Adversarial swarm framework for agentic AI red-teaming. Eleven specialist agents, deterministic AIVSS score, OWASP ASI / MITRE ATLAS / CSA aligned.

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jegant from gravatar.com jegant

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache-2.0)
  • Author: Glacien Pte. Ltd.
  • Tags agent , agentic-ai , aivss , llm , mitre-atlas , owasp , red-team , security
  • Requires: Python <3.14, >=3.10
  • Provides-Extra: dev , docs , full , pdf-fallback
Classifiers
Report project as malware

Project description

AgentGuardian Open

PyPI Python License CI Docs

The first open-source adversarial-swarm framework for agentic AI red-teaming. Eleven specialist agents attack your AI agent in parallel under a Swarm Commander LLM. Output: a deterministic 0–100 AIVSS score aligned with the OWASP Top 10 for Agentic Applications 2026, MITRE ATLAS v5.4.0, and the CSA Agentic AI Red Teaming Guide.

Why

Single-chain red-teaming tools send one prompt at a time. Production agents compose tools, hold memory, talk to other agents, and run real code — and that surface needs eleven attackers working in concert.

AgentGuardian deploys a swarm: a reconnaissance agent maps your target, then ten specialist agents (one per OWASP ASI category) attack concurrently, coordinated by a Swarm Commander that re-tasks idle agents and stops early on convergence. Every finding is triple-tagged with OWASP ASI, MITRE ATLAS, and CSA Agentic-RT categories.

Read the full rationale: Why we built this.

How it compares

Tool Multi-agent swarm Agentic-AI focus Standards alignment Open formula License
PyRIT no no NIST AI RMF (partial) no MIT
garak no no own taxonomy no Apache-2.0
Promptfoo no no own taxonomy no MIT
Inspect no no own taxonomy no MIT
DeepTeam no no OWASP LLM Top 10 no Apache-2.0
AgentGuardian yes yes OWASP ASI + ATLAS + CSA + AIVSS yes Apache-2.0

Quickstart

pip install agent-guardian

# Pick an LLM backend, or use --model stub for zero-key testing.
export OPENAI_API_KEY=sk-...

# Scan a system prompt
echo "You are a helpful customer-support bot." > prompt.txt
agent-guardian scan --system-prompt prompt.txt

# Live dashboard at http://localhost:7474
agent-guardian serve

# Marketing badge
agent-guardian badge $(agent-guardian last-score) --svg > badge.svg

Full walkthrough: Five-minute quickstart.

Run with Docker

docker build -t agent-guardian:dev .
docker run --rm -p 7474:7474 agent-guardian:dev serve --host 0.0.0.0

Or with the bundled compose file:

docker compose up --build

Architecture

                          ┌─────────────────────────────┐
                          │     Swarm Commander LLM     │
                          │  (orchestration & dispatch) │
                          └──────────┬──────────────────┘
                                     │
                ┌────────────────────┼────────────────────┐
                │                    │                    │
                ▼                    ▼                    ▼
        ┌──────────────┐     ┌──────────────┐     ┌──────────────┐
        │  Recon Agent │     │   Shared     │     │   Findings   │
        │  (map target)│◀───▶│ Vector Memory│◀───▶│  Aggregator  │
        └──────────────┘     └──────────────┘     └──────────────┘
                                     ▲
                ┌────────────────────┼────────────────────┐
                │   Ten ASI-aligned specialist attackers  │
                │   running in parallel                   │
                │                                         │
                │   ASI01  Goal Hijack                    │
                │   ASI02  Tool Misuse                    │
                │   ASI03  Privilege Abuse                │
                │   ASI04  Supply Chain                   │
                │   ASI05  Unauthorised Code Execution    │
                │   ASI06  Memory Poisoning               │
                │   ASI07  Agent-to-Agent Compromise      │
                │   ASI08  Cascading Failures             │
                │   ASI09  Trust Exploitation             │
                │   ASI10  Rogue Agent / Drift            │
                └─────────────────────────────────────────┘

Full architecture: docs/architecture.

Status

Active development, pre-1.0. The swarm, the scorer, the dashboard, and the signed-report pipeline are all in place. v1.0 ships on PyPI at M15.

Roadmap: docs/roadmap.

Documentation

Contributing

We welcome probes, adapters, bug reports, and PRs. See CONTRIBUTING.md. All contributions require a DCO sign-off.

Security

See SECURITY.md for responsible-disclosure policy. If you find a vulnerability in AgentGuardian itself, please email security@glacien.ai instead of filing a public issue.

Ethics

AgentGuardian Open is for testing systems you own or are explicitly authorised to test. Use against third-party systems without authorisation is unlawful in most jurisdictions and a violation of these terms. See Ethics.

License

Apache License 2.0. See LICENSE and NOTICE.

Trademark

"AgentGuardian" is a trademark of Glacien Pte. Ltd. See TRADEMARKS.md.

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jegant from gravatar.com jegant

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache-2.0)
  • Author: Glacien Pte. Ltd.
  • Tags agent , agentic-ai , aivss , llm , mitre-atlas , owasp , red-team , security
  • Requires: Python <3.14, >=3.10
  • Provides-Extra: dev , docs , full , pdf-fallback
Classifiers

Release history Release notifications | RSS feed

This version

1.0.0rc1 pre-release

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

agent_guardian-1.0.0rc1.tar.gz (229.8 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

agent_guardian-1.0.0rc1-py3-none-any.whl (235.8 kB view details)

Uploaded Python 3

File details

Details for the file agent_guardian-1.0.0rc1.tar.gz.

File metadata

  • Download URL: agent_guardian-1.0.0rc1.tar.gz
  • Upload date:
  • Size: 229.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for agent_guardian-1.0.0rc1.tar.gz
Algorithm Hash digest
SHA256 c8a456b9860a986cf27fee4b11e551782fc5707ac4918c7fe80e7ef506d9e871
MD5 d296ab0ce9e5d09db51f1a6a465bbcf8
BLAKE2b-256 566c423f0d2d6a2f8e40a95282d7665ba877996fec1e602592b771ff9e0918d4

See more details on using hashes here.

Provenance

The following attestation bundles were made for agent_guardian-1.0.0rc1.tar.gz:

Publisher: publish.yml on glacien-technologies/agent-guardian

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file agent_guardian-1.0.0rc1-py3-none-any.whl.

File metadata

File hashes

Hashes for agent_guardian-1.0.0rc1-py3-none-any.whl
Algorithm Hash digest
SHA256 7ffdc53a9e25ab70c5525e80a0918edfd57a2e54705349ec7fa3202fa39b0010
MD5 6c5335b451220f50a27ad06eccc8648f
BLAKE2b-256 658dda7417ad5d61d44180964b1127e8115d14a5280ce61eab0dcd5ac5d45c9f

See more details on using hashes here.

Provenance

The following attestation bundles were made for agent_guardian-1.0.0rc1-py3-none-any.whl:

Publisher: publish.yml on glacien-technologies/agent-guardian

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page