ProgullProgull
Documentation

Operator and developer docs for the Progull platform.

A working reference for the people deploying, governing and extending Progull in production.

Concepts

  • The reasoning loop
    Detection → hypothesis → playbook match → remediation → closure.
  • Operating modes
    Shadow, recommend and autonomous, with the controls that gate each transition.
  • Surrogate identity model
    How agents act on z/OS without long-lived human credentials.

Playbooks

  • Playbook YAML
    Triggers, preconditions, steps, approval gates and rollback.
  • Authoring guide
    From a fixed incident to a reusable, governed playbook in one afternoon.
  • Versioning & promotion
    How playbooks move from draft to scoped-autonomous in production.

ServiceNow

  • Scoped app install
    Update set, OAuth client, table extensions, and the CMDB class map.
  • Worknote schema
    What the agent writes back, and the fields it never touches.
  • Change & CAB integration
    Standard-change templates and the autonomous-mode escalation rules.

Mainframe

  • Telemetry ingestion
    SDSF, SYSLOG, JES spool, OPERLOG and SMF — protocols and shapes.
  • Abend coverage matrix
    Families, default playbooks and where coverage is opt-in.
  • Connectivity reference
    Network paths, ports, firewall rules and identity flows.

Security & audit

  • Audit-log schema
    Immutable decision records, ServiceNow correlation IDs and replay.
  • Secrets handling
    Vault and CyberArk integration, rotation, scoping.
  • Evidence pack
    What we hand to internal audit on request, and the cadence.

REST API

  • Authentication
    Service tokens, scopes and rotation.
  • Endpoints
    Incidents, playbooks, traces and policy queries.
  • Webhooks
    Outbound events the platform emits for ITSM and observability.
Sample

A playbook, in YAML.

# playbooks/s0c7-clean-resubmit.yaml
id: s0c7-clean-resubmit
version: 4
triggers:
  abend: [S0C7]
  job_class: [A, P]
preconditions:
  - input_dataset.exists
  - last_successful_run.within: 24h
steps:
  - id: snapshot
    action: capture.sysout
  - id: validate
    action: db2.check_packed_decimal
  - id: resubmit
    action: jcl.resubmit
    surrogate: PROG_AGT_BATCH
approvals:
  mode: autonomous
  on_failure: escalate.sev2
rollback:
  - jcl.restore_snapshot
audit:
  worknote: servicenow.incident.worknote
  retention: 7y

Looking for terms? See the Glossary. For release history, see the Changelog.