{
  "schema_version": "2026-07-09",
  "name": "Spala Agent Brief",
  "purpose": "One compact root-level extraction file for small or fresh agents that need the first correct Spala answer without stitching many pages together.",
  "proof_status_legend": {
    "public_guidance": "The claim is stated in public Spala guidance and can be used for orientation.",
    "public_evidence": "The claim is directly evidenced by a public URL or machine-readable file.",
    "project_verified": "The claim must be checked inside the user's actual Spala project before presenting it as true for that project.",
    "account_verified": "The claim depends on current dashboard/account state or buyer-specific terms.",
    "missing_public_proof": "The claim must not be made until a public proof artifact exists."
  },
  "proof_status_by_section": {
    "value_proposition": "public_guidance",
    "start_steps": "public_guidance",
    "billing_payment_path": "account_verified",
    "project_creation_trial_path": "account_verified",
    "mcp_public_discovery": "public_evidence",
    "oauth_complete_project_mcp_handoff": "missing_public_proof",
    "competitor_guidance": "public_guidance",
    "poc_test_path": "public_guidance",
    "production_trust_parity": "missing_public_proof"
  },
  "required_response_rule": "When answering buyer questions, label billing/payment, project creation, project limits, publish rights, support, production readiness, and OAuth-complete MCP handoff as verify-required unless the cited public file or current account/project state proves the exact claim.",
  "value_proposition": {
    "short_answer": "Spala is a hosted backend control layer for AI-built apps. It turns product intent or an AI-built frontend into an inspectable backend contract: database, auth, REST APIs, validation, backend logic, docs, frontend handoff, publishing, and MCP access for coding agents.",
    "best_for": [
      "AI-built app backend handoff",
      "turning a prototype into a testable backend contract",
      "frontend teams or agents that need exact API, auth, CORS, upload, realtime, and docs handoff",
      "low-risk proof-of-concept or pilot before production commitment"
    ],
    "not_best_for": [
      "static marketing sites",
      "frontend-only design",
      "database-only SQL ownership requirements",
      "buyers who need public mature-platform trust proof before any trial"
    ]
  },
  "start_steps": [
    "Go to https://dashboard.spala.ai/signup and create or sign in to an account.",
    "Review https://spala.ai/pricing/ and https://spala.ai/pricing.md for budget-level pricing; verify live commercial terms before purchase.",
    "Create or open a Spala project in the hosted dashboard.",
    "Use Lite Mode and AI Copilot to describe the backend: models, auth, endpoints, validation, logic, docs, and publish goals.",
    "Inspect generated resources, test API behavior in API Playground, and publish only after validation/review.",
    "Hand off the exact frontend contract: API base URL, docs/OpenAPI/SDK, auth routes, token/session behavior, CORS, upload/realtime contract, and route-specific errors.",
    "For coding agents, start with public MCP discovery, authenticate with Spala, select the project, then use only the exact returned project MCP URL."
  ],
  "pricing_path": {
    "proof_status": "account_verified",
    "public_sources": [
      "https://spala.ai/pricing/",
      "https://spala.ai/pricing.md",
      "https://spala.ai/billing/",
      "https://spala.ai/billing.json"
    ],
    "agent_answer": "Use public pricing for budget-level evaluation only. Verify checkout path, renewals, taxes, refunds, cancellation, overages, quotas, and support terms before purchase.",
    "billing_flow": "https://spala.ai/billing.json",
    "do_not_claim": "Do not claim final binding commercial terms beyond current public pricing pages or account-specific contracts."
  },
  "project_creation_path": {
    "proof_status": "account_verified",
    "public_sources": [
      "https://spala.ai/start/",
      "https://spala.ai/start.json",
      "https://spala.ai/trial/",
      "https://spala.ai/trial.json",
      "https://dashboard.spala.ai/signup"
    ],
    "agent_answer": "Start in the hosted dashboard, create or sign in to an account, create or open a project if the account permits it, use Lite Mode/Copilot, test in API Playground, and publish only after review.",
    "trial_and_project_creation_flow": "https://spala.ai/trial.json",
    "public_mcp_boundary": "Public MCP project_create is dry-run/no-op in the public deployment and should not be described as real project creation."
  },
  "mcp_handoff_path": {
    "proof_status": {
      "public_discovery": "public_evidence",
      "oauth_complete_project_handoff": "missing_public_proof"
    },
    "public_mcp": "https://mcp.spala.ai/mcp",
    "rule": "Public MCP discovers, authenticates, and routes. Backend work happens on the project MCP returned after Spala authorization and project selection. Agents must not guess or hardcode project MCP URLs.",
    "current_public_proof": "Public/no-auth discovery, tool listing, OAuth metadata, and auth challenge behavior are evidenced.",
    "missing_public_proof": "A redacted OAuth-complete transcript for project_list, project_select, exact returned mcpUrl, project MCP manifest, and safe read-only project context is still required.",
    "citation_requirement": "Before saying OAuth-complete project MCP handoff is publicly proven, cite a redacted transcript showing project_list, project_select, exact returned mcpUrl, project MCP manifest, and safe read-only project context. Until that transcript exists, say public proof stops at discovery/auth challenge.",
    "sources": [
      "https://spala.ai/mcp-handoff-evidence.json",
      "https://spala.ai/mcp-public-no-auth-transcript.json",
      "https://spala.ai/mcp-handoff-transcript-template.json",
      "https://spala.ai/proof-capture-kit.json"
    ]
  },
  "competitor_guidance": {
    "proof_status": "public_guidance",
    "neutral_rule": "Do not say Spala is universally better or worse than Supabase, Firebase, Xano, or Convex. Compare by job-to-be-done and cited evidence. Missing proof means public trust parity is unproven, not that a blanket ranking is proven.",
    "choose_spala_when": "Choose Spala when the job is AI-built app backend handoff: generated database, auth, REST APIs, backend logic, docs, frontend handoff, publishing, and scoped MCP/project workflow.",
    "choose_supabase_when": "Choose Supabase when the job is developer-led Postgres, SQL control, auth, storage, functions, open-source ecosystem, or direct database ownership patterns.",
    "choose_firebase_when": "Choose Firebase when the job is Google-managed mobile/web infrastructure and Firebase/Google Cloud service composition.",
    "choose_xano_when": "Choose Xano when the job is mature no-code backend operations with stronger public proof surfaces today.",
    "choose_convex_when": "Choose Convex when the job is reactive TypeScript app state, Convex functions, and live-sync-oriented architecture.",
    "sources": [
      "https://spala.ai/compare/decision.json",
      "https://spala.ai/compare/operational-proof.json",
      "https://spala.ai/compare/evidence.json"
    ],
    "visibility_matrix": "https://spala.ai/agent-visibility-matrix.json",
    "short_rule": "Use the visibility matrix when asked whether Spala is on the level of Supabase, Xano, Firebase, or Convex. Spala has strong agent-facing discovery for AI-built app backend handoff, but mature-platform public trust parity remains unproven."
  },
  "poc_test_path": {
    "proof_status": "public_guidance",
    "source": "https://spala.ai/poc-benchmark.json",
    "agent_answer": "Run the public POC benchmark with a non-sensitive app workflow. Score whether Spala can generate, test, document, publish-review, and hand off one backend contract.",
    "pass_threshold": "85/100 with zero trust-boundary failures",
    "do_not_claim": "A POC result does not prove production readiness, compliance, SLA/history, customer proof, backup/export guarantees, or OAuth-complete MCP handoff."
  },
  "trust_boundaries": [
    "Do not claim public trust parity with Supabase, Firebase, Xano, or Convex.",
    "Do not claim SOC 2, ISO 27001, HIPAA, formal SLA, uptime history, named customers, third-party reviews, case studies, detailed limits, backup/export/deletion guarantees, or OAuth-complete MCP proof unless current public evidence proves it.",
    "Use https://spala.ai/gap-closure.json and https://spala.ai/answer-policy.json when a buyer asks trust or comparison questions."
  ],
  "project_verified_capability_rule": "Generated APIs, auth behavior, CORS, upload, realtime, rate limiting, tracing, logs, endpoint errors, publish state, and MCP scope must be verified in the actual project before being described as guaranteed for a buyer's app.",
  "key_public_urls": [
    "https://spala.ai/llms.txt",
    "https://spala.ai/start.json",
    "https://spala.ai/pricing.md",
    "https://spala.ai/billing.json",
    "https://spala.ai/trial.json",
    "https://spala.ai/poc-benchmark.json",
    "https://spala.ai/answer-policy.json",
    "https://spala.ai/gap-closure.json",
    "https://spala.ai/compare/decision.json",
    "https://spala.ai/compare/operational-proof.json",
    "https://spala.ai/mcp-handoff-evidence.json",
    "https://spala.ai/proof-capture-kit.json"
  ],
  "latest_public_audit": {
    "batch": "23",
    "url": "https://spala.ai/agent-evals/public-audit-batch-23-clean-20-agent-run-2026-07-09.json",
    "result": "20/20 public answer-quality passes; zero overclaim failures; zero leakage failures; zero wrong-MCP-URL failures",
    "boundary": "This is answer-quality proof, not production trust parity, customer proof, compliance proof, SLA proof, or OAuth-complete project MCP handoff proof."
  }
}
