Grantex is live for the approved Shopify pilot merchant. It keeps consent, Commerce Passports, merchant policy, amount caps, audit, and provider boundaries in one control layer while agents use approved catalog, cart, consent, and payment-intent tools.
Agents search catalog, retrieve items, and check inventory through Grantex.
Grantex creates a consent request and only approved scope proceeds.
The Commerce Passport carries policy and amount limits as sensitive runtime material.
Payment intents and checkout handoff stay provider-neutral and audit-visible.
Agents can prepare a purchase, but Grantex controls whether the requested action matches user consent and merchant policy.
Amount caps, merchant status, trusted agent checks, and passport state are enforced before payment-affecting work proceeds.
AgenticOrg commerce does not call Stripe, Plural, Pine, or provider credentials directly. Grantex owns the provider abstraction.
| Layer | Status | Meaning |
|---|---|---|
| Internal sandbox | Ready | Synthetic data, mock-provider paths, and gated Plural sandbox adapter tests exist for controlled validation. |
| Temporary smoke | Verified | Option A and hosted AgenticOrg smoke evidence used temporary resources and scrubbed reports. |
| Shopify merchant | Live | mgx0n6-22.myshopify.com is imported as mch_shopify_mgx0n6_22 with 5 products and 5 variants. |
| Production discovery | Live pilot | The approved merchant profile is available through /.well-known/grantex-commerce. |
| Live-readiness gate | Complete | Runtime acknowledgements are complete for the approved pilot; missing evidence still returns live_readiness_blocked. |
| Live checkout control plane | Enabled | Consent, Passport, policy, amount-cap, idempotency, webhook, reconciliation, and audit controls are deployed. |
| Plural adapter | Configured | Webhook intake is deployed. Current credentials authenticate against Plural UAT-compatible rails, so production Plural settlement is not claimed. |
Use the Commerce V1 developer guide and OpenAPI contract. Treat all auth, passport, idempotency, and provider material as runtime-sensitive.
Use the operator guide for catalog, policy, audit, webhook, emergency disable, and no-go checks.
Use Grantex Commerce REST/MCP only. AgenticOrg uses `grantex_commerce:*` tools and no direct provider credential path.
The agent may help prepare a cart, but consent and policy checks determine whether checkout can proceed.
Production Commerce V1 is deployed for the approved Shopify merchant flow. Agents still use Grantex-only commerce surfaces, and Plural production settlement is not claimed until production Plural credentials authenticate against production rails.