Problem
Operational automation can be dangerous when runbooks jump straight from request to execution. Production teams need evidence, risk checks, approvals, dry runs, postconditions, and audit bundles.
Solution
Runbook Guard turns each runbook request into a controlled workflow: evidence collection, typed planning, policy gates, approval checks, dry-run write adapters, postcondition verification, and hashed audit output.
Challenges
The workflow must make operational safety practical: operators need CLI and API access, policies need typed contracts, and write actions must be testable before execution.
Innovation
The project frames runbook automation as a safety layer, not a convenience wrapper. Every potentially risky step is represented as data that can be approved, replayed, or audited.
Domain expertise
This demonstrates Stefan's operational governance expertise across FastAPI, Typer CLIs, Pydantic contracts, dry-run adapters, approval systems, and incident-safe automation design.