About Visionality
One gateway. Three teams. Zero spreadsheets.
Visionality is the AI cost governance gateway that gives Finance a live AI ledger, Compliance an immutable audit trail, and Security real enforcement — across every LLM your teams use. Built by ServiceVision.
Why we exist
We built this after we got hit.
In April 2026, attackers worked their way through four of our own AI API keys over five days: CLARA, saskia, MyCloudExpert, and cindyzody-testkey. They were the same kind of keys every engineering team has scattered around: provisioned for a prototype, never rotated, scoped to whatever the model provider's default was.
The keys lived in different repos, different deploy targets, different environment-variable sets. There was no single audit log to consult. There was no hard budget cap that could have stopped the spend at the gateway. There was no inventory that would have told us, on day one, that those four keys had ever been used together. We didn't catch the incident — we caught a credit card alert, and then had to reconstruct what had happened, key by key, from provider dashboards.
We rebuilt the way we wished it had been built. One gateway, every request through it, every call attributed to a project and a Spend Token, every audit row append-only at the SQL layer. We added eight anomaly detectors — including a key_rotation_spike detector that fires when three new keys appear within 48 hours, exactly the pattern we saw in April. We set BASELINE_START_DATEto exclude the breach week from anomaly baselines, so the attacker's usage couldn't poison the model of what "normal" looked like going forward.
The first production client onboarded to the new pattern was UpApply — a cover-letter generation app that had been calling Anthropic directly. We replaced its sk-ant-* with a virtual sk-sr-*key. The real Anthropic credential never touched the application's runtime again. If UpApply's key leaked, it leaked something worthless.
Visionality is the product we wish had existed in April. We're shipping it because we're betting that we're not the only team that found out the hard way.
What came out of the rebuild
Numbers that exist because the incident did.
4 keys
compromised over 5 days in April 2026
8 detectors
anomaly detection now runs on every key, hourly
3 keys / 48h
threshold for key_rotation_spike alert
500K tokens
cache-read pattern that flags Claude Code on an app key
Principles
What we believe about AI governance.
01
Governance lives at the gateway
Application-code controls break the moment a second team writes their own helper. Infrastructure-layer controls don't. Every policy decision in Visionality is enforced where requests actually flow — not where developers remember to put a wrapper.
02
Immutability is a database property, not a promise
Our audit tables are append-only at the SQL layer. The application role has UPDATE and DELETE revoked. A deploy-time invariant check fails the rollout if those privileges ever drift back. Compliance gets evidence, not assurances.
03
Drop-in beats migrate-everything
Change one environment variable. Don't change your SDK, your prompts, your application code, or your CI pipeline. Governance you have to migrate to is governance you defer.
04
Hard limits beat alerts
An alert at 80% of budget that lets the remaining 20% get spent before sending the invoice is not enforcement. A gateway that returns HTTP 402 when the balance is exhausted is enforcement. We chose the second.
Facts
Built by ServiceVision.