TEOS Sovereign Sentinel is a pre-execution runtime governance layer for Claude Code, MCP servers, and enterprise AI systems โ blocking threats before they execute. No post-hoc analysis. No probabilistic guessing. 121 Active Governance Controls (64 Core ยท 29 Solana ยท 10 EVM ยท 8 Banking ยท 10 MENA). 4 verdicts. 6 engines. Built for regulated environments. Zero guessing.
RC Now Available ยท Limited testers ยท teostech.online
Watch how the governance engine evaluates AI actions before execution, applies deterministic governance controls, and generates runtime decisions.
Runtime governance ยท 121 controls ยท 4 verdicts ยท 596 total tests
No Telegram. No setup. Pick a scenario, edit the code, and watch the governance engine evaluate it in real time.
Banking transactions, Solana programs, Solidity contracts, supply chain risks, prompt injection, and more.
Every evaluation runs against the live TEOS risk engine. Real verdicts, real findings, real signals.
Verdict badge, risk score, triggered controls, heuristic signals, reasoning, findings table, JSON export.
No credits consumed ยท All evaluations against the live engine ยท v4.0.0-rc1 (Engine v4.0.0)
Deterministic. Same input, same output, every time. No probabilistic scoring. No black boxes.
Deterministic rule matched with high confidence. Execution prevented immediately. Credit not consumed.
Risky pattern detected. Execution flagged for review. Human confirmation recommended before proceeding.
New in v4.0.0-rc1. Heuristic suspicion score 60โ100 but no deterministic rule fired. Human review required.
No threat patterns detected. Heuristic score below threshold. Safe to execute. Logged to audit trail.
Every scan returns a risk score, a rule ID, and a human-readable explanation. No dashboards. No config.
A layered defense where every unknown threat is captured โ nothing silently passes as ALLOW.
121 Active Governance Controls. Known threats blocked instantly. Same input, same verdict.
77 suspicion patterns score unknown threats 0โ100. Catches what rules miss.
Score โฅ60 with no rule match โ human review required. Nothing silently allowed.
SHA-256 chained logs. Every decision immutable. Tamper-evident. Export-ready.
Feedback loop captures FP/FN data. Continuous improvement from real scans.
SHA-256 chained logs. Enterprise-grade accountability. Regulatory-ready audit exports.
SHA-256 chained. Tamper-evident. Every verdict recorded permanently.
Who scanned what, when, and what verdict was returned. Complete trace.
PDF reports with risk overview, verdict breakdown, and recommendations.
MENA sovereign architecture. Banking governance controls, audit trail, and policy enforcement. Audit exports available.
Dedicated deployment. Custom policy engine. Air-gap capable.
All via @teoslinker_bot on Telegram. Auto-detection routes your input to the right engine automatically.
Detects and prevents dangerous AI-generated commands before execution. 64 core rules covering wiper patterns, injection, privilege escalation, and secret leakage. 10 MENA governance controls (RFM/NIK) enforce regional zero-trust banking and identity verification.
ActiveDeep GitHub repository analysis for risky code patterns, hardcoded secrets, dangerous dependencies, and security misconfigurations across the entire codebase.
Active29 dedicated Solana rules. Scans SPL tokens, mint authorities, upgrade authority, freeze authority, liquidity concentration, and holder distribution.
EnhancedFull token analysis: mint authorities, holder concentration, liquidity depth, and authority controls. Generates PDF reports with TOKEN OVERVIEW, OWNERSHIP, and AUTHORITY sections.
Enhanced10 dedicated EVM/Solidity rules. Detects reentrancy, unchecked calls, integer overflow, access control gaps, and oracle manipulation patterns.
EnhancedPaste anything โ code, addresses, URLs, manifests. The auto-detection engine identifies content type with 85%+ confidence and routes to the correct scanner automatically.
Active10 dedicated rules for Central Bank digital payments and national identity verification โ purpose-built for MENA financial infrastructure.
Deterministic governance controls for:
Most tools scan post-commit. TEOS is built to block before the command runs โ a different threat model from static code scanning.
| Capability | ๐ TEOS Sovereign Sentinel v4 | GitGuardian | Snyk | Checkmarx |
|---|---|---|---|---|
| Pre-execution blocking | โ Yes | โ Post-commit | โ Post-commit | โ No |
| REVIEW verdict (human-in-loop) | โ v4.0.0-rc1 | โ No | โ No | โ No |
| Heuristic suspicion scoring | โ 77 patterns | โ No | โ No | โ ๏ธ Limited |
| Solana / EVM native rules | โ 39 rules | โ No | โ No | โ No |
| Telegram-native (zero setup) | โ Yes | โ No | โ No | โ No |
| AI agent native design | โ Yes | โ No | โ No | โ No |
| Supply chain audit | โ All tiers | โ Yes | โ Yes | โ Yes |
| Free tier (no signup) | โ Release Candidate | โ No | โ ๏ธ Limited | โ Enterprise |
121 Active Governance Controls across 5 layers: 64 core rules (secrets, injections, malware, crypto miners, data exfiltration), 29 Solana rules (program security, account validation, authority checks), 10 EVM rules (reentrancy, flash loans, access control, oracle manipulation), 8 banking rules (CBDC ledger manipulation, SWIFT/ISO 20022, FIX protocol, front-running, reserve key leaks), and 10 MENA governance controls (RFM settlement integrity, NIK identity verification, zero-trust framework).
Two ways: run directly (node teos.js scan <file>) or install globally (npm link then teos scan <file>). Pipe code via stdin: cat script.sh | teos scan.
Yes — the TEOS Desktop (Beta) is an Electron app with system tray monitoring, live health polling of all 4 Railway services, and native OS notifications for BLOCK verdicts. Launch with cd desktop && npm start.
Open chrome://extensions, enable Developer mode, click “Load unpacked”, and select the extensions/browser/ folder. Scan any page or GitHub file with one click.
From extensions/vscode/, run npx vsce package to create a .vsix file, then install via Extensions → Install from VSIX. Adds right-click TEOS scan on any file or selection.
Yes — the CLI, desktop app, and extensions send code to the TEOS risk engine for scanning. No code is stored after scanning. Self-hosted deployments available on Enterprise.
Linters check syntax and style. TEOS checks security, supply-chain risk, Solana/EVM safety, and prompt injection — things a linter cannot detect.
/claude, /llama3, /qwen, and /openai — each routes your scan through a different AI model for analysis. Credit costs vary by model.
Yes. Every tier listed under "RC Price" is temporary. At General Availability, Free moves to a 25-scan/month cap, Pro becomes $49/mo, Team becomes $199/mo, and Enterprise moves from custom pilot pricing to $25K–$50K/yr. RC registrants keep a discounted rate on Pro and Team for 12 months after GA.
Type /help in @teoslinker_bot anytime to see this reference.
/scan <code>Scan shell commands or raw code/scan-solana <code>Scan Solana programs/evm <code>Scan EVM smart contracts/solanatoken <addr>Token intelligence (5cr)/diligence <addr>On-chain due diligence (15cr)/fullreport <addr>Full token risk report PDF (20cr)/deps <pkg>Dependency scan (Pro+)/ci <wf>CI/CD audit (Team+)/modelSelect active AI model/llama3Quick-select Llama 3 8B/qwenQuick-select Qwen 3 32B/openaiQuick-select GPT-OSS 20B/chat <msg>Chat with model (1-3cr)/claude <msg>Claude + TEOS firewall (5cr)/protect onEnable auto-moderation/protect offDisable auto-moderation/protect statusProtection status/creditsView balance & usage/plansSubscription tiers/upgradeBuy credits or upgrade/statusSystem health dashboard/dashboardCommand Center web UI/feedback <msg>Report issuesโฌ Download
โฌ Download
โฌ Download
โฌ Download
All commands
Every major gap from the v3 audit addressed. Heuristics, REVIEW verdict, Solana intelligence, and auto-detection โ all shipped.
7 tenants live. Per-tenant login, activation lifecycle, 3-month pilot windows. Built for MENA sovereign deployment.
Open Telegram. Message @teoslinker_bot. Paste your first command. Get your verdict. No account. No credit card.
Limited access. Real product. Your feedback shapes v4.2.
Open @teoslinker_bot on Telegram. Try the RC. Get your first scan in 60 seconds. No account. No credit card.
Every tier is free to use during Release Candidate. Prices below take effect at General Availability โ RC testers who register keep a founding-member discount for their first 12 months.
Always-free tier. Usage caps apply at GA.
RC registrants lock in 50% off ($24.50/mo) for 12 months after GA.
For small teams sharing scan credits and review queues.
MENA sovereign / institutional deployments.