lv-civdef-drone-threat-public-address/resources/guardrails.yaml

# UAPF-IP guardrails policy for the Drone Threat Public Address process.
# Loaded by the runtime at session start as an immutable policy snapshot;
# enforced by the host before every capability invocation (see UAPF-IP SPEC §10).

scope:
  domain: civil-defence
  classification: restricted
  legal_basis: national-civil-protection-law

ai:
  allowed_models:
    - claude-opus-4-7
    - claude-sonnet-4-6
  forbidden_inputs:
    - classified-radar-tracks
    - personal-data-of-residents
    - source-identifying-osint
  pii_redactor: required
  # AI may never autonomously complete a step in a national public-warning
  # process; a confidence ceiling of 0 forces human confirmation every time.
  max_confidence_for_autocomplete: 0.0
  decisions_ai_may_make_unattended: []
  decisions_ai_may_recommend:
    - air_threat_severity
    - disinformation_classification

human_oversight:
  required_for:
    - cell_broadcast_dispatch
    - interception_authorization
    - public_communication
    - incident_closure
  reviewer_role: nbs-joint-staff-duty-officer

audit:
  vc_signature_per_step: required
  retention_years: 10