{"id":47885354,"url":"https://github.com/imran-siddique/agent-governance","last_synced_at":"2026-04-04T02:14:38.567Z","repository":{"id":339833350,"uuid":"1163525962","full_name":"imran-siddique/agent-governance","owner":"imran-siddique","description":"The complete AI agent governance stack - pip install ai-agent-governance[full] for kernel, trust mesh, runtime supervisor, and SRE","archived":false,"fork":false,"pushed_at":"2026-03-01T21:49:10.000Z","size":101,"stargazers_count":0,"open_issues_count":9,"forks_count":3,"subscribers_count":0,"default_branch":"master","last_synced_at":"2026-03-01T21:55:36.923Z","etag":null,"topics":["agent-framework","ai-agents","compliance","enterprise-ai","governance","llm","multi-agent","policy-enforcement","security","trust"],"latest_commit_sha":null,"homepage":"https://imransiddique.com","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/imran-siddique.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-02-21T19:06:45.000Z","updated_at":"2026-03-01T21:47:23.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/imran-siddique/agent-governance","commit_stats":null,"previous_names":["imran-siddique/agent-governance"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/imran-siddique/agent-governance","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/imran-siddique%2Fagent-governance","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/imran-siddique%2Fagent-governance/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/imran-siddique%2Fagent-governance/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/imran-siddique%2Fagent-governance/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/imran-siddique","download_url":"https://codeload.github.com/imran-siddique/agent-governance/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/imran-siddique%2Fagent-governance/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31384918,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-04T01:22:39.193Z","status":"online","status_checked_at":"2026-04-04T02:00:07.569Z","response_time":60,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["agent-framework","ai-agents","compliance","enterprise-ai","governance","llm","multi-agent","policy-enforcement","security","trust"],"created_at":"2026-04-04T02:14:37.388Z","updated_at":"2026-04-04T02:14:38.540Z","avatar_url":"https://github.com/imran-siddique.png","language":"Python","funding_links":["https://github.com/sponsors/imran-siddique"],"categories":[],"sub_categories":[],"readme":"\u003e ⚠️ **DEPRECATED** — This project has moved to [microsoft/agent-governance-toolkit](https://github.com/microsoft/agent-governance-toolkit). All future development happens there. Please star and follow the new repo!\n\n---\n\u003cdiv align=\"center\"\u003e\n\n# Agent Governance\n\n**The safety, trust, and reliability platform for production AI agents**\n\n*One install for the complete governance stack — kernel · trust mesh · runtime supervisor · reliability engineering*\n\n[![PyPI](https://img.shields.io/badge/pypi-ai--agent--governance-blue.svg)](https://pypi.org/project/ai-agent-governance/)\n[![CI](https://github.com/imran-siddique/agent-governance/actions/workflows/ci.yml/badge.svg)](https://github.com/imran-siddique/agent-governance/actions/workflows/ci.yml)\n[![GitHub Stars](https://img.shields.io/github/stars/imran-siddique/agent-governance?style=social)](https://github.com/imran-siddique/agent-governance/stargazers)\n[![Sponsor](https://img.shields.io/badge/sponsor-❤️-ff69b4)](https://github.com/sponsors/imran-siddique)\n[![Python](https://img.shields.io/badge/python-3.9+-blue.svg)](https://python.org)\n[![License](https://img.shields.io/badge/license-MIT-blue.svg)](LICENSE)\n\n```\npip install ai-agent-governance[full]\n```\n\n[Architecture](#architecture) • [Quick Start](#quick-start) • [Components](#components) • [Why Unified?](#why-a-unified-governance-stack) • [Ecosystem](#the-agent-governance-ecosystem) • [OWASP Compliance](docs/OWASP-COMPLIANCE.md) • [Traction](docs/TRACTION.md)\n\n\u003c/div\u003e\n\n\u003e ⭐ **If this project helps you, please star it!** It helps others discover the agent governance stack.\n\n\u003e 🔗 **Part of the Agent Governance Ecosystem** — Installs [Agent OS](https://github.com/imran-siddique/agent-os) · [AgentMesh](https://github.com/imran-siddique/agent-mesh) · [Agent Hypervisor](https://github.com/imran-siddique/agent-hypervisor) · [Agent SRE](https://github.com/imran-siddique/agent-sre)\n\n---\n\n## Architecture\n\n```\n┌─────────────────────────────────────────────────────────────────┐\n│                      agent-governance                           │\n│                  pip install ai-agent-governance[full]           │\n├─────────────────────────────────────────────────────────────────┤\n│                                                                 │\n│   ┌───────────────────┐      ┌───────────────────────────┐     │\n│   │   Agent OS Kernel │◄────►│   AgentMesh Platform      │     │\n│   │                   │      │                           │     │\n│   │  Policy Engine    │      │  Zero-Trust Identity      │     │\n│   │  Capability Model │      │  Mutual TLS for Agents    │     │\n│   │  Audit Logging    │      │  Encrypted Channels       │     │\n│   │  Syscall Layer    │      │  Trust Scoring             │     │\n│   └────────┬──────────┘      └─────────────┬─────────────┘     │\n│            │                               │                   │\n│            ▼                               ▼                   │\n│   ┌───────────────────┐      ┌───────────────────────────┐     │\n│   │ Agent Hypervisor  │      │   Agent SRE               │     │\n│   │                   │      │                           │     │\n│   │  Execution Rings  │      │  Health Monitoring        │     │\n│   │  Resource Limits  │      │  SLO Enforcement          │     │\n│   │  Runtime Sandboxing│     │  Incident Response        │     │\n│   │  Kill Switch      │      │  Chaos Engineering        │     │\n│   └───────────────────┘      └───────────────────────────┘     │\n│                                                                 │\n└─────────────────────────────────────────────────────────────────┘\n```\n\n---\n\n## Quick Start\n\n```python\nimport asyncio\nfrom agent_os import StatelessKernel, ExecutionContext\nfrom agentmesh import AgentIdentity\n\n# Boot the governance kernel\nkernel = StatelessKernel()\nctx = ExecutionContext(agent_id=\"my-agent\", policies=[\"read_only\"])\n\n# Establish zero-trust agent identity\nidentity = AgentIdentity.create(\n    name=\"my-agent\",\n    sponsor=\"alice@company.com\",\n    capabilities=[\"read:data\", \"write:reports\"],\n)\n\n# Execute a governed action\nasync def main():\n    result = await kernel.execute(\n        action=\"database_query\",\n        params={\"query\": \"SELECT * FROM users\"},\n        context=ctx,\n    )\n    print(f\"Success: {result.success}, Data: {result.data}\")\n\nasyncio.run(main())\n```\n\nInstall only what you need:\n\n```bash\n# Core: kernel + trust mesh\npip install ai-agent-governance\n\n# Full stack: adds hypervisor + SRE\npip install ai-agent-governance[full]\n\n# À la carte\npip install ai-agent-governance[hypervisor]\npip install ai-agent-governance[sre]\n```\n\n---\n\n## Components\n\n| Component | Package | What It Does |\n|-----------|---------|--------------|\n| **[Agent OS](https://github.com/imran-siddique/agent-os)** | `agent-os-kernel` | Governance kernel — policy enforcement, capability-based security, audit trails, and the syscall abstraction layer for AI agents |\n| **[AgentMesh](https://github.com/imran-siddique/agent-mesh)** | `agentmesh-platform` | Zero-trust communication — mutual TLS for agents, encrypted channels, trust scoring, and secure multi-agent orchestration (\"SSL for AI Agents\") |\n| **[Agent Hypervisor](https://github.com/imran-siddique/agent-hypervisor)** | `agent-hypervisor` | Runtime supervisor — execution rings, resource limits, sandboxed execution, kill switches, and real-time intervention for autonomous agents |\n| **[Agent SRE](https://github.com/imran-siddique/agent-sre)** | `agent-sre` | Reliability engineering — health monitoring, SLO enforcement, incident response automation, and chaos engineering for agent fleets |\n\n### Star the ecosystem\n\n\u003cp align=\"center\"\u003e\n\n[![Agent OS Stars](https://img.shields.io/github/stars/imran-siddique/agent-os?label=Agent%20OS\u0026style=social)](https://github.com/imran-siddique/agent-os)\u0026nbsp;\u0026nbsp;\n[![AgentMesh Stars](https://img.shields.io/github/stars/imran-siddique/agent-mesh?label=AgentMesh\u0026style=social)](https://github.com/imran-siddique/agent-mesh)\u0026nbsp;\u0026nbsp;\n[![Agent Hypervisor Stars](https://img.shields.io/github/stars/imran-siddique/agent-hypervisor?label=Agent%20Hypervisor\u0026style=social)](https://github.com/imran-siddique/agent-hypervisor)\u0026nbsp;\u0026nbsp;\n[![Agent SRE Stars](https://img.shields.io/github/stars/imran-siddique/agent-sre?label=Agent%20SRE\u0026style=social)](https://github.com/imran-siddique/agent-sre)\n\n\u003c/p\u003e\n\n---\n\n## Why a Unified Governance Stack?\n\nRunning AI agents in production without governance is like deploying microservices without TLS, RBAC, or monitoring. Each layer solves a different problem:\n\n| Concern | Without Governance | With Agent Governance |\n|---------|-------------------|----------------------|\n| **Security** | Agents call any tool, access any resource | Capability-based permissions, policy enforcement |\n| **Trust** | No identity verification between agents | Mutual TLS, trust scores, encrypted channels |\n| **Control** | Runaway agents consume unbounded resources | Execution rings, resource limits, kill switches |\n| **Reliability** | Silent failures, no observability | SLO enforcement, health checks, incident automation |\n| **Compliance** | No audit trail for agent decisions | Immutable audit logs, decision lineage tracking |\n\n**One install. Four layers of protection.**\n\nThe meta-package ensures all components are version-compatible and properly integrated. No dependency conflicts, no version mismatches — just a single `pip install` to go from zero to production-grade agent governance.\n\n---\n\n## The Agent Governance Ecosystem\n\n```\nagent-governance ─── The meta-package (you are here)\n├── agent-os-kernel ─── Governance kernel\n├── agentmesh-platform ─── Zero-trust mesh\n├── agent-hypervisor ─── Runtime supervisor (optional)\n└── agent-sre ─── Reliability engineering (optional)\n```\n\nEach component works standalone, but they're designed to work together. The kernel enforces policy, the mesh secures communication, the hypervisor controls execution, and SRE keeps everything running.\n\n---\n\n## Examples\n\nSee the [`examples/`](examples/) directory for runnable demos:\n\n```bash\n# Quick start — boot the governance stack in 30 lines\npython examples/quickstart.py\n\n# Full stack — all 4 layers working together\npython examples/governed_agent.py\n```\n\n---\n\n## Framework Integration\n\n```bash\n# LangChain\npip install langchain ai-agent-governance\n\n# CrewAI\npip install crewai ai-agent-governance\n\n# AutoGen\npip install pyautogen ai-agent-governance\n```\n\n---\n\n## 🗺️ Roadmap\n\n| Quarter | Milestone |\n|---------|-----------|\n| **Q1 2026** | ✅ Unified meta-package, 4 components integrated, PyPI published |\n| **Q2 2026** | Cross-component integration tests, unified CLI, dashboard UI |\n| **Q3 2026** | Helm chart for Kubernetes, managed cloud preview |\n| **Q4 2026** | SOC2 Type II certification, enterprise support tier |\n\n---\n\n## 🛡️ OWASP Agentic Top 10 Coverage\n\nThe agent governance stack covers **9 of 10** risks from the [OWASP Top 10 for Agentic Applications (2026)](https://genai.owasp.org/resource/owasp-top-10-for-agentic-applications-for-2026/):\n\n| OWASP Risk | Coverage | Component |\n|-----------|----------|-----------|\n| Agent Goal Hijack | ✅ | Agent OS — Policy Engine |\n| Tool Misuse | ✅ | Agent OS — Capability Sandboxing |\n| Identity \u0026 Privilege Abuse | ✅ | AgentMesh — DID Identity |\n| Supply Chain Vulnerabilities | 🔄 Roadmap | Agent-SBOM (planned) |\n| Unexpected Code Execution | ✅ | Agent Hypervisor — Execution Rings |\n| Memory \u0026 Context Poisoning | ✅ | Agent OS — VFS + CMVK |\n| Insecure Inter-Agent Communication | ✅ | AgentMesh — IATP Protocol |\n| Cascading Failures | ✅ | Agent SRE — Circuit Breakers |\n| Human-Agent Trust Exploitation | ✅ | Agent OS — Approval Workflows |\n| Rogue Agents | ✅ | Agent Hypervisor — Kill Switch |\n\n**[→ Full OWASP compliance mapping with code examples](docs/OWASP-COMPLIANCE.md)**\n\n---\n\n## 📈 Traction\n\nThe ecosystem is growing — **3,000+ views, 9,400+ clones, and 1,278 unique developers** in the last 14 days alone. Traffic from Medium, Reddit, LinkedIn, Google, and even ChatGPT.\n\n**[→ See full traction report](docs/TRACTION.md)**\n\n---\n\n## Contributing\n\nWe welcome contributions! See our [Contributing Guide](CONTRIBUTING.md) for details.\n\nFor component-specific contributions, see:\n- [Agent OS](https://github.com/imran-siddique/agent-os/blob/master/CONTRIBUTING.md)\n- [AgentMesh](https://github.com/imran-siddique/agent-mesh/blob/master/CONTRIBUTING.md)\n- [Agent Hypervisor](https://github.com/imran-siddique/agent-hypervisor/blob/master/CONTRIBUTING.md)\n- [Agent SRE](https://github.com/imran-siddique/agent-sre/blob/master/CONTRIBUTING.md)\n\n## License\n\nMIT — see [LICENSE](LICENSE) for details.\n\n---\n\n\u003cdiv align=\"center\"\u003e\n\n**[imransiddique.com](https://imransiddique.com)** · **[Documentation](https://imransiddique.com/agent-os-docs/)** · **[GitHub](https://github.com/imran-siddique)**\n\n*Building the governance layer for the agentic era*\n\n\u003c/div\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fimran-siddique%2Fagent-governance","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fimran-siddique%2Fagent-governance","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fimran-siddique%2Fagent-governance/lists"}