Skip to main content
Private Preview· Early access by invitation. Request access →
Kirimana.
Sign in Early access

Bindings that mean something.

Kirimana is the open-source, AI-native data contract and automation platform. Kiri assists you inside the product, every AI call is classification-gated, and any AI agent that speaks MCP can read your governance state without a bespoke integration. Enterprise-grade by design, equally at home in a 50-person growth team and a 50,000-person bank.

Request early access See what's delivered
v0.9 · published April 2026 Apache-2.0 Runs on Databricks · Fabric · Trino · DuckDB
Stands on ODCS v3dbt-coreApache IcebergOpenLineageOIDCMCP Full catalogue →
kiri (noun) — surface, skin. Where something becomes visible.
mana (noun) — honor, weight, spiritual authority.

We borrowed kirimana — Māori for contract — because it captured the meaning English doesn't have a word for. A contract isn't paperwork. It's where your name carries weight. That's the brand. That's also the architecture.

01

Owner on every contract

Mandatory. The AI gateway refuses what doesn't name a human. When the regulator asks who decided this — there's an answer.

02

Classification before AI sees it

Every LLM call is gated by data classification. Restricted data never leaves your tenant. Every call is logged — prompt, response, cost, caller.

03

Same contract, your platform

ODCS v3 canonical. The contract you write today runs on Databricks tomorrow and on Trino next year. No platform lock-in by design.

AI-native, by design

AI doesn't sit beside the platform. It runs inside the contract.

Most data tools bolt on a chat box. Kirimana started AI-first — the same governance state that powers contracts is what Kiri reads, what Skills extend, and what every external AI agent sees over Model Context Protocol. One trust ladder, one audit log, everywhere AI touches your data.

01 Kiri · in-product assistant

Kiri lives inside the product, not beside it.

Every AI surface — UI, CLI, the docs chat above — speaks as Kiri. She knows your stack, your role, your contracts, and your audit history. She drafts contracts, explains lineage, triages failed applies, and never invents numbers she can't substantiate.

Brand voice locked. Persona-aware on every turn.
02 Skills · teach Kiri your domain

Markdown skills turn Kiri into your team's playbook.

A skill is a folder with a SKILL.md and a few prompts. Versioned in git, reviewed in PR, runnable from Kiri or as a CLI step. Reference skills ship with the product — draft-gold-model, debug-apply, azure-deploy, incident-coach, explain-kpi, maturity-coach — and you write your own.

User-authored. Reviewable. No fork required.
03 Claude · trust ladder, every call

Every LLM call goes through the AI gateway. Always.

Classification gate first — restricted data never leaves your tenant. Anthropic prompt cache always on, so Kirimana's brand voice and contract context don't get re-tokenised every turn. Local Ollama provider for air-gapped. Every prompt, response, model, cost, caller — audit-logged.

No direct SDK use. No exceptions.
04 MCP · open to any AI agent

Speak Model Context Protocol → read the governance state.

Claude Code, Cursor, Cline, your in-house copilot, any agent that speaks MCP can read contracts, classifications, lineage, AI-policy decisions, release status — without a bespoke integration. Every MCP read and tool-call is itself audit-logged.

One protocol. Every agent. Same audit trail.
Talk to Kiri MCP + integrations surface How the AI gateway is wired
For every team

Built for enterprise scale.
Light enough for any team.

Mid-sized teams get the same governance, audit trail, and AI-policy enforcement that Fortune 500s spend millions on. Enterprises get more value, not less — federated libraries, hub-and-spoke domains, audit redaction, multi-environment CI/CD, OIDC RBAC, DORA + EU AI Act + GDPR reports — all of it compounds at scale. One product, one Apache-2.0 codebase, both audiences.

What's delivered

One codebase. Three editions, shaped to the stack you run.

Same contracts, same governance, same Apache-2.0 core. The difference is the platform adapter wired underneath.

Private Preview ★ Most mature

Kirimana for Databricks

Databricks Lakehouse + Unity Catalog + Workflows
  • AI gates Databricks alone can't enforce
    Per-contract classification blocks every LLM call (Databricks AI Assistants included) from touching restricted data. Workspace ACLs don't get this granular.
  • Unity Catalog stays — backed by a contract source of truth
    Owner, classification, lineage pushed bidirectionally. UC keeps its UX; Kirimana is the artefact your auditor reads.
  • DORA / EU AI Act / GDPR — generated, not assembled
    Reports synthesised from contract metadata + audit log. The audit takes minutes, not weeks.
See full comparison
Private Preview

Kirimana for Fabric

Fabric Lakehouse + Warehouse + Purview + Azure OpenAI
  • AI controls Copilot alone can't deliver
    Every LLM call — Azure OpenAI, Bedrock, Anthropic — classification-checked before the model sees a token. Restricted data stays in your tenant.
  • Purview stays the catalog — fed by contracts
    Owner, classification, lineage pushed bidirectionally. Microsoft tenants keep Purview's UX; Kirimana is the source of contract truth.
  • DORA / EU AI Act / GDPR for the data product
    Compliance Manager covers the Fabric platform. Kirimana generates the data-product reports your DPO actually has to file.
See full comparison
Private Preview

Kirimana Enterprise OSS

Trino + Iceberg + Polaris + Ranger (or your choice)
  • The AI gate Ranger never imagined
    Anthropic, Azure OpenAI, Bedrock, Ollama — all gated by per-contract classification. Air-gapped path via Ollama. Ranger doesn't see AI calls; Kirimana does.
  • Polaris stays the catalog — Kirimana is the contract
    Bidirectional sync of owner, classification, lineage to Polaris. The OSS stack gets a contract artefact it never had.
  • DORA / EU AI Act / GDPR — built, not bolted on
    Reports synthesised from contract metadata + audit log. The OSS stack alone has no compliance generators; Kirimana ships the templates.
See full comparison
All editions are available on GitHub, Apache-2.0. Kirimana the product costs nothing — install it, fork it, run it.
Common features and architecture

The same governance, every edition.

Whichever edition you choose, the architecture underneath is the same. Six things every edition ships.

01

ODCS v3 canonical contracts

One open standard contract format. Extended via documented kirimana.* customProperties. Same artefact runs on every edition.

02

AI policy gate built in

Every LLM call (Anthropic, Azure OpenAI, Bedrock, Ollama, Databricks AI Assistants) is gated by per-contract classification. Restricted data never reaches the model.

03

Multi-platform from contract zero

Databricks, Fabric, Trino, DuckDB, Postgres — same contract, different runtime. Adapter pattern is ~400 lines per platform.

04

DORA + EU AI Act + GDPR generators

Compliance reports generate from contract metadata + audit log. The work was done all along; the report is the proof.

05

Catalog pass-through

Unity Catalog, Microsoft Purview, Snowflake Horizon, Apache Polaris — we feed your catalog, we don't replace it.

06

Federated contract library

GitHub-backed marketplace for contracts. Submit a pack via PR; install from any edition. Patterns travel across organisations.

See all standards + integrations Architecture: medallion + modeling