Skip to main content

QUIET COYOTE — AI Agent Compliance Scanner by KlynxAI

Project description

QUIET COYOTE — AI Agent Compliance Scanner

klynx-comply is an open-source CLI that scans AI agent codebases for security, governance, and safety issues before deployment. Built by KlynxAI.


Install

pip install klynx-comply

Or from source:

git clone https://github.com/klynx-ai/klynxai-assistant
cd tools/klynx-comply
pip install -e .

Quick Start

# Scan current directory
klynx-comply scan

# Scan a specific path
klynx-comply scan ./my-agent-app

# Output as JSON (for CI/CD)
klynx-comply scan --format json --output report.json

# Output as SARIF (GitHub Code Scanning, VS Code, Azure DevOps)
klynx-comply scan --format sarif --output results.sarif

# Only report HIGH and above
klynx-comply scan --severity HIGH

# Fail CI only on CRITICAL
klynx-comply scan --fail-on critical

# Run specific checks only
klynx-comply scan --checks SC-001 --checks AT-001

# List all checks
klynx-comply checks

Checks

ID Category Name Severity
SC-001 Security Hardcoded Secrets CRITICAL
AT-001 Governance Audit Trail Coverage HIGH
AG-001 Security Auth Gating on Endpoints HIGH
PII-001 Privacy PII Handling Safety HIGH
AP-001 Governance Agent Policy Envelope HIGH
HO-001 Safety Human Oversight Gates HIGH
PI-001 Security Prompt Injection Vulnerability HIGH
IV-001 Security Input Validation at Boundaries MEDIUM

CI/CD Integration

GitHub Actions

- name: Agent compliance scan
  run: |
    pip install klynx-comply
    klynx-comply scan --format sarif --output results.sarif --fail-on high

- name: Upload SARIF
  uses: github/codeql-action/upload-sarif@v3
  with:
    sarif_file: results.sarif

GitLab CI

comply:
  script:
    - pip install klynx-comply
    - klynx-comply scan --format json --output gl-sast-report.json
  artifacts:
    reports:
      sast: gl-sast-report.json

Suppression

Add # comply:ignore to a line to suppress all findings on that line:

api_key = "test-key-for-unit-tests-only"  # comply:ignore

Exit Codes

Code Meaning
0 Compliant — no findings at or above --fail-on severity
1 Non-compliant — blocking findings found
2 Scan error

KlynxAI Integration

When run inside a KlynxAI-managed environment, klynx-comply integrates with:

  • Dragon Policy Engine — auto-validates PolicyEnvelope usage
  • KlynxScan — feeds findings into vulnerability dashboard
  • WarRoom AI — compliance gate before deployment

License

Apache 2.0 — free to use, modify, and distribute.

Built with by KlynxAI

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

klynx_comply-0.2.1.tar.gz (32.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

klynx_comply-0.2.1-py3-none-any.whl (37.4 kB view details)

Uploaded Python 3

File details

Details for the file klynx_comply-0.2.1.tar.gz.

File metadata

  • Download URL: klynx_comply-0.2.1.tar.gz
  • Upload date:
  • Size: 32.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.0

File hashes

Hashes for klynx_comply-0.2.1.tar.gz
Algorithm Hash digest
SHA256 2bfc95b5e498d7bc7a9a769eee696cae8df0edf23a942bcc8f5ef7d4475e0c8f
MD5 d2930566f6ae44a02a5b6f34772ac1dc
BLAKE2b-256 1597a3508538e89f2d5200c6f5f1ea0b887ba42b8a7192a45ad5e98e95700133

See more details on using hashes here.

File details

Details for the file klynx_comply-0.2.1-py3-none-any.whl.

File metadata

  • Download URL: klynx_comply-0.2.1-py3-none-any.whl
  • Upload date:
  • Size: 37.4 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.0

File hashes

Hashes for klynx_comply-0.2.1-py3-none-any.whl
Algorithm Hash digest
SHA256 52529b39306b65a7bbcc76e376ff252e6e15491d450af70c7ef7fb46ff249a0a
MD5 7fb48b282240bc0061e6231e1063fd21
BLAKE2b-256 1613c5c69cc04d76eb9dbcdb0f80020868ab4e83ce34a7c32fe7504dc65c21f1

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page