# Documentation

- [Caisson documentation](/docs): Compliance-grade infrastructure for regulated SaaS — the manual.
- [Getting started](/docs/getting-started): Install the base, wire a tenant, and run the standards gate.

- **Base substrate**
- Base substrate
  - [Auth](/docs/base/auth): Self-hosted better-auth that owns its Drizzle tables, with an EdDSA-signed JWT and a JWKS cross-plane seam.
  - [Tenancy (RLS)](/docs/base/tenancy-rls): Fail-closed multi-tenant Postgres RLS. A query with no tenant context returns nothing.
  - [Billing](/docs/base/billing): Stripe + Stripe Tax behind a BillingProvider port, with HMAC raw-body webhook verification.
  - [Credits](/docs/base/credits): An integer credit wallet, an append-only ledger, and debit-before-spend that returns 402.
  - [AI config](/docs/base/ai-config): Provider-agnostic AI configuration with agent-assisted setup.
  - [MCP server](/docs/base/mcp-server): The buyer-facing MCP server — auth-gated and entitlement-scoped.
  - [UI](/docs/base/ui): A typed token floor — --cs-* OKLCH tokens, one light and one dark theme.
  - [Jobs](/docs/base/jobs): A Trigger.dev job port with test drivers — billing and credit side-effects are enqueued, not inline.
  - [Email](/docs/base/email): A Resend email port with a test driver.
  - [Kernel](/docs/base/kernel): The typed CaissonError hierarchy, the 402 credit-gate shape, the 404 tenancy denial, and the one standards gate.

- **Editions**
- Compliance
  - [audit-worm](/docs/compliance/audit-worm): S3 Object-Lock WORM storage plus an append-only SHA-256 audit chain — evidence that cannot be altered before retention expires, and tampering that is provable.
  - [field-crypto](/docs/compliance/field-crypto): Per-tenant field encryption via HKDF key derivation, behind a pluggable FieldKeyProvider KMS port — one tenant's key never decrypts another tenant's data.
  - [compliance](/docs/compliance/compliance): A SOC 2 / HIPAA evidence-pack generator and a config-as-code module registry — each control mapped to a cited clause, the pack signed so an auditor can verify it wasn't edited.
- AI Production Kit
  - [AI Production Kit](/docs/ai-kit): Token metering, spend caps, a circuit breaker, an eval gate in CI, and a versioned prompt registry — the production-rigor layer cheap AI boilerplate skips.
- Local-first AI
  - [Local-first AI](/docs/local-first): On-device inference and vector search behind a privacy gate that keeps data on the machine. Own the source.
- Agentic-Dev
  - [Agentic-Dev](/docs/agentic-dev): @caisson/agent-dev — the governed-agent kernel: a typed agent/skill/rule schema, a lifecycle state machine, local hybrid memory, and a hooks dispatcher.

- **Tooling**
- create-caisson
  - [create-caisson](/docs/cli/create-caisson): Scaffold a tailored codebase from the versioned module registry — by hand, or driven by your AI agent through the auth-gated MCP server.