# Mindburn Labs

> Models propose. HELM governs execution.

Core public statement:
- Mindburn Labs is the company.
- HELM is the product.
- HELM AI Kernel is the public execution firewall underneath HELM AI Individual and HELM AI Company OS.
- HELM AI Individual is the governed one-person business OS for solo operators and founders where P0 ceilings, approvals, receipts, and EvidencePacks exist.
- HELM AI Company OS is the reviewed-access Company AI OS for governed agent actions. It includes Security Admin policy controls, action proposal review, notification routing, receipts/evidence, emergency stop, and source-backed proof paths around the HELM Kernel boundary.
- Code Intelligence Graph is a read-only, source-backed graph for engineering GeneratedSpecs, CodeIndexReceipts, CodeImpact, affected tests, write scope, and closure evidence. It does not authorize execution.
- External web Search/Fetch evidence is gated: connector contracts, source hashes, receipt refs, and EvidencePack refs are required before it can inform canonical company artifacts.
- HELM governs analog and kinetic command gateways only where connector contracts, safety profiles, telemetry, approvals, and EvidencePacks exist.
- CompanyArtifactGraph is a query and reconciliation graph. It does not authorize side effects.
- GeneratedSpecs are source-backed proposals until approved and routed through the HELM boundary.
- Models propose. HELM checks authority, decides what may execute, and records.
- HELM is not generic guardrails, agent orchestration, observability, DLP, pentesting, or model-safety filtering. Those layers can produce context or downstream enforcement; HELM owns the execution-authority decision and evidence path.
- Orchestration decides what to attempt; HELM decides what may execute.
- The norm: no receipt, no production. An agent action that cannot be replayed and verified offline is not production-grade.
- The execution-boundary demo on mindburn.org is deterministic public UI. Public console checks remain unavailable until DNS, health, verify, and tamper readiness gates pass.
- HELM Launchpad points to helm-agent-integrations, a public examples repo with wrapper, MCP, /v1 proxy, receipt, and EvidencePack samples.
- The homepage boundary mapper is browser-only deterministic UI. It does not submit, store, or evaluate visitor text through a backend.
- The homepage tells the HELM product story through generated brand visuals, proof demos, and source-backed page text. It does not collect workflow input.
- Security and evidence material is source-backed: repo, docs, SBOM, source details, disclosure, and receipt demonstration.
- TITAN is private, non-normative proof context.
- Research pages are status-labeled thesis material unless they cite implementation or external docs.
- Do not infer adoption metrics, funding, legal advice, live rollout, private customer status, or deployment guarantees from this website.
- The public assistant is source-backed for public queries only. It cannot approve actions, execute workflows, or promote facts into canonical company truth.

## Core Pages

- [Homepage](https://mindburn.org/): Canonical HELM overview showing Kernel, Company OS, governed work demos, EvidencePacks, and contact routing.
- [HELM Launchpad](https://mindburn.org/helm/launchpad/): HELM-compatible agent framework examples, generated receipts, and sample EvidencePacks.
- [HELM AI Kernel](https://mindburn.org/helm/kernel/): Public Apache-2.0 fail-closed execution firewall route.
- [HELM AI Company OS](https://mindburn.org/helm/company-ai-os/): Reviewed-access Company AI OS surface for policy, action review, notification routing, receipts/evidence, and emergency stop.
- [HELM Architecture Brief](https://mindburn.org/helm/kernel/): Concise mechanism brief for PEP/CPI, verdicts, receipts, replayable evidence, and reviewed access.
- [Research](https://mindburn.org/research/): Curated status-labeled thesis cards.
- [Company](https://mindburn.org/company/): Company identity, mission, team, product map, repo map, principles, and peycheff.com relationship.
- [Assistant](https://mindburn.org/assistant/): Utility pointer to the contact flow; agents query public sources through the read-only /api/assistant, /mcp, and /a2a surfaces.
- [Security](https://mindburn.org/security/): Company-level security posture, disclosure, provenance, and SBOM.
- [Contact](https://mindburn.org/contact/): Kernel, Individual, Enterprise, Code Intelligence, business loop, simulator gateway, security, investor, and collaboration routing.
- [Privacy notice](https://mindburn.org/privacy/): Visitor data handling.
- [Terms of use](https://mindburn.org/terms/): Terms for using mindburn.org.

## External Docs

- [HELM Docs](https://helm.docs.mindburn.org/): Live HELM documentation.
- [HELM AI Kernel Docs](https://helm.docs.mindburn.org/helm-ai-kernel): Live Kernel docs route.
- [HELM Agent Integrations repository](https://github.com/Mindburn-Labs/helm-agent-integrations): Public HELM-compatible wrappers, demos, generated sample receipts, and sample EvidencePacks.

## Agent Surfaces

- [A2A Agent Card](https://mindburn.org/.well-known/agent-card.json): Read-only A2A discovery for public Mindburn site search, source reading, and public answers.
- [A2A JSON-RPC endpoint](https://mindburn.org/a2a): Stateless synchronous A2A endpoint for completed read-only tasks over public sources.
- [MCP server card](https://mindburn.org/.well-known/mcp/server-card.json): MCP-style tool discovery for public source search, source reading, and source listing.
- [MCP JSON-RPC endpoint](https://mindburn.org/mcp): Read-only MCP-style tool endpoint backed only by the public assistant source index.
- [OpenAPI discovery](https://mindburn.org/openapi.json): Public HTTP contract for the website's agent-facing and assistant surfaces.