AI agent governance - audit trails, policy enforcement, compliance
Project description
Governance for AI agents. Audit trails, policy enforcement, and compliance.
Website | Docs | SDK Guide | Compliance
asqav SDK
Thin Python SDK for asqav.com. All ML-DSA cryptography runs server-side. Zero native dependencies.
Install
pip install asqav
import asqav
asqav.init(api_key="sk_...")
agent = asqav.Agent.create("my-agent")
sig = agent.sign("api:call", {"model": "gpt-4"})
Your agent now has a cryptographic identity, a signed audit trail, and a verifiable action record.
Why
| Without governance | With asqav |
|---|---|
| No record of what agents did | Every action signed with ML-DSA (FIPS 204) |
| Any agent can do anything | Policies block dangerous actions in real-time |
| One person approves everything | Multi-party authorization for critical actions |
| Manual compliance reports | Automated EU AI Act and DORA reports |
| Breaks when quantum computers arrive | Quantum-safe from day one |
Decorators and context managers
@asqav.sign
def call_model(prompt: str):
return openai.chat.completions.create(model="gpt-4", messages=[{"role": "user", "content": prompt}])
with asqav.session() as s:
s.sign("step:fetch", {"source": "api"})
s.sign("step:process", {"records": 150})
Async support
agent = await asqav.AsyncAgent.create("my-agent")
sig = await agent.sign("api:call", {"model": "gpt-4"})
All API calls retry automatically with exponential backoff on transient failures.
CLI
pip install asqav[cli]
asqav verify sig_abc123
asqav agents list
asqav agents create my-agent
asqav sync
Local mode
Sign actions offline when the API is unreachable. Queue syncs when connectivity returns.
from asqav import local_sign
local_sign("agt_xxx", "task:complete", {"result": "done"})
# Later: asqav sync
Works with your stack
Native integrations for 5 frameworks. Each extends AsqavAdapter for version-resilient signing.
pip install asqav[langchain]
pip install asqav[crewai]
pip install asqav[litellm]
pip install asqav[haystack]
pip install asqav[openai-agents]
pip install asqav[all]
LangChain
from asqav.extras.langchain import AsqavCallbackHandler
handler = AsqavCallbackHandler(api_key="sk_...")
chain.invoke(input, config={"callbacks": [handler]})
CrewAI
from asqav.extras.crewai import AsqavCrewHook
hook = AsqavCrewHook(api_key="sk_...")
task = Task(description="Research competitors", callbacks=[hook.task_callback])
LiteLLM / Haystack / OpenAI Agents SDK
from asqav.extras.litellm import AsqavGuardrail
from asqav.extras.haystack import AsqavComponent
from asqav.extras.openai_agents import AsqavGuardrail
See integration docs for full setup guides.
Policy enforcement
asqav.create_policy(
name="no-deletions",
action_pattern="data:delete:*",
action="block_and_alert",
severity="critical"
)
Multi-party signing
Distributed approval where no single entity can authorize alone:
config = asqav.create_signing_group("agt_xxx", min_approvals=2, total_shares=3)
session = asqav.request_action("agt_xxx", "finance.transfer", {"amount": 50000})
asqav.approve_action(session.session_id, "ent_xxx")
Features
- Signed actions - every agent action gets a ML-DSA-65 signature with RFC 3161 timestamp
- Decorators -
@asqav.signwraps any function with cryptographic signing - Async - full async support with
AsyncAgentand automatic retry - CLI - verify signatures, manage agents, sync offline queue from the terminal
- Local mode - sign actions offline, sync later
- Framework integrations - LangChain, CrewAI, LiteLLM, Haystack, OpenAI Agents SDK
- Policy enforcement - block or alert on action patterns before execution
- Multi-party signing - m-of-n approval using threshold ML-DSA
- Agent identity - create, suspend, revoke, and rotate agent keys
- Audit export - JSON/CSV trails for compliance reporting
- Tokens - scoped JWTs and selective-disclosure tokens (SD-JWT)
Ecosystem
| Package | What it does |
|---|---|
| asqav | Python SDK |
| asqav-mcp | MCP server for Claude Desktop/Code |
| asqav-compliance | CI/CD compliance scanner |
Free tier
Get started at no cost. Free tier includes agent creation, signed actions, audit export, and framework integrations. Threat detection and monitoring on Pro ($39/mo). Compliance reports and incident management on Business ($149/mo). See asqav.com for pricing.
Links
License
MIT - see LICENSE for details.
If asqav helps you, consider giving it a star. It helps others find the project.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file asqav-0.2.8.tar.gz.
File metadata
- Download URL: asqav-0.2.8.tar.gz
- Upload date:
- Size: 29.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
47905243bec702c99ea2cb704c5489d80967663e90840b8800047f8e8da1fc8e
|
|
| MD5 |
121af47fcd8a567487bb0a3bccad09a4
|
|
| BLAKE2b-256 |
2719976128722e086bc0f65b7f84cb4d773ab8df733c730c4cf05602f70b1eb7
|
File details
Details for the file asqav-0.2.8-py3-none-any.whl.
File metadata
- Download URL: asqav-0.2.8-py3-none-any.whl
- Upload date:
- Size: 37.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
6a19f79c3736a8e7b2ca399e90c947e70c26ece74e044e35c6d447df716f2dcd
|
|
| MD5 |
d99c801c86c1c4601ad0a3e6ce8a55e9
|
|
| BLAKE2b-256 |
5c8dde23f9034ba6031a17f8e3f3850f7e5d00557736c4b248e46f2f984f72a4
|
