NotMagic · Blueprint

Surveyable index of every live surface, machine endpoint, native client, and reference document in the system. Greyed cards are surfaces that exist in design or staged code but are not yet live in this gateway.
notmagic.io · chamber-api:16
Status legend: LIVE = serves now · INPUT = needs a block_id / candidate_id · EXTERNAL = lives elsewhere (real link) · PLANNED = surface exists in design but not yet wired

Mobile Web · where humans act

Mobile-first witness surface. Native iOS is the hardware-proof authority client; this is the browser surface for fast demos.
/mobile-web
demo
Mobile SPA · queue list + focused decision card + press-and-hold authorize. Honesty banner pinned at the top. (Also reachable at /cockpit for back-compat.)
https://notmagic.io/mobile-web
iOS · TestFlight
planned
Native client (App Attest + Face ID Tandem). Hardware-sealed admissions. Lives in the notmagic-ios repo; not yet on TestFlight.
Mac desktop · cockpit inspector
planned
Secure-Enclave-sealed admissions, chain replay viewer, multi-pane reliance graph. No repo yet.

The wall · proof and audit

Read-only surfaces that let you verify the system's claims directly.
/health
live
Binary attestation in strict mode. Every kernel binary's SHA-256 actual vs expected. JSON.
https://notmagic.io/health
/chain
live
Full read-only dump of the admitted chain. Every entry signed by the kernel's Ed25519 key.
https://notmagic.io/chain
/chain/verify
live
Verify the whole chain integrity (signature + linkage + sealed-block custody) on demand. JSON.
https://notmagic.io/chain/verify
/chain/view
live
HTML rendering of the chain — admitted blocks in admission order.
https://notmagic.io/chain/view
/report
live
System verdict report. Verdict + counts + per-scope tiles. The legacy home page.
https://notmagic.io/report
/flow
live
Live flow view — recent activity across surfaces.
https://notmagic.io/flow

The garden · signals being cultivated

The Nose's scoreboard. Detector signals, review-quality, and the beds the system cultivates.
/garden/view
live
Smell Garden HTML — auth_bypass, idempotency_drift, trust_label_leak, review-quality beds.
https://notmagic.io/garden/view
/garden
live
Garden projection JSON. Same data; machine-consumable.
https://notmagic.io/garden

The flow · live activity

What's moving through the system right now.
/candidates
live
Pending candidates (all kinds) — the queue behind /cockpit.
https://notmagic.io/candidates
/candidates · pr_review_finding
live
Filtered to bot-minted PR review findings.
/candidates?candidate_kind=pr_review_finding
/admitted/artifacts
live
Post-admit artifact ledger — the bot's pending/posted PR inline comments.
https://notmagic.io/admitted/artifacts
/boundary/recent
live
Recent boundary-ingest records. Tamper-evident JSONL chain.
https://notmagic.io/boundary/recent
/gates/pending
live
Open human-approval gates waiting on someone authorized.
https://notmagic.io/gates/pending

Streams · server-sent events (curl)

SSE endpoints — open with curl -N or the cockpit's EventSource subscriber.
/candidates/stream
live
SSE of candidate-queue updates. What /cockpit subscribes to.
curl -N https://notmagic.io/candidates/stream
/farm/stream
live
SSE of boundary observations + ingest signals.
curl -N https://notmagic.io/farm/stream

Drill into a specific block

Per-block deep views. Pre-baked demo links use a live judgment block (#138) and its companion edge_contract (#139). Replace the block_id segment with any block_id from /chain.
/blocks/{id}/view · judgment
input
"What this relies on" tile view. Source, Transform, Receipt, Gate, Scope tiles for a kernel_judgment.
/blocks/63e68bd0…/view
/blocks/{id}/view · edge_contract
input
Same tile view, edge_contract / handoff variant: scope grants + downstream rely-on.
/blocks/613a36e2…/view
/reliance/{id}
input
Live Reliance Route HTML — the Reliance Fabric projection of a block.
/reliance/63e68bd0…
/reliance/{id}.json
input
JSON companion to /reliance — for machine consumers (iOS, chain visualizers).
/reliance/63e68bd0….json
/graph/block/{id}/view
input
Block lineage / topology view. Upstream declared_inputs + downstream references.
/graph/block/63e68bd0…/view
/blocks/{id}
input
Raw block JSON (the canonical sealed content).
/blocks/63e68bd0…

Try it yourself · public tools

Hands-on surfaces that don't need an auth token.
/preflight
live
Paste a thread / spec / claim text → classification + proposed Chamber transitions.
https://notmagic.io/preflight
/smell-check
live
Smell-check home / interactive analyzer landing.
https://notmagic.io/smell-check

Source repos · open the code

Six private repos at github.com/fentonbenjamin. Live links; auth required to view.
notmagic-kernel
external
Ratification Chamber + signed semantic edges (Rust trust kernel). The wall mechanism lives here.
github.com/fentonbenjamin/notmagic-kernel
notmagic-services
external
Farm, Garden backend, projections, proposal routing (Python). This gateway lives here.
github.com/fentonbenjamin/notmagic-services
notmagic-web
external
Reliance Fabric, Garden UI, ChainView (HTML).
github.com/fentonbenjamin/notmagic-web
notmagic-ios
external
Human ratification client (Swift Package: iOS + macOS). Hardware-sealed admissions.
github.com/fentonbenjamin/notmagic-ios
notmagic-github-app
external
Developer-workflow proposal surface (in extraction). PR webhook → bot detectors → candidates.
github.com/fentonbenjamin/notmagic-github-app
notmagic-filing-private
external
IP / counsel materials. Private.
github.com/fentonbenjamin/notmagic-filing-private

Admission machinery · POST endpoints (auth-gated)

Listed for completeness. Not clickable from the browser — they take JSON bodies and need the admin bearer token or an active session.
POST /threads/analyze
input
Boundary intake → smell-check analyzer. Pure GET-equivalent via /preflight.
curl -X POST .../threads/analyze
POST /candidates/{id}/decision
input
The cockpit's decision endpoint. action=approve|hold|reject. Bearer admin token.
curl -X POST .../candidates/{id}/decision
POST /seal/challenge
input
Issue a fresh challenge for an iOS App Attest seal envelope (PROOF-SEAL-001.7).
curl -X POST .../seal/challenge
POST /seal/register-app-attest
input
Register an iOS App Attest seal. Requires real Apple Root CA pinned in env.
curl -X POST .../seal/register-app-attest
POST /review/submit
input
Submit a CandidateTransition proposal as a review_proposal block. Bearer admin token.
curl -X POST .../review/submit
POST /gates/respond
input
Generic human-approval gate: action=admit|hold|reject + source_block_id. Bearer gate token.
curl -X POST .../gates/respond
POST /farm/observe
input
Boundary observation push. Inputs land in the intake-record chain.
curl -X POST .../farm/observe
POST /github/webhook
input
GitHub App webhook receiver. Wires the PR-review flow that mints pr_review_finding candidates.
.../github/webhook (configured in GitHub App settings)

Operator + future surfaces

What's in the staging area or in design.
Apple App Attest · Root CA pinned
planned
Operator task: drop Apple's published Root CA in /etc/chamber/, set APPLE_APP_ATTEST_ROOT_CA_PEM_FILE. Pre-deploy validator lives at scripts/validate_apple_app_attest_root_ca.py.
Native iOS App Attest seals
planned
Cockpit Phase B: iOS sends typed seal_envelope. Wires Face ID Tandem → kernel-verified admission, end to end.
Wild Nose · self-seeded candidates
planned
Autonomous detector that drafts candidate packets from observed regressions. v0 shipped 2026-05-10; ongoing detector additions.
Mac desktop · Secure Enclave seals
planned
Cockpit inspector + admission client backed by Mac Secure Enclave keys. Separate trust tier from iOS App Attest.