Sanctum Flow
BPMN process execution engine. Define, execute, and monitor business processes with a visual editor, step-based state machine, and append-only audit trail.
Visual Process Design
Model complex business processes with an intuitive BPMN visual editor. Drag tasks, gateways, and events onto a canvas — no coding required.
- Full BPMN 2.0 specification support with bpmn-js powered visual editor canvas
- Palette-driven design: drag tasks, sub-processes, exclusive/parallel gateways, and boundary events
- In-canvas simulation mode to trace execution paths and detect deadlocks before deployment
- Versioned process definitions with diff comparison and rollback capability
Sovereignty Angle
Process models are authored and stored on your own infrastructure — no process data sent to a cloud BPMN vendor, no licensing fees per process, no vendor lock-in on your workflow definitions.
Execution Engine
A robust step-based state machine that executes business processes with full lifecycle tracking, SLA monitoring, and event-driven triggers.
- Step-by-step state machine execution with persistent process instance state and error recovery
- SLA configuration per process step with configurable breach thresholds and escalation actions
- Event-driven triggers: HTTP webhooks, scheduled cron expressions, and internal Sanctum events
- Parallel branch execution with join semantics and compensation handling for failed branches
Sovereignty Angle
The execution engine runs on your own servers, processing workflow data entirely in your database — no process instance state ever resides on a third-party execution runtime.
Append-Only Audit Trail
Every process execution writes an immutable, append-only audit log that provides full traceability from trigger through every state transition to completion.
- Cryptographically chained audit log entries with timestamps and actor attribution
- Per-instance execution trace showing every state transition, input, output, and error state
- Searchable audit viewer with filter by process, actor, date range, and outcome status
- Tamper-evident log export for external compliance review and forensic analysis
Sovereignty Angle
The audit log is stored in your own append-only database table — no third-party log aggregation service receives your process execution data, ensuring complete evidentiary sovereignty.
AI Integration
Connect intelligent agents directly into your process flows via Sanctum Flow's MCP server — delegate decisions, classifications, and content generation to AI without leaving your infrastructure.
- MCP server integration enabling AI agents to create, advance, and monitor process instances
- AI decision service task type: define a prompt, map inputs, and let an LLM determine the next gateway
- Human-in-the-loop approval steps with AI-generated recommendation summaries for reviewers
- Automated process instance analysis: detect bottlenecks, suggest optimisations, and predict SLA breaches
Sovereignty Angle
AI inference happens through your own self-hosted model router — no process data is ever sent to a third-party LLM API, keeping every decision and data point within your sovereign environment.