AI Agent Action Firewall core SDK
Project description
agsec
AI Agent Action Firewall - A minimal, control layer for agent actions.
Overview
agsec provides a simple yet powerful way to add safety controls to AI agents. It acts as a "firewall" between agents and real-world actions, allowing you to define policies that approve, block, or review actions before execution.
Why agsec?
- Agent-neutral: Works with any agent framework (LangChain, custom, etc.)
- Declarative policies: Define rules in YAML or code
- Extensible: Plugin system for custom actions and policies
- Production-ready: Lightweight, fast, and secure
Features
- ✅ Action Registry: Register and manage agent actions
- ✅ Policy Engine: Flexible rule-based decision making
- ✅ YAML Policies: Human-readable policy definitions
- ✅ Context Awareness: Rules can access parameters and context
- ✅ Priority & Matching: Advanced rule evaluation (priority, all/any matching)
- ✅ Audit Logging: Built-in logging for all decisions
- ✅ Python Package: Easy installation via PyPI
Installation
Runtime (for users)
pip install agsec
Development (for contributors)
git clone https://github.com/riyandhiman14/Agent-Sec.git
cd agsec
pip install -e .[dev]
pre-commit install
Quick Start
Basic Usage
from agsec import ControlLayer
# Create control layer
control = ControlLayer()
# Register an action
@control.register_action("send_email")
def send_email(to, subject, body):
return {"sent_to": to, "status": "success"}
# Execute with default allow policy
result = control.execute("send_email", {"to": "user@example.com", "subject": "Hello", "body": "Hi!"})
print(result.result) # {"sent_to": "user@example.com", "status": "success"}
With YAML Policies
from agsec import ControlLayer
policy_yaml = """
rules:
- action: payment
status: block
reason: "High-value payment blocked"
conditions:
amount:
op: ">"
value: 10000
"""
control = ControlLayer(policy_yaml=policy_yaml)
@control.register_action("payment")
def payment(amount):
return {"charged": amount}
try:
control.execute("payment", {"amount": 15000})
except Exception as e:
print(e) # PolicyViolationError: High-value payment blocked
API Reference
ControlLayer
Main class for managing agent actions and policies.
ControlLayer(
policy_engine=None, # PolicyEngine instance
action_registry=None, # ActionRegistry instance
logger=None, # Custom logger
policy_yaml=None, # YAML policy string
policy_yaml_path=None # Path to YAML policy file
)
Methods
register_action(name): Decorator to register an action functionexecute(action, params, context=None): Execute an action with policy check
PolicyEngine
Handles policy evaluation.
Methods
add_rule(rule): Add a programmatic rule functionload_rules_from_yaml(yaml_text): Load rules from YAML stringload_rules_from_yaml_file(path): Load rules from YAML fileevaluate(action, params, context=None): Evaluate policy for action
Policy Status
PolicyStatus.ALLOW: Allow action executionPolicyStatus.BLOCK: Block action executionPolicyStatus.REVIEW: Mark for manual review
YAML Policy Schema
rules:
- action: "action_name" # Action to match (* for all)
status: "allow|block|review" # Decision
reason: "Optional reason" # Human-readable explanation
priority: 0 # Higher = evaluated first
match: "all|any" # Condition matching mode
conditions: # Parameter/context checks
param_name:
op: "==|!=|>|<|>=|<=|in|not_in"
value: "expected_value"
context.user_role:
op: "=="
value: "admin"
Development
Setup
pip install -e .[dev]
pre-commit install
Testing
pytest
Building
python -m build
Contributing
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests
- Run
pre-commit run --all-files - Submit a pull request
Code Style
- Black for formatting
- isort for import sorting
- flake8 for linting
- pytest for testing
Roadmap
- Advanced risk scoring
- Multi-agent coordination
Support
- Issues: GitHub Issues
- Discussions: GitHub Discussions
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
agsec-0.1.1.tar.gz
(7.6 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
agsec-0.1.1-py3-none-any.whl
(8.5 kB
view details)
File details
Details for the file agsec-0.1.1.tar.gz.
File metadata
- Download URL: agsec-0.1.1.tar.gz
- Upload date:
- Size: 7.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
795d04152bab76d73fa8ff8141ff80998de831ac113cce387a98ad8e2bad4e55
|
|
| MD5 |
9e28d81816af4ede5a394fd970205288
|
|
| BLAKE2b-256 |
38168551d9a81b99416ff50ac96310c3a43436c3eb25f996d7a53c25b5a080fd
|
File details
Details for the file agsec-0.1.1-py3-none-any.whl.
File metadata
- Download URL: agsec-0.1.1-py3-none-any.whl
- Upload date:
- Size: 8.5 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
d7af2e4834ebad4eda0b73f3168fc2408efc9fab1caba7dd5efce85569a38e22
|
|
| MD5 |
c5bdaecbdcf10548992ee2aa84694ddc
|
|
| BLAKE2b-256 |
b6224feced37afd4cbe847acf22f02fb2f9a2ea4092d41e32cf44001e8b4ba2a
|
