Operations

HITL & Delegation

Human-in-the-loop review for high-risk actions, plus user delegation so agents act on behalf of authenticated users — both enforced by Cedar at runtime.

iris hitl — human-in-the-loop review

When a policy or condition rule requires human approval, IRIS queues the request until a reviewer acts. Approved calls proceed; rejected calls raise IrisViolationError. Every decision is logged to the Evidence Vault.

Setup and configuration

iris hitl setup --agent loan-processor
iris hitl config --agent loan-processor
iris hitl rules --agent loan-processor
iris hitl test --agent loan-processor

setup is an interactive wizard: enable HITL, set timeout policy, and declare condition rules (e.g. loan_amount > 50000). HITL fires only when a declared rule matches.

Review queue

iris hitl list
iris hitl list --agent loan-processor
iris hitl list --status all
iris hitl show <review-id>

Approve, reject, escalate

iris hitl approve <review-id> --note "Verified by compliance"
iris hitl reject <review-id> --reason "Insufficient documentation"
iris hitl escalate <review-id> --to senior@company.com

Set IRIS_USER_EMAIL to identify the reviewer. In staging and production, frontier models and high-risk actions may require HITL per rule IRIS-MODEL-005.

All HITL commands

CommandDescription
iris hitl setup --agent <name>Interactive HITL configuration wizard
iris hitl list [--agent <name>]List pending reviews
iris hitl show <review-id>Full review detail
iris hitl approve <review-id>Approve — call proceeds
iris hitl reject <review-id>Reject — call blocked
iris hitl escalate <review-id>Escalate to senior reviewer
iris hitl config --agent <name>Show current HITL config
iris hitl rules --agent <name>Show trigger conditions
iris hitl test --agent <name>Simulate review flow

SDK integration

After iris hitl approve, pass the approval to drop-in clients:

from iris_anthropic import IrisAnthropic

client = IrisAnthropic(
  passport=passport,
  hitl_approved=True,
)

iris delegation — user delegation

Agents act on behalf of users. Cedar policies evaluate acting_for_user, consent, and scope at runtime.

iris delegation status --agent loan-processor
iris delegation test --agent loan-processor --user alice@company.com
iris delegation log --agent loan-processor

iris users — reviewer management

iris users add --email alice@company.com --role reviewer
iris users list
iris users remove --email alice@company.com

iris dlp — content inspection

Scan files and test prompts against data-loss-prevention rules before they reach an LLM.

iris dlp scan --file customer-data.txt
iris dlp test --agent loan-processor --prompt "..."
← Evidence Vault CLI Reference →