Post Oak Labs/ Showcase/ Agentic Runtime hub
For agentic runtime builders

The deterministic policy layer for AP2 / MCP agent runtimes.

A schema-stable substrate that 45 browser scenarios and 400+ AINumbers tools already export to. Every tool emits Policy Mandate v1 mandates and ships an MCP tool definition — drop them into a runtime and the policy boundary is mostly done. The agent reads the mandate, the runtime enforces it, the audit log writes itself.

For teams working with Anthropic · Google AP2 · OpenAI function-calling · Vellum · LangChain  ·  reviewable by anyone shipping an agent that touches payments

6 scenarios in this stack
Policy Mandate v1 stable schema · all scenarios
MCP-native discovery on every tool

Six scenarios, sequenced the way an agent runtime team would actually adopt them.

Cards are workflow-ordered, not alphabetical. The four core scenarios build a complete runtime policy stack; the two cross-links anchor it to the regulatory and asset surface the agent will eventually touch.

Step 1 · Design Live
Scenario #07 · AP2 · MCP

AP2 Agentic Payment Policy Guardrail

Visualise any Policy Mandate v1 policy mandate, surface its intent envelope, compile to runtime guards, emit MCP tool definitions — entirely client-side. This is the design surface for the runtime team that owns the policy boundary.

Policy Mandate v1MCP Tool DefPolicy JSON
Step 2 · Test Live
Scenario #27 · Agentic Runtime

Agentic Mandate Sandbox

Load any Policy Mandate the showcase emits (AML / BaaS / DORA / Fraud / Stablecoin), queue a candidate agent action, see the per-step execution trace with decision and reasoning. Trace exports as @ainumbers.co/sandbox-trace-v1 — the audit artifact the pre-production EU-AI-Act / DORA Art. 25–26 testing record needs.

AP2 Sandbox5 schemasTrace + decision
Step 3 · Apply (AML) Live
Scenario #23 · AP2 × AML

AP2 AML Mandate Builder

Compose Policy Mandates for agentic AML — customer risk tiers, TM rule parameters, sanctions cadence, SAR triggers, FATF R.16 travel rule. Validates against @ainumbers.co/aml-mandate-v1 and emits an MCP tool definition the runtime can bind to.

AP2AMLAgentic AML
Step 4 · Apply (BaaS) Live
Scenario #24 · AP2 × BaaS

AP2 BaaS Infrastructure Mandate Builder

Programme-policy slots, sponsor-bank approval gates, BIN-tier issuance ceilings, transaction-rail per-tx caps and handoff workflows — composed into a machine-readable Policy Mandate the runtime enforces and the sponsor bank can audit. OCC Bull. 2023-17 aligned.

AP2BaaSProgramme Policy
Cross-link · Regulatory Live · Cross
Scenario #10 · EU AI Act Art. 6

EU AI Act Article 6 Risk-Class Mapper for FS

Maps financial-services AI use cases (most agent runtime products) to the EU AI Act Annex III risk classes. €15M / 3% turnover exposure (high-risk); €35M / 7% for prohibited practices — the regulatory boundary the runtime sits inside.

EU AI ActArt. 6 · Annex III€15M / 3% high-risk
Cross-link · Tokenized Live · Cross
Scenario #21 · Tokenized RWA

Tokenized RWA Compliance Pre-Checker

Agents that route tokenised real-world-asset payments need MiCA + Howey classification, pathway verdict, and custody-disclosure visibility before they sign the mandate. This is that check — 8 asset classes × 7 jurisdictions.

Tokenized RWAMiCA + Howey$1T+ proj.

An agent runtime needs a policy layer that audit can read.

Heuristic guardrails fail audit. Bespoke per-tenant policy doesn't scale. An off-the-shelf compliance vendor adds a service call to every agent action — and its output isn't schema-stable enough for the runtime to enforce deterministically.

The AINumbers + Post Oak Labs surface ships 400+ stateless, browser-side tools that already emit Policy Mandate v1 mandates, with an MCP tool definition on each. The runtime imports the manifest, the agent reads the mandate, the runtime enforces it. The audit log is the same JSON the agent received. No vendor call. No serialization gap. No bespoke policy DSL.

The six scenarios in this hub walk an agent team through that adoption: design the policy surface, sandbox the mandate, then apply it across the two most-litigated fintech use cases (AML and BaaS). The cross-links pin the policy boundary to its actual regulatory and asset context.

For the acquirer reader A deterministic, schema-stable policy substrate is a strict prerequisite for agentic-payments scale. The catalog is the IP — the scenarios are the proof that it composes.

Six tools underneath the scenarios.

Each scenario is a packaged surface; the underlying AINumbers tools are where the runtime team will go to dig in. Policy Mandate schemas and MCP manifests are exposed per-tool.

See where these six scenarios sit in the full 400+ tool chain.

The Tool Chain Composer renders the AINumbers catalog as a DAG with the 45 showcase scenarios highlighted. The agentic-runtime cluster is one connected sub-graph inside it.

Agentic Runtime

Building agentic payment infrastructure?

We design the deterministic AP2 / MCP policy layer that runtimes like this one depend on. If you're putting agents anywhere near money, let's pressure-test your mandate architecture.

Talk to our team →
Post Oak Labs · advisory on production tokenized payment deployments · emerging and frontier markets worldwide