AI Safety & Governance

Risky actions wait for a human,
approve in seconds, not war rooms

Approval Queue is where the AI agents pause before doing something destructive. Drop a database, scale down a fleet, rotate a key, those land here, time-boxed, with full context. You approve, deny, or let it escalate. From your laptop, your phone, or a Slack message.

Get Started Talk to Sales
app.novaaiops.com / approval-queue
● LIVE
< 30s
Median approve time
5-tier
Escalation chains
QR
Mobile approvals
100%
Audit-logged
Why an Approval Queue

Some actions are too expensive to get wrong

Restarting a service is reversible in seconds. Dropping a column is not. Approval Queue lets you mark certain action classes (destructive SQL, prod scale-down, key rotation, change-window violations) as approval-required. The agent prepares the change, surfaces the diff and the risk, then waits for a human signature.

  • Action classes you control: configure which tools require approval, and at which severity, per tenant
  • Full context, not a yes/no prompt: every approval shows the diff, the why, the blast radius, and the rollback plan
  • Default-deny posture: no approval, no action, agents fall back to suggest mode if no one signs in time
app.novaaiops.com / approval-queue · detail
Time-Boxed Escalation

If no one approves, it climbs the ladder

Each approval has a TTL (default 15 minutes). When the clock runs out, the request escalates to the next tier of approvers automatically. After the final tier expires, the agent falls back to suggest mode and writes a runbook for an engineer to run by hand. No silent timeout failures.

  • 5 escalation tiers: agent owner, team on-call, team lead, secondary on-call, platform admin
  • Configurable TTL per class: low risk = 60 min, high risk = 2 min, change-freeze override = instant
  • Fallback to suggest: if nobody approves, the agent does not act, it documents the proposed change for a human
app.novaaiops.com / approval-queue · escalation
Mobile QR Approvals

Approve from your phone in 5 seconds

Critical 3am pages reach you on Slack, email, or PagerDuty with a one-time QR code. Scan it, sign with your fingerprint, you are done. No VPN, no SSH, no opening a laptop. The QR carries a single-use signed token bound to the request, your account, and a 5-minute window.

  • Single-use signed token: token is bound to the request id, your user id, and expires in 5 minutes after generation
  • Biometric on phone: no password, your phone's fingerprint or Face ID is the signature
  • Replay-safe: every QR is single-use and is invalidated after the first scan, so a leaked screenshot is harmless
app.novaaiops.com / approval-queue · mobile
Audit & Reporting

Every approve, deny, escalation, and timeout is logged

The Approval Queue writes to the same hash-chained ledger as the agents do. Run weekly reports on time-to-approve, approver load, deny rate, and timeout rate. Export to your SIEM. The data is also a feedback loop: if a class of approvals always denies, configure the agent to stop proposing it.

  • Tamper-evident log: shares the hash chain with Agent Ledger so an export covers both layers
  • Weekly approver report: time-to-approve, deny rate, top requesters, top approvers, emailed to platform-admin
  • Auto-tuning suggestions: when a class is denied 95% of the time, Nova surfaces a config change to stop proposing it
app.novaaiops.com / approval-queue · report
Video walkthrough coming soon

Subscribe to Nova AI Ops on YouTube for demos, tutorials, and feature deep-dives.

AI speed plus human judgment, by default

You decide which classes of actions need approval. The agents respect it. Every approval is logged for compliance review.

Get Started Request a Demo