Access gate · e-signed terms · audit trail

Your PoC is your IP. Gate it.

POCX puts an identity-verified gate, enforceable Terms of Access and a complete audit trail in front of any proof of concept — in one file and three env vars.

Free for up to 3 evaluators per PoC · no card required

pocx.dev/gate/sumo-flex

ACME PTE LTD · Proof of Concept

Project Falcon

you@company.com
Email me a code

Protected by POCX — access is logged and terms-gated

6-digit OTP — hashed & single-useSHA-256 signed termsEvery access on the record

How it works

Protected in three steps. Minutes, not sprints.

01 — Create

Create your PoC

Name the PoC, name the entity that built it, invite your evaluators by email. Terms, branding and session rules — all customizable from the dashboard.

02 — Drop in

Drop in the gate

One file, three env vars. The SDK is a single TypeScript file with zero dependencies:

proxy.ts
# curl -o lib/pocx.ts https://pocx.dev/sdk/pocx.ts

import { createPocxGate } from "./lib/pocx";
const gate = createPocxGate();
export const proxy = gate.nextProxy();

03 — Send the link

Send the link

Evaluators OTP in with their allowlisted email, e-sign the Terms of Access, and land in your app. You watch sessions and signatures live — and can revoke anyone, instantly.

Features

The whole front door, handled.

Identity, terms, sessions, evidence. POCX handles who gets in and on what conditions — your PoC stays exactly as you built it.

Allowlist + OTP login

Only invited emails get in. Codes are hashed, single-use, rate-limited, and lock out after five attempts. No passwords — ever.

Terms of Access, e-signed

A SHA-256 hash of the exact text, timestamp, IP and user agent on every signature — plus a signed PDF certificate emailed to the signer.

Session control

TTL and idle timeouts, one-click revoke for any evaluator, and a panic button that revokes every session at once.

Audit trail (Pro)

Every OTP request, denial, login, signature and revocation — plus in-app access events from the SDK. Export it all as CSV.

Branded hosted gate

Your entity name, your PoC name, your brand color. The gate looks like yours because it is — we just run it for you.

Built for coding agents

POCX ships llms.txt and a single-file SDK, so Claude Code, Codex or Cursor can integrate the whole thing end-to-end.

Zero-effort integration

Tell your coding agent to do it.

Add POCX protection to this app. Follow the instructions at https://pocx.dev/llms.txt exactly.

POCX ships llms.txt + a single-file SDK, so Claude Code, Codex or Cursor can integrate it end-to-end. Paste, done.

Why POCX exists

A login wall is not protection. A signature is.

Your PoC embodies your IP — the designs, the workflows, the ideas your client is evaluating. A password keeps strangers out. It does nothing when the people you invited take what they saw and build it without you.

POCX’s standard Terms of Access include the clause that matters: if you build on this PoC, you engage us. Every evaluator e-signs it before they see a single screen — and every signature is recorded with the SHA-256 hash of the exact text they agreed to, their verified email, IP, and timestamp, sealed in a PDF certificate.

That turns reuse-without-engagement from a grey area into a signed, enforceable commitment — with the evidence trail to back it up.

Signature certificate

RECORDED
Signature idsig_9f2ce41ab7
Signed byjane@client.com
Terms versionv1.2
Timestamp2026-07-07 09:14:32 UTC
IP address203.0.113.42
SHA-256e3b0c44298fc1c149afbf4c8996fb924…

PDF certificate emailed to the signer automatically.

Pricing

Start free. Stay protected.

See pricing

Free

US$0 forever

  • Up to 3 evaluator seats per PoC
  • OTP gate + e-signed terms with PDF
  • Session control & instant revoke
Start free
MOST PROTECTIVE

Pro

US$39 /workspace/month

  • Unlimited evaluator seats
  • Full audit trail with CSV export
  • Priority support
Start free

Ship the demo. Keep the IP.

or read /llms.txt — your agent can have this done before the kettle boils.

Start free