Runtime Posture
Runtime capabilities and readiness
How builders and operators should interpret Talero runtime capability status, readiness, maturity, and public policy contracts.
Runtime capabilities
Readiness
Policy matrix
Maturity
Safe mode
Public-safe does not mean unrestricted. Public mode, privacy mode, safe mode, read-only mode, quotas, deployment profile, and gateway policy can still mask or deny behavior.
Capability and Surface Contracts
Read runtime posture from talero_runtimeCapabilities and talero_runtimeReadiness. Public method and route policy should be read from the runtime surface contract.
/opt/talero/runtime-contracts/node-runtime-capabilities.json groups features by capability, status, maturity, exposure, and consumers./opt/talero/runtime-contracts/node-runtime-surface-contract.json is the method and route policy matrix.
| Method | Category | Public profile behavior | Notes |
|---|
talero_runtimeCapabilities | Minimal | Minimal public status or compatibility surface. | runtime |
talero_runtimeReadiness | Minimal | Minimal public status or compatibility surface. | runtime |
talero_getRpcCompat | Minimal | Minimal public status or compatibility surface. | runtime |
talero_getNetworkInfo | Minimal | Minimal public status or compatibility surface. | runtime |
talero_health | Minimal | Minimal public status or compatibility surface. | runtime |
talero_safeModeStatus | DiagnosticsSafe | Public-safe diagnostic summary; safe mode and quotas still apply. | diagnostics |
talero_networkHealth | DiagnosticsSafe | Public-safe diagnostic summary; safe mode and quotas still apply. | diagnostics |
talero_networkRisk | DiagnosticsSafe | Public-safe diagnostic summary; safe mode and quotas still apply. | diagnostics |
talero_confidenceScore | DiagnosticsSafe | Public-safe diagnostic summary; safe mode and quotas still apply. | diagnostics |
Status and Maturity Semantics
active: implemented and exposed according to policy.supported: supported workflow surface even when it is not broad public RPC.advisory: useful signal but not consensus-blocking by itself.experimental: prototype or early integration surface; consumers should fail closed.dev_admin_only: development or administrative surface, not wallet-safe public RPC.unsupported: not wired as a supported runtime path.
Maturity is not release approval or an external audit statement.
Readiness Semantics
talero_runtimeReadiness and /ready report local runtime posture. A node can be not-ready for safe expected reasons, including initialization, dependency degradation, local consistency checks, safe mode, or profile policy.
Readiness is not release approval, network certification, or a promise that every optional integration is enabled.
Capability Contract
| ID | Capability | Status | Maturity | Exposure | Notes |
|---|
evm.execution | EVM execution RPC surface | active | testnet | mixed | Read methods, simulation, and transaction submission have different policy categories; consumers must still honor the runtime RPC policy matrix. |
poq.advisory-certification | PoQ advisory certification | advisory | testnet | mixed | PoQ is advisory/non-blocking in this registry; consumers must not treat it as consensus-finality unless the dedicated finality surfaces also report usable artifacts. |
pos.finality | PoS/BFT finality read surface | active | testnet | mixed | talero_finalizedHead is the canonical finality read; estimate and status endpoints are diagnostic or advisory. |
pow.block-production | PoW block production | active | testnet | pool | Mining RPC availability remains controlled by node role, deployment profile, mining allowlists, and safe-mode gates. |
pq.evm-precompile.mldsa65 | ML-DSA-65 EVM verification precompile | experimental | prototype | internal_only | The verifier precompile address is 0x0000000000000000000000000000000000000903; availability follows the EVM runtime and precompile build configuration. |
privacy.public-surface-policy | Public privacy surface policy | active | testnet | mixed | Some address-sensitive reads are limited by caller profile and privacy mode; public consumers must rely on the runtime policy matrix and returned redaction posture. |
runtime.rpc-policy-matrix | Runtime RPC and REST policy matrix | active | testnet | public | The runtime surface contract remains the source of truth for individual method/path policy; this registry groups those surfaces by capability. |
runtime.safe-mode | Runtime safe mode | active | testnet | mixed | Status is read-only; override is admin-gated. Readiness and health paths remain the public orchestration surfaces. |
security.honeytrap | Honeytrap abuse detection | active | testnet | trusted | The status RPC is diagnostic-restricted; public callers interact only with normal deny/degrade behavior. |
security.watchtower | Watchtower monitoring and notification | active | testnet | mixed | Status is public-safe on public RPC profiles; configuration and notification have stricter runtime policy. |
selective-disclosure.balance-gte | Selective disclosure balance-gte proof | experimental | prototype | mixed | The current proof is committed-witness based and must not be advertised as canonical state membership unless the membership proof path is explicitly used. |