Code Diddle

An enterprise AI Governance Control Plane for organizations shipping AI at scale — combining policy management, CI + runtime enforcement, and audit-ready evidence across prompts, models, datasets, and AI supply chain (SBOM).

Request enterprise pricing Platform tiers (annual) →
AI Governance Runtime Guardrails CI Gates Audit Evidence EU AI Act / NIST / ISO
Code Diddle logo

From AI “best effort” to enforced controls

Code Diddle is built for regulated, high-stakes, and enterprise environments where teams need provable governance, not just dashboards.

What Enterprises Buy

Not a developer tool — a governance platform. Code Diddle creates a system of record for: policies, enforcement decisions, evidence, and traceability across the AI lifecycle.

For Security / Risk / Compliance

  • Policy library mapped to EU AI Act / NIST AI RMF / ISO/IEC 42001
  • Audit evidence: who/what/when/why for every gate decision
  • Approval workflows and change history for governance artifacts
  • Executive posture reporting (org + project scope)

For Engineering / Platform Teams

  • CI gates with “last failing gate” observability
  • Runtime guardrails (pre-LLM) with allow / warn / block
  • Unified enforcement engine: CI + runtime use the same rules
  • Multi-team standardization without slowing delivery

Core Platform Capabilities

Designed to make governance operational — measurable, enforceable, and auditable.

Policy Library

  • Versioned policies with rule sets and change history
  • Composite logic (AND/OR), thresholds, regex, classifiers (optional)
  • Mappings to external frameworks
  • Deep links: violation → policy → activity feed

Runtime Guardrails (Pre-LLM)

  • Evaluate prompts before model invocation
  • Allow / warn / block outcomes + rationale
  • Redaction/hashing options for sensitive payloads
  • Evidence trails for runtime decisions

CI Gates & Observability

  • Unified gate ledger (gateKey) across CI pipelines
  • “Last failing AI gate” surfaced across dashboards
  • Pipeline metadata, timestamps, and scope tracking
  • Fast triage: what failed, why, when, and where

Model Registry & Lineage

  • Track LLMs, embeddings, fine-tunes
  • Drift/bias/hallucination risk as metrics + evidence
  • Dataset linkage and provenance visibility
  • Security findings tied to governed assets

AI Supply Chain (SBOM)

  • SBOM ingestion and artifact traceability
  • Licensing and provenance checks
  • Deny/allow gates for risky artifacts
  • Reproducibility signals and governance reporting

Enterprise Security Model

  • Org/project RBAC on every endpoint
  • Audit logs for policy changes + evaluations
  • Encryption at rest + in transit
  • Deployment options: SaaS, single-tenant, private cloud

Enterprise Platform Pricing (Service Tiers)

Annual platform subscription + implementation. Final pricing depends on scope: number of orgs/projects, enforcement depth (CI + runtime), compliance needs, integrations, and deployment model (SaaS vs single-tenant/private cloud).

Tier 1 — Foundation

US$180k–US$320k / year

  • Policy library + versioning
  • CI gate ledger + CI health surfaces
  • Prompt governance baseline + reporting
  • Standard support + onboarding

Tier 2 — Enterprise

US$450k–US$950k / year

  • CI + runtime enforcement (allow/warn/block)
  • Expanded policy engine + framework mapping
  • Audit evidence trails + activity observability
  • Key integrations (CI, ticketing, webhooks)

Tier 3 — Regulated / Private Cloud

US$1.2M–US$2.5M+ / year

  • Single-tenant or private cloud deployment
  • Advanced auditability + evidence packs
  • SSO/SCIM, granular RBAC, tenant isolation
  • Custom gates, controls, and enterprise SLAs

Implementation / Rollout

US$250k–US$1.5M+ (one-time)

  • Policy workshop + framework mapping
  • CI gate rollout and runtime guardrail integration
  • Telemetry, evidence design, and org/project scoping
  • Training + operating model + runbooks

Investor Ranges (Net-New Build)

Typical cost to build a comparable enterprise governance control plane from scratch (engineering, security model, infra, and enterprise-grade delivery).

MVP Build

US$1.2M–US$2.5M

  • Policy library v1 + audit trails
  • CI gate ledger + CI health surfaces
  • Prompt registry + governance summary
  • Runtime evaluate endpoint (allow/warn/block)
  • Baseline RBAC + secure ops patterns

Full Build

US$4M–US$9M

  • Expanded policy engine + framework mapping
  • Model registry + lineage surfaces
  • Supply chain/SBOM governance gates
  • Richer observability + activity feeds + scale hardening
  • Enterprise integrations and deployment readiness

Enterprise Build

US$10M–US$25M+

  • SSO/SCIM, multi-region, data residency, BYOK
  • Private cloud / air-gapped options
  • Evidence packs, continuous controls monitoring
  • High availability + large-scale tenancy patterns
  • Deep enterprise workflows + long-term roadmap

Positioning: This is priced as a governance platform (security/compliance budget), not a developer tool. Enterprises take it seriously because it reduces audit risk and makes enforcement provable.

Talk to Number Chest

Share your target frameworks, enforcement scope (CI/runtime), repo footprint, and deployment needs. We’ll respond with a pricing tier recommendation and rollout plan.

Request enterprise proposal