AgentMesh governance components for Haystack pipelines — policy enforcement, trust scoring, and tamper-evident audit trails
Project description
haystack-agentmesh
AgentMesh governance components for Haystack pipelines — policy enforcement, trust scoring, and tamper-evident audit trails.
Installation
pip install haystack-agentmesh
With Haystack:
pip install "haystack-agentmesh[haystack]"
Components
GovernancePolicyChecker
Enforces governance policies loaded from YAML files. Checks tool allowlists/blocklists, content patterns, token limits, and rate limits.
from haystack_agentmesh import GovernancePolicyChecker
checker = GovernancePolicyChecker(policy_path="policy.yaml")
result = checker.run(action="search", params={"query": "hello"}, agent_id="agent-1")
# {"decision": "allow", "reason": "All policy checks passed", "passed": True}
Policy YAML example:
allowed_tools:
- search
- summarize
blocked_tools:
- delete_all
blocked_patterns:
- pattern: "DROP TABLE"
type: substring
- pattern: "rm\\s+-rf"
type: regex
max_tokens: 4096
rate_limit:
max_calls: 10
window_seconds: 60
TrustGate
Trust scoring with time-based decay and routing decisions.
from haystack_agentmesh import TrustGate
gate = TrustGate(pass_threshold=0.7, review_threshold=0.4)
gate.record_success("agent-1")
result = gate.run(agent_id="agent-1")
# {"trusted": False, "score": 0.55, "action": "review"}
Actions: pass (trusted), review (marginal), block (below threshold).
AuditLogger
Append-only audit log with SHA-256 hash chain hashing for tamper evidence.
from haystack_agentmesh import AuditLogger
logger = AuditLogger()
result = logger.run(action="search", agent_id="agent-1", decision="allow")
# {"entry_id": "a1b2c3d4e5f67890", "chain_hash": "sha256..."}
assert logger.verify_chain() # Verify integrity
logger.export_jsonl("audit.jsonl") # Export for analysis
Pipeline Example
from haystack import Pipeline
from haystack_agentmesh import GovernancePolicyChecker, TrustGate, AuditLogger
pipe = Pipeline()
pipe.add_component("trust_gate", TrustGate())
pipe.add_component("policy_checker", GovernancePolicyChecker(policy_path="policy.yaml"))
pipe.add_component("audit", AuditLogger())
Component Reference
| Component | Inputs | Outputs |
|---|---|---|
GovernancePolicyChecker |
action: str, params: dict, agent_id: Optional[str] |
decision: str, reason: str, passed: bool |
TrustGate |
agent_id: str, min_score: Optional[float] |
trusted: bool, score: float, action: str |
AuditLogger |
action: str, agent_id: str, decision: str, metadata: Optional[dict] |
entry_id: str, chain_hash: str |
Development
pip install -e ".[dev]"
pytest tests/ -v
License
Apache-2.0
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file haystack_agentmesh-3.2.2.tar.gz.
File metadata
- Download URL: haystack_agentmesh-3.2.2.tar.gz
- Upload date:
- Size: 8.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: RestSharp/106.13.0.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
66bdbd76cd47f169d0f31b135fcafd97ef7de67d46c8be5c4c102a5eaa3e6934
|
|
| MD5 |
8815ca2fe3a1ae7f8b6c3aa93d81f885
|
|
| BLAKE2b-256 |
214dc35318a8042c9d119cae24121ee20c5b433ebfcfe1fe370645c378f3741b
|
File details
Details for the file haystack_agentmesh-3.2.2-py3-none-any.whl.
File metadata
- Download URL: haystack_agentmesh-3.2.2-py3-none-any.whl
- Upload date:
- Size: 8.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: RestSharp/106.13.0.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
617f6527b3966d52245347b710065019292595fa58ca694b72275f29f36cb47a
|
|
| MD5 |
94b3fadb0c1ff9f9b15439282471f228
|
|
| BLAKE2b-256 |
0b6fab49d2532db684e78f9261bf6247fda4d1df54a4067fd819a42c30d9c447
|
