Enterprise AI Engineering Control Plane — secure, token-optimized, context-aware governance for coding agents.
Project description
Agentra
Enterprise AI Engineering Control Plane
Secure, govern, and optimize AI coding agents — automatically.
Agentra is a DevSecOps control plane for AI coding assistants. It auto-detects your project stack, enforces 31 security policies across 8 categories (including the OWASP Top 10), manages context token budgets, generates tailored instruction files for every major agent platform, and gates builds against real vulnerability scans.
| 40+ Technologies Detected | 31 Security Policies | 14 Built-in Skills |
| 7 Agent Platforms | 5 Compliance Frameworks | 15 CLI Commands |
Quick Start
# Install
pip install agentra
# Initialize — auto-detect stack, generate agent instruction files
ag init --mode quick
# Run security vulnerability scan (OWASP Top 10 + SAST + CVE)
ag scan
# Security gate: scan then build only if clean
ag prebuild "docker build ."
# Run security governance checks
ag enforce
# Check a command before running it
ag simulate "rm -rf /tmp/build"
# Install git hooks (pre-commit + pre-push security gates)
ag hooks install
# Generate a Claude Code plugin package
ag plugin
# Run benchmarks and generate reports
ag benchmark
Features
| Feature | Description |
|---|---|
| 🔍 Stack Detection | Auto-detect languages, frameworks, databases, cloud providers, CI/CD, and agents with confidence scores |
| 🛡 Security Governance | 31 policies across 8 categories including OWASP Top 10 (A01–A10) |
| 🔬 Vulnerability Scanning | Pre-build OWASP pattern scan, SAST (bandit/semgrep), and dependency CVE scan (pip-audit/npm audit/cargo audit) |
| 🚦 Pre-Build Security Gates | Block builds on CRITICAL findings; CI templates for GitHub Actions, GitLab CI, and generic shell |
| 🪝 Git Hooks | Auto-install pre-commit (OWASP scan) and pre-push (full scan) hooks with clean install/uninstall |
| 🔌 Claude Code Plugin | Distributable plugin package with PreToolUse hook, 4 skills, and Karpathy coding guidelines |
| 🧩 Skills System | 14 domain skills (FastAPI, Terraform, K8s, Spark, Airflow, PostgreSQL, Snowflake, dbt, Kafka, OpenAI, LangChain, MCP, Databricks, Karpathy) |
| 📦 Token Optimization | Deduplicate, prioritize, compress, and budget-fit instructions — 30-60% token savings |
| 🔌 Agent Adapters | Native instruction files for Claude, Cursor, Copilot, Aider, Windsurf, Continue.dev, and universal AGENTS.md |
| ⚙ Execution Safety | Risk-classify commands, block destructive patterns, sandbox with approval gates, dry-run mode |
| ✓ Compliance | Map violations to SOC2, ISO27001, PCI DSS, HIPAA, NIST frameworks |
| 📊 Benchmarking | Before/after metrics for every skill with HTML + Markdown report generation |
CLI Commands
| Command | Description |
|---|---|
ag init |
Initialize project — detect stack, save config, generate agent files |
ag detect |
Scan and display detected technologies with confidence scores |
ag enforce |
Run security policies against codebase, report violations with risk scoring |
ag scan |
Vulnerability scan: OWASP Top 10 patterns, SAST (bandit/semgrep), dependency CVEs |
ag prebuild <cmd> |
Security gate — scan then run build command only if no CRITICAL findings |
ag hooks <action> |
Manage git hooks (install/uninstall/status) and generate CI templates |
ag plugin |
Generate a Claude Code plugin package with skills and PreToolUse hook |
ag optimize |
Show token optimization analysis: deduplication, compression, budget fitting |
ag simulate <cmd> |
Dry-run a command through the execution safety engine |
ag explain <rule> |
Display full details of a security policy (e.g., ag explain SEC-001) |
ag validate |
Full pipeline: governance + compliance + optimization in one command |
ag benchmark |
Run skill benchmarks, generate Markdown + HTML reports |
ag audit |
View local audit log of all Agentra actions |
ag doctor |
Health check: verify config, agent files, .gitignore |
ag version |
Display version |
Usage Examples
# Enterprise mode with SOC2 + ISO27001 compliance
ag init --mode enterprise --agents claude,copilot
# Full vulnerability scan — OWASP + SAST + deps
ag scan
# Scan with specific targets
ag scan --owasp --deps # OWASP patterns + dependency CVEs
ag scan --sast # SAST only (requires bandit or semgrep)
ag scan --format json > report.json # Machine-readable output
# Security gate before any build
ag prebuild "docker build ."
ag prebuild "python -m pytest" --block-high
# Git hooks
ag hooks install
ag hooks status
ag hooks ci --ci github --output .github/workflows/security.yml
# Generate Claude Code plugin
ag plugin --output my-plugin/
# Then in Claude Code: /plugin add my-plugin/
# Explain a specific policy rule
ag explain DB-001
# DB-001 — no-auto-drop
# Severity: CRITICAL │ Category: database
# Never auto-execute DROP TABLE/DATABASE without explicit approval
# Full validation pipeline
ag validate
# Governance: 4 violations │ Risk: 29.0 │ Blast Radius: high
# Compliance: SOC2: 3 findings │ PCI_DSS: 2 findings
# Optimization: 3,840 → 2,112 tokens (45.0% reduction)
Security Policies
31 built-in policies across 8 categories:
| Category | Policies | Key Rules |
|---|---|---|
| Database | DB-001, DB-002, DB-003 | No auto-DROP, no unguarded mutations, require rollback plans |
| Execution | EX-001 – EX-004 | No inline shell, no curl|bash, no eval/exec, no rm -rf |
| Secrets | SEC-001 – SEC-003 | No hardcoded secrets, no key logging, no secret persistence |
| Git | GIT-001 – GIT-003 | No force push, no main commits, no secret commits |
| Infrastructure | INF-001 – INF-003 | No public resources, no wildcard IAM, require encryption |
| Prompt Injection | PI-001 – PI-003 | Detect injection, hidden injections, validate external instructions |
| Runtime | RT-001, RT-002 | No debug in prod, require error handling |
| Vulnerability (OWASP) | VULN-001 – VULN-010 | A01 Broken Access Control, A02 Crypto, A03 Injection, A04 Design, A05 Misconfiguration, A06 Components, A07 Auth Failures, A08 Deserialization, A09 Logging, A10 SSRF |
Agent Adapters
Generates native instruction files for each platform:
| Platform | Output File | Format |
|---|---|---|
| Claude | CLAUDE.md |
Markdown |
| Cursor | .cursorrules |
Markdown |
| GitHub Copilot | .github/copilot-instructions.md |
Markdown |
| Aider | .aider.conf.yml |
YAML |
| Windsurf | .windsurfrules |
Markdown |
| Continue.dev | .continue/config.json |
JSON |
| Universal | AGENTS.md |
Markdown |
Architecture
agentra/
├── cli/ # Typer CLI with Rich output
├── detection/ # Stack detection engine (40+ technologies)
├── governance/ # Security policy engine (31 rules, 8 categories)
├── scanner/ # Vulnerability scanning: OWASP patterns, SAST, deps CVE
├── hooks/ # Git hook management + CI template generation
├── plugin/ # Claude Code plugin generator
├── optimizer/ # Token optimization (dedup, prioritize, compress, budget-fit)
├── adapters/ # Agent platform adapters (7 platforms)
├── skills/ # Domain skill packs (14 built-in)
├── execution/ # Execution safety engine (risk classify, sandbox, approve)
├── onboarding/ # Project initialization (4 modes)
├── compliance/ # Compliance mapping (SOC2, ISO27001, PCI DSS, HIPAA, NIST)
├── benchmarks/ # Skill benchmarking with before/after metrics
├── renderers/ # HTML + Markdown report generation
├── risk/ # Risk scoring and blast radius estimation
├── telemetry/ # Local-only JSON audit logging
└── models.py # Pydantic data models
Onboarding Modes
| Mode | Security | Compliance | Token Budget | Best For |
|---|---|---|---|---|
quick |
Standard | — | 12k / 4k / 2k | Fast dev setup |
guided |
Strict | All 5 frameworks | 12k / 4k / 2k | Interactive comprehensive |
enterprise |
Enterprise | SOC2 + ISO27001 | 16k / 6k / 3k | Production deployments |
ci |
Standard | — | 8k / 3k / 1.5k | CI/CD pipelines |
Benchmarking & Reports
Every skill is benchmarked with before/after metrics:
- Instruction Token Cost — tokens consumed by skill instructions
- Security Policy Coverage — policies activated by the skill
- Context Relevance — stack-match relevance score (0–1)
- Instruction Compression — compression ratio achieved
ag benchmark --output reports/
# ✓ Benchmark report (MD): reports/benchmark-report.md
# ✓ Benchmark report (HTML): reports/benchmark-report.html
The HTML report is a self-contained dark-themed dashboard with stat cards, metric bars, and tables. Open it directly in a browser.
Configuration
Agentra uses .agentra.yml:
project:
name: my-project
languages: [python]
frameworks: [fastapi]
sdks: [openai]
security:
mode: enterprise
edr_safe: true
compliance: [SOC2, ISO27001]
optimization:
minimal_context: true
token_budget:
input: 12000
output: 4000
agents: [claude, copilot, cursor]
skills: [fastapi, postgresql, karpathy]
karpathy_guidelines: true # Embed behavioral coding guidelines in all agent files
scanner_enabled: true # Enable pre-build vulnerability scanning
Pre-Build Security Gates
Agentra intercepts builds before they run and gates on vulnerability findings:
# Manual gate
ag prebuild "docker build ."
# → Runs OWASP + SAST + deps scan
# → Blocks if CRITICAL findings (exit 1)
# → Warns on HIGH findings (continues)
# Git hook gate (auto-runs on every commit/push)
ag hooks install
# → pre-commit: OWASP scan (fast, <5s)
# → pre-push: full scan (OWASP + SAST + deps)
# CI pipeline gate
ag hooks ci --ci github --output .github/workflows/security.yml
ag hooks ci --ci gitlab --output .gitlab-ci.yml
Scanner degrades gracefully — bandit, semgrep, pip-audit, npm audit, and cargo audit are all optional. The built-in OWASP regex scanner works with no extra dependencies.
Claude Code Plugin
Agentra ships as a distributable Claude Code plugin:
# Generate plugin package
ag plugin --output .agentra-plugin/
# Install in Claude Code
/plugin add .agentra-plugin/
The plugin includes:
- PreToolUse hook — intercepts
bash,make,npm run,cargo,dockercommands and runsag scan --owaspautomatically /agentra-scan— run a full vulnerability scan/agentra-enforce— run governance policy checks/agentra-prebuild— security gate before a buildagentra-guardian— always-on skill with Karpathy coding guidelines + security baseline
Karpathy Coding Guidelines
All generated agent instruction files include Andrej Karpathy's 4 behavioral coding rules:
- Think Before Coding — Read the full task before writing any code
- Simplicity First — Prefer the simplest solution that works; complexity is a liability
- Surgical Changes — Change only what is necessary; don't refactor opportunistically
- Goal-Driven Execution — Every line must serve the stated task; delete code that doesn't
These are embedded in CLAUDE.md, .cursorrules, .github/copilot-instructions.md, .windsurfrules, and AGENTS.md by default (karpathy_guidelines: true).
Documentation
Full interactive documentation is available at docs/index.html — a storybook-style guide covering every feature, command, policy, skill, and adapter with usage examples. A Markdown version is at docs/index.md.
Development
# Install dev dependencies
pip install -e ".[dev]"
# Run tests (72 tests)
pytest tests/ -v
# Lint
ruff check agentra/
# Type check
mypy agentra/
Acknowledgements
This project was inspired by agent-policykit by Siddharth Rathore. Thanks for the idea and the foundational work that sparked Agentra.
License
MIT
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file agentra-0.2.0.tar.gz.
File metadata
- Download URL: agentra-0.2.0.tar.gz
- Upload date:
- Size: 75.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
fb7997f839c4b7721ddc75c2ed38014252602bebebc987c43562ed5732d0d089
|
|
| MD5 |
82fa3efa4803836b8c37381483994b8b
|
|
| BLAKE2b-256 |
8a0440aa048f17afb2c47845a60fc16992e995f9175d99b80592be33f8f08393
|
File details
Details for the file agentra-0.2.0-py3-none-any.whl.
File metadata
- Download URL: agentra-0.2.0-py3-none-any.whl
- Upload date:
- Size: 72.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
47fce0b70a7136f0aa25358cd1a5f58cd7e7b014c1d1618875115b36bb4c609a
|
|
| MD5 |
a71351ce265f31a722f01005c6ee7e6f
|
|
| BLAKE2b-256 |
9371d15a94ff40116b73de4701a311612ddf298a45a1202f00dc9dfe9461133c
|