Plugin overview
Introduction to the plugin system and how plugins extend VerifyWise.
Overview
Plugins extend VerifyWise with new features, integrations, and capabilities. Whether you want to connect with external services, add dashboard widgets, or automate workflows, plugins provide a flexible way to customize your AI governance platform.
VerifyWise supports two types of plugins: built-in plugins that ship with the platform and marketplace plugins that can be installed on-demand from the community registry.
What plugins can do
Plugins can enhance your VerifyWise instance in several ways:
- Dashboard widgets: Display custom metrics, charts, and activity feeds on your dashboard
- Custom pages: Add new pages to the sidebar navigation for specialized features
- Event handling: Respond to system events like model updates, compliance changes, or task completions
- External integrations: Connect with third-party services for notifications, data sync, or automation
- Webhooks: Receive and process incoming webhooks from external systems
- Data enrichment: Extend models with custom metadata and attributes
Plugin types
Plugins are categorized by their primary function:
Integration
Connect with external services like Slack, Jira, or cloud providers.
Feature
Add new functionality such as audit trails, analytics, or automation.
Framework
Add compliance frameworks like GDPR, SOC2, or custom standards.
Reporting
Generate custom reports and export data in various formats.
Built-in vs marketplace plugins
VerifyWise provides plugins from two sources:
- Built-in plugins: Pre-installed with VerifyWise and ready to enable. These plugins are maintained by the VerifyWise team and receive automatic updates.
- Marketplace plugins: Available for download from the VerifyWise plugin marketplace. These plugins extend functionality beyond the core platform.
Plugin states
Plugins progress through several states during their lifecycle:
- Registered: The plugin is known to the system but not yet installed (marketplace plugins only).
- Installed: The plugin files are present on the system and ready for use.
- Enabled: The plugin is active and running. Its features are available to users.
- Disabled: The plugin is installed but not running. No resources are consumed.
Plugin permissions
Each plugin declares the permissions it requires to function. Common permissions include:
| Permission | Description |
|---|---|
| events:listen | Receive notifications when system events occur |
| events:emit | Trigger custom events for other plugins |
| database:read | Read data from VerifyWise models |
| database:write | Create or update data in VerifyWise |
| config:read | Access plugin configuration settings |
| http:outbound | Make outbound HTTP requests to external services |
| models:define | Define custom database models for plugin data |
Who can manage plugins
Plugin management is restricted to administrators:
- Administrators: Can install, uninstall, enable, disable, and configure all plugins
- Editors and Viewers: Can view installed plugins and their status but cannot make changes
Security considerations
VerifyWise implements several security measures for the plugin system:
- Permission isolation: Plugins can only access APIs they have been granted permission to use
- Trusted plugin model: Plugins come from verified sources: VerifyWise team, employees, or customers
- Checksum verification: Marketplace plugins are verified against their published checksums
- Error protection: Plugins that crash repeatedly are automatically disabled to protect system stability
- Tenant isolation: Each organization has independent plugin configurations and data
Getting started with plugins
Ready to extend VerifyWise with plugins? Here is what to do next:
- Navigate to Settings > Plugins to view available plugins
- Enable a built-in plugin to try plugin features
- Browse the marketplace for additional plugins
- Configure plugin settings to customize behavior