https://github.com/imran-siddique/agent-governance
The complete AI agent governance stack - pip install ai-agent-governance[full] for kernel, trust mesh, runtime supervisor, and SRE
https://github.com/imran-siddique/agent-governance
agent-framework ai-agents compliance enterprise-ai governance llm multi-agent policy-enforcement security trust
Last synced: 4 months ago
JSON representation
The complete AI agent governance stack - pip install ai-agent-governance[full] for kernel, trust mesh, runtime supervisor, and SRE
- Host: GitHub
- URL: https://github.com/imran-siddique/agent-governance
- Owner: imran-siddique
- License: mit
- Created: 2026-02-21T19:06:45.000Z (5 months ago)
- Default Branch: master
- Last Pushed: 2026-03-01T21:49:10.000Z (5 months ago)
- Last Synced: 2026-03-01T21:55:36.923Z (5 months ago)
- Topics: agent-framework, ai-agents, compliance, enterprise-ai, governance, llm, multi-agent, policy-enforcement, security, trust
- Language: Python
- Homepage: https://imransiddique.com
- Size: 98.6 KB
- Stars: 0
- Watchers: 0
- Forks: 3
- Open Issues: 9
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Security: SECURITY.md
Awesome Lists containing this project
README
> ⚠️ **DEPRECATED** — This project has moved to [microsoft/agent-governance-toolkit](https://github.com/microsoft/agent-governance-toolkit). All future development happens there. Please star and follow the new repo!
---
# Agent Governance
**The safety, trust, and reliability platform for production AI agents**
*One install for the complete governance stack — kernel · trust mesh · runtime supervisor · reliability engineering*
[](https://pypi.org/project/ai-agent-governance/)
[](https://github.com/imran-siddique/agent-governance/actions/workflows/ci.yml)
[](https://github.com/imran-siddique/agent-governance/stargazers)
[](https://github.com/sponsors/imran-siddique)
[](https://python.org)
[](LICENSE)
```
pip install ai-agent-governance[full]
```
[Architecture](#architecture) • [Quick Start](#quick-start) • [Components](#components) • [Why Unified?](#why-a-unified-governance-stack) • [Ecosystem](#the-agent-governance-ecosystem) • [OWASP Compliance](docs/OWASP-COMPLIANCE.md) • [Traction](docs/TRACTION.md)
> ⭐ **If this project helps you, please star it!** It helps others discover the agent governance stack.
> 🔗 **Part of the Agent Governance Ecosystem** — Installs [Agent OS](https://github.com/imran-siddique/agent-os) · [AgentMesh](https://github.com/imran-siddique/agent-mesh) · [Agent Hypervisor](https://github.com/imran-siddique/agent-hypervisor) · [Agent SRE](https://github.com/imran-siddique/agent-sre)
---
## Architecture
```
┌─────────────────────────────────────────────────────────────────┐
│ agent-governance │
│ pip install ai-agent-governance[full] │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌───────────────────┐ ┌───────────────────────────┐ │
│ │ Agent OS Kernel │◄────►│ AgentMesh Platform │ │
│ │ │ │ │ │
│ │ Policy Engine │ │ Zero-Trust Identity │ │
│ │ Capability Model │ │ Mutual TLS for Agents │ │
│ │ Audit Logging │ │ Encrypted Channels │ │
│ │ Syscall Layer │ │ Trust Scoring │ │
│ └────────┬──────────┘ └─────────────┬─────────────┘ │
│ │ │ │
│ ▼ ▼ │
│ ┌───────────────────┐ ┌───────────────────────────┐ │
│ │ Agent Hypervisor │ │ Agent SRE │ │
│ │ │ │ │ │
│ │ Execution Rings │ │ Health Monitoring │ │
│ │ Resource Limits │ │ SLO Enforcement │ │
│ │ Runtime Sandboxing│ │ Incident Response │ │
│ │ Kill Switch │ │ Chaos Engineering │ │
│ └───────────────────┘ └───────────────────────────┘ │
│ │
└─────────────────────────────────────────────────────────────────┘
```
---
## Quick Start
```python
import asyncio
from agent_os import StatelessKernel, ExecutionContext
from agentmesh import AgentIdentity
# Boot the governance kernel
kernel = StatelessKernel()
ctx = ExecutionContext(agent_id="my-agent", policies=["read_only"])
# Establish zero-trust agent identity
identity = AgentIdentity.create(
name="my-agent",
sponsor="alice@company.com",
capabilities=["read:data", "write:reports"],
)
# Execute a governed action
async def main():
result = await kernel.execute(
action="database_query",
params={"query": "SELECT * FROM users"},
context=ctx,
)
print(f"Success: {result.success}, Data: {result.data}")
asyncio.run(main())
```
Install only what you need:
```bash
# Core: kernel + trust mesh
pip install ai-agent-governance
# Full stack: adds hypervisor + SRE
pip install ai-agent-governance[full]
# À la carte
pip install ai-agent-governance[hypervisor]
pip install ai-agent-governance[sre]
```
---
## Components
| Component | Package | What It Does |
|-----------|---------|--------------|
| **[Agent OS](https://github.com/imran-siddique/agent-os)** | `agent-os-kernel` | Governance kernel — policy enforcement, capability-based security, audit trails, and the syscall abstraction layer for AI agents |
| **[AgentMesh](https://github.com/imran-siddique/agent-mesh)** | `agentmesh-platform` | Zero-trust communication — mutual TLS for agents, encrypted channels, trust scoring, and secure multi-agent orchestration ("SSL for AI Agents") |
| **[Agent Hypervisor](https://github.com/imran-siddique/agent-hypervisor)** | `agent-hypervisor` | Runtime supervisor — execution rings, resource limits, sandboxed execution, kill switches, and real-time intervention for autonomous agents |
| **[Agent SRE](https://github.com/imran-siddique/agent-sre)** | `agent-sre` | Reliability engineering — health monitoring, SLO enforcement, incident response automation, and chaos engineering for agent fleets |
### Star the ecosystem
[](https://github.com/imran-siddique/agent-os)
[](https://github.com/imran-siddique/agent-mesh)
[](https://github.com/imran-siddique/agent-hypervisor)
[](https://github.com/imran-siddique/agent-sre)
---
## Why a Unified Governance Stack?
Running AI agents in production without governance is like deploying microservices without TLS, RBAC, or monitoring. Each layer solves a different problem:
| Concern | Without Governance | With Agent Governance |
|---------|-------------------|----------------------|
| **Security** | Agents call any tool, access any resource | Capability-based permissions, policy enforcement |
| **Trust** | No identity verification between agents | Mutual TLS, trust scores, encrypted channels |
| **Control** | Runaway agents consume unbounded resources | Execution rings, resource limits, kill switches |
| **Reliability** | Silent failures, no observability | SLO enforcement, health checks, incident automation |
| **Compliance** | No audit trail for agent decisions | Immutable audit logs, decision lineage tracking |
**One install. Four layers of protection.**
The meta-package ensures all components are version-compatible and properly integrated. No dependency conflicts, no version mismatches — just a single `pip install` to go from zero to production-grade agent governance.
---
## The Agent Governance Ecosystem
```
agent-governance ─── The meta-package (you are here)
├── agent-os-kernel ─── Governance kernel
├── agentmesh-platform ─── Zero-trust mesh
├── agent-hypervisor ─── Runtime supervisor (optional)
└── agent-sre ─── Reliability engineering (optional)
```
Each component works standalone, but they're designed to work together. The kernel enforces policy, the mesh secures communication, the hypervisor controls execution, and SRE keeps everything running.
---
## Examples
See the [`examples/`](examples/) directory for runnable demos:
```bash
# Quick start — boot the governance stack in 30 lines
python examples/quickstart.py
# Full stack — all 4 layers working together
python examples/governed_agent.py
```
---
## Framework Integration
```bash
# LangChain
pip install langchain ai-agent-governance
# CrewAI
pip install crewai ai-agent-governance
# AutoGen
pip install pyautogen ai-agent-governance
```
---
## 🗺️ Roadmap
| Quarter | Milestone |
|---------|-----------|
| **Q1 2026** | ✅ Unified meta-package, 4 components integrated, PyPI published |
| **Q2 2026** | Cross-component integration tests, unified CLI, dashboard UI |
| **Q3 2026** | Helm chart for Kubernetes, managed cloud preview |
| **Q4 2026** | SOC2 Type II certification, enterprise support tier |
---
## 🛡️ OWASP Agentic Top 10 Coverage
The agent governance stack covers **9 of 10** risks from the [OWASP Top 10 for Agentic Applications (2026)](https://genai.owasp.org/resource/owasp-top-10-for-agentic-applications-for-2026/):
| OWASP Risk | Coverage | Component |
|-----------|----------|-----------|
| Agent Goal Hijack | ✅ | Agent OS — Policy Engine |
| Tool Misuse | ✅ | Agent OS — Capability Sandboxing |
| Identity & Privilege Abuse | ✅ | AgentMesh — DID Identity |
| Supply Chain Vulnerabilities | 🔄 Roadmap | Agent-SBOM (planned) |
| Unexpected Code Execution | ✅ | Agent Hypervisor — Execution Rings |
| Memory & Context Poisoning | ✅ | Agent OS — VFS + CMVK |
| Insecure Inter-Agent Communication | ✅ | AgentMesh — IATP Protocol |
| Cascading Failures | ✅ | Agent SRE — Circuit Breakers |
| Human-Agent Trust Exploitation | ✅ | Agent OS — Approval Workflows |
| Rogue Agents | ✅ | Agent Hypervisor — Kill Switch |
**[→ Full OWASP compliance mapping with code examples](docs/OWASP-COMPLIANCE.md)**
---
## 📈 Traction
The ecosystem is growing — **3,000+ views, 9,400+ clones, and 1,278 unique developers** in the last 14 days alone. Traffic from Medium, Reddit, LinkedIn, Google, and even ChatGPT.
**[→ See full traction report](docs/TRACTION.md)**
---
## Contributing
We welcome contributions! See our [Contributing Guide](CONTRIBUTING.md) for details.
For component-specific contributions, see:
- [Agent OS](https://github.com/imran-siddique/agent-os/blob/master/CONTRIBUTING.md)
- [AgentMesh](https://github.com/imran-siddique/agent-mesh/blob/master/CONTRIBUTING.md)
- [Agent Hypervisor](https://github.com/imran-siddique/agent-hypervisor/blob/master/CONTRIBUTING.md)
- [Agent SRE](https://github.com/imran-siddique/agent-sre/blob/master/CONTRIBUTING.md)
## License
MIT — see [LICENSE](LICENSE) for details.
---
**[imransiddique.com](https://imransiddique.com)** · **[Documentation](https://imransiddique.com/agent-os-docs/)** · **[GitHub](https://github.com/imran-siddique)**
*Building the governance layer for the agentic era*