If your company has a formal brand system and multiple teams generating imagery, this gives you a policy gate. It validates prompts against a versioned brand.md file before you spend credits, optionally runs vision checks on outputs, and logs every decision for compliance. Built by Picsart for regulated industries where an off-brand asset reaching production is a material risk. The overhead is low, around 10% added cost for critical assets, and it catches violations before they become expensive mistakes. You need a written brand policy first and a real approval chain. Not for exploratory work where the gate just slows you down, but if you're handing assets to agencies or need an audit trail for pharma or finance, this is the scaffolding.
npx -y skills add PicsArt/gen-ai-skills --skill enterprise-brand-governor --agent claude-codeInstalls into .claude/skills of the current project.
Policy-as-code for AI-generated imagery. Every prompt is pre-validated against brand.md, every output is post-checked, violations escalate to a human approver, and every decision is logged. Built for regulated industries and any enterprise where an off-brand asset in production is a material risk.
Do not use for: quick exploration / mood-board work (gating slows ideation), or accounts without a written brand system yet (build brand.md first).
Before rolling the governor across teams:
brand.md. Who owns it? What's the change-control process?~/.gen-ai/audit/, S3 bucket, or ship to SIEM (Splunk, Datadog)?brand.md?The governor runs at three checkpoints: prompt, generation, output.
brand.md — palette, typography, allowed/denied props, imagery style, voice, regulated-category rules. Versioned in git. Commit SHA is the policy ID.gen-ai validate against the prompt before spending credits. Catches banned terms, disallowed concepts, missing required elements (e.g., disclaimer placement).gen-ai generate and gen-ai batch run prompt includes the relevant brand.md constraints. Review violations during QA.gemini-3-pro-image or vision check) verifies the output matches policy. Palette sampling, logo presence detection, prop allow-list.violation status routes to the approver queue. Humans review, approve or reject, decision is logged against the audit ID.The governor adds policy metadata to every job record.
{
"defaults": {
"model": "flux-2-pro"
},
"metadata": {
"policy_id": "brand.md@sha:a4f1c9",
"policy_version": "2.3.0",
"policy_mode": "reject",
"approver": "brand-governance@company.com",
"escalation_channel": "#brand-review",
"audit_id": "GOV-2026-04-CAMPAIGN-LAUNCH",
"compliance_tags": ["GDPR", "US-FTC-native-ad"],
"data_residency": "eu-west-1"
},
"jobs": [
{
"id": "launch-hero-001",
"prompt": "Production launch hero. Editorial hero, team of four diverse professionals collaborating, modern office, natural light, brand palette. Apply brand.md constraints and require legal review before publishing."
}
]
}
Record policy decisions in the downstream audit ledger: approved, flagged, or rejected with the reason.
| Sub-task | Model | Notes |
|---|---|---|
| Prompt compliance check | gpt-image-1.5 / text reasoner | Cheap pre-flight before image spend |
| Primary generation (brand-safe) | flux-2-pro | Strong prompt adherence, commercial-safe |
| Primary generation (product accuracy) | flux-kontext-pro | Edit-mode when subject must be preserved |
| Post-generation vision audit | gemini-3-pro-image | Strong scene understanding for policy checks |
| Upscale approved outputs only | topaz-upscale-image | Never upscale before approval — wastes credits |
Confirm commercial-use status per provider with gen-ai models info <id>. Pharma and financial services should maintain a short allow-list of pre-cleared models.
brand.md as code. Versioned, reviewed, signed. The file's commit SHA is the policy ID in every audit record.enterprise-pinned-registry.gen-ai validate catches 80% of violations for $0.brand.md too vague — "use the brand palette" is not enforceable. Hex codes, prop allow-lists, explicit denies.flux-2-pro for a new model mid-campaign and policy interpretation changes. Pin.Run gen-ai whoami to confirm authentication, then re-run the failed command with --debug.
# Pre-flight validate a prompt before spending credits
gen-ai validate --model flux-2-pro --file prompt.json
# Gated single generation
gen-ai generate --model flux-2-pro --prompt "$PROMPT" \
--save-to-drive --drive-folder "Gated-Output"
# Gated batch with retry on transient failures only (not violations)
gen-ai batch run campaign.json \
--concurrency 4 --output ./runs/campaign-2026-04
# Flag mode — for internal / draft contexts
gen-ai batch run drafts.json \
--output ./runs/drafts-2026-04
Governance overhead is tiny relative to generation. Pre-flight + post-check adds ~10–15% to credit cost on critical assets, ~0% on non-critical.
| Scenario | Governance overhead |
|---|---|
| Single gated generate | +0 credits (policy passed in-call) |
| Single gen + vision audit | +1–2 credits |
| Batch of 100, pre-flight only | +~5 credits (text reasoner) |
| Batch of 1,000, full pipeline | +~50 credits + 1 approver hour |
| Quarterly red-team audit | ~1 engineer-day + ~200 credits |
Violations rejected = credits saved. A single blocked off-brand production asset typically saves multiples of the governor's overhead.
sickn33/antigravity-awesome-skills
moizibnyousaf/ai-agent-skills
github/awesome-copilot