Due-diligence

Evidence & Methodology

What was tested, how it was tested, what the numbers mean — and, just as importantly, what they do not mean. Written so a technical reviewer can assess the claims independently rather than take them on trust.

Evaluation summary

Figures below are from Resurrection Tech’s internal governance benchmark. They describe performance on defined test suites, not a universal guarantee (see Scope & limitations).

129,857+
Governed evaluations across model architectures
171/171
Test cases passed across coverage scenarios
16/16
Multi-agent / collusion evaluations passed
0.0%
False positives on the governed test suite
0.0%
False negatives on the governed test suite
Tested models

GPT, Claude, Gemini, Llama, and Mistral architectures — governance operates at the execution boundary, independent of the model.

Tested domains

Finance / banking, healthcare / PHI, cybersecurity / credentials, and data privacy / GDPR, each with domain-specific Ω definitions.

Evaluation hierarchy

A_safe → V2 → V3 → V4 → V4+ → V5 → V5+. Single-step checks, source→sink taint (incl. cross-agent), forward reachability, admissibility, feasibility, environmental stability, and the V5+ extended deployment layer (finance hardening + adversarial coverage). Evaluated before execution.

Methodology

Deterministic evaluation. Governance verdicts are produced by deterministic evaluation of a proposed trajectory against a defined forbidden set Ω — not by a probabilistic model judging its own output. The same trajectory and the same Ω produce the same verdict.

Trajectory evaluation. The unit of evaluation is the proposed sequence of actions (tool calls and their arguments), not the natural-language output of a model. The evaluator reasons about the states an action chain can reach.

Pre-execution enforcement. Evaluation happens at the execution boundary, before any action runs. A trajectory that would reach Ω is intercepted; it is not detected after the fact.

Domain-specific Ω definitions.The forbidden set is defined per domain — an unauthorised transfer in banking, PHI exfiltration in healthcare, a GDPR boundary violation in data privacy. The benchmark exercises each domain’s Ω.

Owner action: link or attach the full written benchmark methodology (test-suite construction, scenario derivation, Ω definitions per domain) here, or note that it is available under NDA. This page describes the principles; reviewers will ask for the detailed protocol.

Scope & limitations

Stated plainly. These results are bounded; we do not present them as more than they are.

What these results do NOT mean
  • The metrics describe performance on defined internal test suites, not every possible input. “Zero false negatives” is scoped to the governed benchmark, not a universal guarantee of safety.
  • Results were produced in bounded evaluation environments, not yet under independent third-party audit.
  • The public demo is a limited heuristic — it is not the evaluator behind these numbers, and trajectories it has no rule for return INCONCLUSIVE.
  • Domain coverage reflects the sectors listed above; other domains require their own Ω definition and validation.
Future validation work
  • Independent third-party benchmark audit.
  • A public reference verifier and reproducible benchmark (see Reproducibility).
  • Expanded domain coverage and adversarial red-team evaluation.

Reproducibility

We treat independent verification as the point, not a threat. The core governance repository is referenced below; a public reference verifier and a published benchmark with a signed report are in preparation so reviewers can reproduce the headline numbers themselves rather than take them on trust.

Public reference verifier
In preparation
Published benchmark + signed report
In preparation
Owner action: confirm the core repository is public and contains a runnable benchmark, or mark it private/under-NDA. Do not imply a public, runnable benchmark exists until it does — this is the single highest-leverage trust artifact to ship next.

Patent status

Stated precisely, with no ambiguity between filed, pending, and granted.

Application number
GB2600765.8
Jurisdiction
United Kingdom — UK Intellectual Property Office (UKIPO)
Current status
Confirm on UKIPO register
Owner action — material claim:state the exact current status (filed / published / pending grant / granted) as it appears on the UKIPO public register, and replace the placeholder above. Do not describe the application as “granted” unless the register confirms grant — incorrect patent marking is a legal exposure and the first thing a due-diligence reviewer checks.