customers, and counterparties.'],
['Offline Verifier', 'A deterministic verifier another party can run without calling Primust.'],
];
return (
THE CHAIN
From authorized work to verifier-readable proof.
AI agents write code, call tools, retrieve documents, update records, trigger workflows, and make consequential recommendations across systems your existing controls only partially see.Primust binds the evidence path: what work was authorized, which controls ran, what they observed, what gaps remained, what outcome resulted, and whether the chain held.
);
}
function HomePage() {
const { C } = window.PT;
return (
}
/>
}
>
Use Primust in the command-center app, embed verifier results in your own tools, or run headless behind existing workflows. The evidence layer stays the same.}
>
Primust does not need raw prompts, raw outputs, code contents, PHI, PII, secrets, or customer content to issue verifier-readable evidence. Your tools keep the raw events. Primust receives commitments, pointers, metadata, and verification results, then binds them into portable proof.That proof can travel to whoever needs to verify the governed work: the deploying customer reviewing an AI vendor, the auditor sampling controls, the carrier diligence team, the regulator reviewing an AI program, or the counterparty signing the contract.{CLAIM_BOUNDARY}
);
}
function CodingAgentsPage() {
const { C } = window.PT;
return (
}
/>
A pull request shows what changed. It does not show the full governed session that produced the change.For AI-generated code, reviewers also need to know what the agent was asked to do, which files it read, which commands it ran, which tools it called, which controls fired, what was blocked, which scanners passed, which gaps remained, and how the final PR was bound to the run.Primust turns the session into evidence.Primust binds the coding-agent chain end to end:Primust can bind evidence from coding-agent work without shipping raw code contents to Primust.Observation examples:}>
Primust can post a chain verification result where engineering already works. A PR check can show whether the governed evidence chain passed, partially passed with named gaps, or failed policy.A PARTIAL result is useful evidence with named gaps. Your policy decides whether it blocks, warns, or exports for review.}>
The PR check is one output. The same chain verification result can also be emitted as an allowlisted SIEM event, a CI/CD gate, a webhook, a data-lake event, or an Evidence Pack.Your SIEM sees events. Primust proves which events formed a governed AI action chain.Start with one real coding-agent workflow. Primust instruments it for 14 days and produces an Agent Control Coverage Report showing what was governed, what was missing, and what evidence your team can verify offline.Deliverables:Primust proves the governed coding-agent session behind the PR: authorization, controls, runtime evidence, gaps, and PR/CI binding. It does not certify that the code is correct, secure, compliant, or safe to merge.
);
}
function AgentsPage() {
const { C } = window.PT;
return (
}
/>
Modern AI agents do more than generate text. They call tools, retrieve documents, update records, trigger workflows, create tickets, recommend decisions, and hand work to other systems.Primust gives those runs a governed evidence chain: what was allowed, what ran, what was observed, what was missing, and what outcome resulted.}>
Use Primust in the app to investigate a chain, in your tools to receive verifier results, or headless behind the workflow. Verification results can flow to SIEM events, PR checks, CI/CD gates, webhooks, audit exports, data lake events, Evidence Packs, and the Offline Verifier.Your controls decide. Primust proves the chain.For engineering teams, coding agents are often the fastest place to start because the authorization, session, file edits, scanner results, PR, and CI outcome are concrete. The same evidence-chain model applies to other governed agent workflows.{CLAIM_BOUNDARY}
);
}
function ChainVerifierPage() {
const { C } = window.PT;
return (
}
/>
Primust does not flatten AI work into a single green check. It shows the verifier result, the Proof Mix, and the gaps.Proof Mix shows the distribution of evidence tiers achieved across the governed AI chain. It is not a claim that the AI output was correct.Missing evidence should not disappear into a dashboard footnote. Primust surfaces gaps as named objects: missing controls, stale profiles, detector failures, unobserved network egress, incomplete outcome binding, policy mismatches, proof downgrades, and other verifier-visible reasons.The result is stronger when the gaps are visible.}>
Use the Primust app to inspect the chain. Export an Evidence Pack when another party needs the record. Run the Offline Verifier without calling Primust.Example: primust verify pack.json --type pack --no-fetch-keys{CLAIM_BOUNDARY}
);
}
function IntegrationsPage() {
const { C } = window.PT;
return (
}
/>
Primust does not replace your SIEM, GRC, IAM, CI/CD, scanners, policy engines, logs, or human review. Your controls decide. Primust proves the chain.Use Primust where it helps:Primust binds evidence from the systems you already use. It does not need raw governed content to do that.Inputs may include:A Chain Verifier result can flow wherever your team already works.Outputs may include:Where a destination is not connected directly, Primust can send verifier results via webhook, export, or Evidence Pack.}>
Your SIEM sees events. Primust proves which events formed a governed AI action chain.A SIEM event should include verification metadata, not raw prompts, outputs, secrets, code contents, PHI, PII, or customer content.For gateable workflows, Primust can publish a verifier result where the decision already happens: a PR check, CI/CD gate, approval workflow, webhook receiver, or audit export. The result shows PASS, PARTIAL, or FAIL, with Proof Mix and named gaps.The policy decision stays with your team. Primust provides the verifier-readable evidence.Primust can run behind your existing workflow without requiring users to visit a Primust screen.Headless surfaces include:Primust does not authorize, enforce, scan, monitor, or review AI work for you. It binds the outputs from those systems into an evidence chain and shows whether that chain can be verified.
);
}
function EvidencePacksPage() {
const { C } = window.PT;
return (
}
/>
When someone asks what your AI actually did, you need more than a dashboard view. You need an artifact.An Evidence Pack packages signed credentials, verifier results, Proof Mix, gaps, trust roots, and scope disclosures into a portable record another party can verify offline.An Evidence Pack can include:Evidence Packs should not include raw prompts, raw model outputs, code contents, secrets, PHI, PII, or customer content unless a customer explicitly chooses to disclose content in its own environment.By default, the pack carries commitments, pointers, metadata, signatures, and verifier-readable evidence.The Offline Verifier lets deployers, AI vendors, auditors, carriers, regulators, customers, counterparties, AppSec, and internal audit review the artifact without depending on the Primust app or API.Example: primust verify pack.json --type pack --no-fetch-keysEvidence Packs can support:An Evidence Pack gives another party a signed, scoped, offline-verifiable record of the governed chain. It does not certify that the AI output was true, safe, lawful, compliant, or fit for purpose.
);
}
function TrustPage() {
const { C } = window.PT;
return (
}
/>
Primust separates governed work from credential issuance and third-party reliance.Primust does not need raw governed content to prove the chain. The default architecture sends commitments, pointers, metadata, and verification results, not prompt text, output text, code contents, secrets, PHI, PII, or customer content.Primust can support multiple deployment shapes:The dashboard is a first-class investigation surface. It is not the only trust surface. Primust Evidence Packs can also be verified offline using pinned trust roots, signatures, timestamps, and deterministic verification.{CLAIM_BOUNDARY}
);
}
function AppPage() {
const { C } = window.PT;
return (
}
/>
The Primust app helps teams see, investigate, configure, and explain governed AI chains. The same evidence layer also powers APIs, exports, Evidence Packs, and the Offline Verifier.Most teams use both headed and headless surfaces: the app for investigation and configuration, APIs and hooks for workflow integration, and Evidence Packs for third-party verification.See recent governed AI chains, PASS / PARTIAL / FAIL trends, Proof Mix, top gaps, high-risk systems, recent Evidence Packs, and export health.Review governed agent workflows across tools, approvals, model identity, runtime events, Control Receipts, outcome bindings, gaps, exports, and Evidence Packs.}>
Inspect one governed AI run from authorization to outcome. See Scope Authorization, actor and model identity, Control Receipts, Runtime Evidence, Outcome Binding, gaps, downgrade reasons, export destinations, and the offline verification command.Review coding-agent sessions, PR checks, shell commands, file scope, MCP/tool calls, scanner results, network egress, PR binding, CI binding, and merge-policy status.See which controls are connected, which ran, which failed, which produced verifier-readable evidence, and which only produced weak or missing evidence.Generate, inspect, and export portable Evidence Packs for deployers, AI vendors, auditors, carriers, regulators, customers, counterparties, AppSec, and internal audit.See where verification results were sent: SIEM, PR checks, CI/CD gates, webhooks, audit exports, data lakes, and Evidence Packs.The app, APIs, hooks, webhooks, PR checks, CI/CD gates, Evidence Packs, and Offline Verifier are all first-class surfaces over the same chain. Teams can use the app directly, embed results in their tools, or run Primust behind existing workflows.The app does not decide whether work is allowed, whether code is correct, or whether a system is compliant. It shows the evidence chain, verifier result, Proof Mix, gaps, and export status. Your controls decide. Primust proves the chain.
);
}
function PricingPage() {
const { C } = window.PT;
return (
}
/>
Start with one workflow and pay for the governed evidence you issue. Primust is designed around credentials, not seats, because the artifact matters more than the number of people who view it.For teams that want to start small, the first unit of value is the signed evidence issued for a real workflow.Enterprise contracts can cover volume, deployment mode, support, customer-controlled storage, air-gapped verification, audit exports, and Evidence Pack requirements.Most teams start with one workflow, one verification surface, and one artifact they can hand to another party.Primust pricing should map to evidence issued, workflows governed, deployment requirements, and support needs.Pricing changes volume, support, deployment, storage, and export requirements. It does not change what Primust proves: the governed record from authorization to outcome.
);
}
function CompliancePage() {
const { C } = window.PT;
return (
}
/>
Regulated AI programs are not judged only by written policies. They need evidence that controls ran, gaps were surfaced, outcomes were bound, and reviewers can verify the record.Primust turns governed AI work into verifier-readable evidence mapped to the controls and obligations your team approves.Primust can bind:Primust helps teams answer:Primust does not guarantee compliance with any law, regulation, standard, contract, or internal policy. It provides signed, scoped evidence that can support governance, audit, customer assurance, insurance diligence, and regulatory review.Primust maps obligations to evidence. It does not certify the output, replace legal judgment, or guarantee the result.
);
}
function ProofVsLogsPage() {
const { C } = window.PT;
return (
}
/>
Logs can show that an event was recorded by a system at a point in time. They are useful for operations, security monitoring, debugging, and investigations.Logs can help answer:Logs alone usually do not prove that a governed AI chain held from authorization to outcome.Logs may not show:Primust binds governance-relevant evidence into a signed chain:Your controls decide. Primust proves the chain.Primust does not replace logs. Logs remain essential for investigation, operations, security monitoring, and incident response.Primust makes the governed AI work those logs describe portable, scoped, signed, and verifier-readable.{CLAIM_BOUNDARY}
);
}
function ProofFooter() {
const { C, F } = window.PT;
const groups = [
['Product', [
['Coding Agents', '/coding-agents'],
['AI Agents', '/agents'],
['Chain Verifier', '/chain-verifier'],
['Integrations', '/integrations'],
['Evidence Packs', '/evidence-packs'],
['Trust', '/trust'],
['Pricing', '/pricing'],
]],
['More', [
['App', '/app'],
['Compliance', '/compliance'],
['Proof vs Logs', '/proof-vs-logs'],
['Docs', 'https://docs.primust.com/'],
['Contact', 'mailto:hello@primust.com'],
]],
['Company', [
['About', '/about'],
['Privacy', '/privacy'],
['Terms', '/terms'],
['GitHub', 'https://github.com/primust-dev'],
]],
];
return (
);
}
function ProofSitePage({ page }) {
const pages = {
home: HomePage,
agents: AgentsPage,
codingAgents: CodingAgentsPage,
chainVerifier: ChainVerifierPage,
integrations: IntegrationsPage,
evidencePacks: EvidencePacksPage,
trust: TrustPage,
app: AppPage,
pricing: PricingPage,
compliance: CompliancePage,
proofVsLogs: ProofVsLogsPage,
};
const Component = pages[page] || HomePage;
return ;
}
Object.assign(window, {
ProofSitePage,
HomePage,
AgentsPage,
CodingAgentsPage,
ChainVerifierPage,
IntegrationsPage,
EvidencePacksPage,
TrustPage,
AppPage,
PricingPage,
CompliancePage,
ProofVsLogsPage,
ProofFooter,
});