Python SDK for Agent Veil Protocol — reputation and identity for AI agents
Project description
agentveil
Python SDK for Agent Veil Protocol — trust enforcement for autonomous agents.
PyPI: agentveil | API: agentveil.dev | Network: Live Network
Why agent trust infrastructure matters — verified CVEs, market data, and the structural problem AVP addresses.
Open-source contribution merged into Microsoft Agent Governance Toolkit — AVPProvider added as a TrustProvider implementation (PR #1010, merged upstream).
Paper: Boiko, O. (2026). Why AI Agent Reputation Needs Both Link Analysis and Flow-Based Gating. Zenodo.
Full end-to-end walkthrough:
examples/proof_pack/— annotated example of the complete arc: trust check → delegation → signal change → alert → offline-verifiable proof. Requires a local AVP backend.
from agentveil import AVPAgent
agent = AVPAgent.load("https://agentveil.dev", "my-agent")
# Should I trust this agent with my task?
decision = agent.can_trust("did:key:z6Mk...", min_tier="trusted")
if decision["allowed"]:
delegate_task()
# → {"allowed": true, "tier": "trusted", "risk_level": "low", "reason": "..."}
Install
pip install agentveil
Quick Start
Trust decision — one call
from agentveil import AVPAgent
agent = AVPAgent.load("https://agentveil.dev", "my-agent")
decision = agent.can_trust("did:key:z6Mk...", min_tier="trusted")
print(decision["allowed"], decision["reason"])
Auto-track with decorator
from agentveil import avp_tracked
@avp_tracked("https://agentveil.dev", name="reviewer", to_did="did:key:z6Mk...")
def review_code(pr_url: str) -> str:
return analysis
# Success → positive attestation | Exception → negative attestation
# First call → auto-registers agent + publishes card
Try without a server
agent = AVPAgent.create(mock=True, name="test_agent")
agent.register(display_name="Test Agent")
rep = agent.get_reputation()
print(rep) # Works offline — real crypto, mocked HTTP
Verify trust offline — no SDK required
# Get a W3C Verifiable Credential (VC v2.0)
curl https://agentveil.dev/v1/reputation/{agent_did}/credential?format=w3c
The response is a standard W3C VC with a DataIntegrityProof (eddsa-jcs-2022). Verify it with any VC library — Veramo, SpruceID, Digital Bazaar, or your own Ed25519 implementation. No AVP SDK needed.
# Or verify with the SDK:
cred = agent.get_reputation_credential(format="w3c")
assert AVPAgent.verify_w3c_credential(cred) # offline, no API call
Features
- Trust Check —
can_trust()— one-call advisory trust decision: score + tier + risk + explanation - W3C VC v2.0 Credentials — Trust credentials are W3C Verifiable Credentials compliant (
eddsa-jcs-2022Data Integrity proof). Verify offline with any standard VC library, no AVP SDK required - One-Line Decorator —
@avp_tracked()— auto-register, auto-attest, auto-protect - DID Identity — W3C
did:key(Ed25519). Portable agent identity - Reputation — Peer-attested scoring with Bayesian confidence. Sybil-resistant
- Attestations — Signed peer-to-peer ratings. Negative ratings require SHA-256 evidence. Score updates immediately
- Dispute Protection — Contest unfair ratings. Auto-assigned arbitrator from verified pool
- Agent Discovery — Publish capabilities, find agents by skill and reputation
- Webhook Alerts — Push notifications on score drops (setup guide)
- Sybil Resistance — Multi-layer graph analysis blocks fake agent rings
- Trust Gate — Reputation-based rate limiting (newcomer → basic → trusted → elite)
Integrations
| Framework | Install | Quick Start |
|---|---|---|
| Any Python | pip install agentveil |
@avp_tracked() or AVPAgent directly |
| CrewAI | pip install agentveil crewai |
tools=[AVPReputationTool(), AVPDelegationTool()] |
| LangGraph | pip install agentveil langgraph |
ToolNode([avp_check_reputation, avp_should_delegate]) |
| AutoGen | pip install agentveil autogen-core |
tools=avp_reputation_tools() |
| OpenAI | pip install agentveil openai |
tools=avp_tool_definitions() |
| Claude | pip install 'agentveil[mcp]' |
agentveil-mcp — MCP server, docs |
| Hermes | pip install 'agentveil[mcp]' |
agentveil-mcp + agentskills.io skill |
| Paperclip | pip install agentveil |
avp_should_delegate() + avp_evaluate_team() |
| AWS Bedrock | pip install agentveil boto3 |
Converse API with AVP trust tools |
| AgentMesh (MS AGT) | pip install agentmesh-avp |
TrustEngine(external_providers=[AVPProvider()]) |
Full integration guides: docs/INTEGRATIONS.md
Batch Attestations
Submit up to 50 attestations in a single request. Each is validated independently — partial success is possible.
results = agent.attest_batch([
{"to_did": "did:key:z6MkAgent1...", "outcome": "positive", "weight": 0.9, "context": "code_review"},
{"to_did": "did:key:z6MkAgent2...", "outcome": "negative", "weight": 0.7, "evidence_hash": "sha256hex..."},
{"to_did": "did:key:z6MkAgent3...", "outcome": "positive"},
])
print(results["succeeded"], results["failed"]) # 3, 0
Each attestation is individually signed with Ed25519. Optional fields: context, evidence_hash, is_private, interaction_id.
Security
- Ed25519 signature authentication with nonce anti-replay
- Input validation — injection detection, PII scanning
- Agent suspension — compromised agents instantly blocked
- Audit trail — SHA-256 hash-chained log, anchored to IPFS
Documentation
| Doc | Description |
|---|---|
| API Reference | Full SDK method reference with examples |
| Buyer Integration | Controlled-action flow, secrets, errors, and compliance evidence |
| Integrations | Framework-specific setup guides |
| Webhook Alerts | Push notification setup |
| Protocol Spec | Wire format and authentication |
| Security Context | Why agent trust matters — CVEs and market data |
| Changelog | Version history |
Examples
| Example | Description |
|---|---|
proof_pack/ |
End-to-end walkthrough — trust check → delegation → signal change → alert → offline-verifiable proof. Local backend required. |
standalone_demo.py |
No server needed — full SDK demo with mock mode |
quickstart.py |
Register, publish card, check reputation |
two_agents.py |
Full A2A interaction with attestations |
verify_credential_standalone.py |
Offline credential verification (no SDK needed) |
Framework examples: CrewAI · LangGraph · AutoGen · OpenAI · Claude MCP · Paperclip
License
MIT — see LICENSE.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file agentveil-0.7.0.tar.gz.
File metadata
- Download URL: agentveil-0.7.0.tar.gz
- Upload date:
- Size: 78.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
ed1836a4d853b728009b2b102669cba5bdc64a02d7a10b791d500f49bb22407f
|
|
| MD5 |
94ec15fcd53190960ccc0c237ffd62fc
|
|
| BLAKE2b-256 |
2bb5b87220eb62e61d835a93d1aae2edebfc71a80820c3975e38e72f5c15f389
|
File details
Details for the file agentveil-0.7.0-py3-none-any.whl.
File metadata
- Download URL: agentveil-0.7.0-py3-none-any.whl
- Upload date:
- Size: 66.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
6f1e232ffabcbdf90868d941d908500052897a04decda5e0a71b59cc764ec173
|
|
| MD5 |
187a726101e2193c479a506e5ca5b89c
|
|
| BLAKE2b-256 |
f4e165c329ddc29a2e8ed14c4526eea84ac5991e754861eeb5d6a84ea4ea90de
|
