Appearance
Trace and Replay Architecture
Anveraq is architected as an operator stack for event reliability, not as a generic data lake.
System goals
The system exists to ingest raw chain and delivery signals, normalize them into one event model, retain enough context to reconstruct timing and retry behavior, evaluate policy under stress, and export a shareable dossier.
Core services
| Layer | Responsibility | Notes |
|---|---|---|
| Event connectors | collect chain events and delivery telemetry | can run as Anveraq-managed collectors or customer-managed gateways |
| Normalization graph | map raw records into one canonical event model | preserves chain-specific semantics while giving operators one review surface |
| Trace store | retain event timelines, delivery outcomes, and operator annotations | optimized for replay windows, approval history, and incident review |
| Replay engine | reconstruct traffic shape under selected scenarios | analytical only and never emits production side effects |
| Policy graph | evaluate thresholds, routing, and escalation logic | records which package version was evaluated and approved |
| Dossier service | produce incident timelines and exportable review summaries | used for post-incident review, customer updates, and audit evidence |
Data flow
The data flow is straightforward: ingest raw chain and delivery signals, normalize them into one event model, retain enough context to reconstruct timing and retry behavior, apply scenario parameters, evaluate policy, show divergence in the operator console, and export a shareable dossier.
Deployment models
Deployment is supported in three modes:
- hosted workspace: fast deployment with managed control plane and replay services
- dedicated VPC deployment: stronger isolation, residency, and network control
- hybrid with customer-run gateways: hosted review tooling with customer-side connectivity and redaction
Tenant and ownership boundaries
Customer-specific execution logic stays outside the Anveraq core. The system stores observability context and policy state, not wallet permissions or private signing authority.
Architectural boundaries
Replays do not trigger live downstream side effects. Replay remains analytical rather than state-changing, and customer execution paths remain separate from the review stack.
Why the system stays out of execution
Anveraq is meant to improve operator judgment, not to take over downstream execution. That separation keeps replay safe, keeps policy review auditable, and prevents the observability layer from becoming a hidden control plane.