PromptFrame by GotHawk Solutions LLC — a unified AI governance platform for federal contractors of all sizes, DoD program offices, and state agencies. Design-Time scoring and ATO artifact generation. Runtime inline enforcement with cryptographically signed gate decisions. One product, one price, air-gap native.
PromptFrame is a unified AI governance platform for federal contractors and DoD program offices. Design-Time and Runtime components are not sold separately.
10-dimension deterministic scoring of AI system prompts — no LLM in the assessment path, same input always produces same output, independently verifiable and C3PAO defensible. Aligned to NIST AI RMF, EO 14179, OMB M-25-21/22, OMB M-26-04, GSAR 552.239-7001 (proposed, 14 paragraphs), CMMC Level 2, and PA EO 2023-19. Auto-generates complete ATO artifact packages: SSP narratives, POA&M, NIST 800-53 crosswalk, GSAR checklist, SPRS export, executive summary — all SHA-256 integrity-protected.
Sits alongside LLM and agentic toolchains. Blocks unauthorized tool calls before execution. Logs every gate decision as a cryptographically signed audit record. Promotes anomalies to Design-Time in real time. Four enforcement categories: tool authorization, scope boundary, data exfiltration attempt, privilege escalation. All gate decisions are independently verifiable — not black-box AI outputs.
Standalone scanner surfaces AI systems the organization may not know it has — installed applications, browser extensions, IDE plugins, local model runners (Ollama, LM Studio), and API credential files. Analyzes network logs in six formats: Apache/Nginx CLF, ArcSight CEF, CSV, DNS query logs, Cisco ASA/FTD syslog, and directory scan output. Foreign-origin AI vendor contacts flagged per EO 14179 §2 — DeepSeek (China), Mistral (France). Output: HMAC-SHA256 signed scan report, importable directly into the governance record as a chain-of-custody artifact.
FIPS 140-3 capable base image. All data encrypted at rest and in transit using government-grade algorithms. Cryptographically signed audit chain — every record tamper-evident and independently verifiable. Zero external API calls — fully self-contained, works in CUI environments and air-gapped networks.
Fixed-scope engagements: governance gap assessments, OMB M-25-21 AI use-case inventory alignment, CMMC Level 2 AI governance posture review. Available as AI governance subcontractor under prime contractor AI modernization efforts. Fixed-price SOWs available.
PromptFrame is deployed as a self-hosted container stack on client infrastructure. GotHawk provides signed container images — no data is ever transmitted to GotHawk or any third party. Full data residency control from day one.
Client runs the Docker stack on their own infrastructure. GotHawk delivers signed container images only. No data leaves the client environment — ever. Compatible with air-gapped networks and CUI environments. FIPS 140-3 capable.
Applicable NAICS codes for federal procurement purposes. SAM.gov active — CAGE 1M4D4.
| NAICS Code | Description | SBA Size Standard | Status |
|---|---|---|---|
| 541512 | Computer Systems Design Services Primary | $34M annual revenue | Applicable |
| 541511 | Custom Computer Programming Services | $34M annual revenue | Applicable |
| 541519 | Other Computer Related Services | $34M annual revenue | Applicable |
GotHawk is positioned for subcontract teaming under prime contractor AI modernization and DoD AI governance efforts. Open to teaming conversations with large and mid-tier primes.
GotHawk Solutions LLC brings specialized AI governance capabilities to prime contractors pursuing federal AI modernization, CMMC compliance, and DoD agentic AI programs. PromptFrame's unified DT + RT architecture covers the full governance lifecycle — from design-time ATO artifact generation to inline runtime enforcement with cryptographically signed gate decisions.
Fixed-price SOWs available. SAM.gov active · CAGE 1M4D4.