ZAK — Zeron Agentic Kit, open-source ADK for building autonomous cybersecurity agents. Enterprise edition unlocks all 22 built-in agents.
Project description
Zin ADK — Agent Development Kit for Cybersecurity
Build, deploy, and govern autonomous cybersecurity agents.
ZAK provides a unified platform for building cybersecurity agents with bounded autonomy, policy enforcement, and full auditability — out of the box.
Install
pip install zin-adk
# With REST API support
pip install "zin-adk[api]"
# With graph database support (Python ≤ 3.13)
pip install "zin-adk[graph]"
Quick Start
# Scaffold a new agent
zak init --name "Vuln Triage Agent" --domain appsec --out ./agents
# Implement agents/vuln_triage_agent.py → execute()
# Validate
zak validate agents/vuln-triage-agent.yaml
# Run
zak run agents/vuln-triage-agent.yaml --tenant acme
# Or start the REST API
zak serve --host 0.0.0.0 --port 8000
What's included
| Component | What it does |
|---|---|
| US-ADSL | YAML DSL for declarative agent definitions — schema-validated |
| Agent Runtime | Lifecycle management (pre_run → execute → post_run) |
| Policy Engine | 6-rule in-process guardrails enforced on every tool call |
| Tool Substrate | @zak_tool decorator — policy-aware, auditable tool execution |
| Agent Registry | @register_agent — domain-based discovery and dispatch |
| SIF Graph | Time-aware security knowledge graph (Kuzu, namespace-isolated per tenant) |
| Multi-tenancy | Tenant isolation from day one — no leakage possible |
| REST API | FastAPI layer for portal and SIEM integration |
| CLI | zak init · zak validate · zak run · zak serve |
Supported Agent Domains
| Domain | Use case |
|---|---|
risk_quant |
Continuous risk scoring, FAIR-like modelling |
supply_chain |
Vendor posture, SBOM risk, 3rd-party exposure |
red_team |
Autonomous red teaming, attack path discovery |
appsec |
SAST, DAST, IaC scanning, dependency analysis |
ai_security |
Prompt risk, model exposure, LLM guardrail validation |
compliance |
Control monitoring, evidence collection, drift detection |
Build an agent in 3 steps
1. Define it
# agents/my-agent.yaml
agent:
id: my-agent
domain: appsec
version: "1.0.0"
intent:
goal: "Triage open vulnerabilities by severity"
reasoning:
mode: rule_based
autonomy_level: bounded
capabilities:
tools: [list_vulnerabilities]
boundaries:
allowed_actions: [agent_execute, list_vulnerabilities]
safety:
sandbox_profile: standard
audit_level: standard
2. Implement it
from zak.core.runtime.agent import AgentContext, AgentResult, BaseAgent
from zak.core.runtime.registry import register_agent
from zak.core.tools.substrate import ToolExecutor
import zak.core.tools.builtins as tools
@register_agent(domain="appsec")
class MyAgent(BaseAgent):
def execute(self, context: AgentContext) -> AgentResult:
vulns = ToolExecutor.call(tools.list_vulnerabilities, context=context)
critical = [v for v in vulns if v.get("severity") == "critical"]
return AgentResult.ok(context, output={"critical_count": len(critical)})
3. Run it
zak run agents/my-agent.yaml --tenant acme
REST API
zak serve --host 0.0.0.0 --port 8000
# Create tenant
curl -X POST http://localhost:8000/tenants \
-H "X-API-Key: your-key" \
-d '{"tenant_id": "acme", "name": "Acme Corp"}'
# Trigger agent run
curl -X POST http://localhost:8000/tenants/acme/runs \
-H "X-API-Key: your-key" \
-d '{"domain": "risk_quant", "environment": "staging"}'
# Interactive API docs
open http://localhost:8000/docs
Zeron © 2026 — zeron.one
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
zin_adk-0.1.3.tar.gz
(124.6 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
zin_adk-0.1.3-py3-none-any.whl
(172.0 kB
view details)
File details
Details for the file zin_adk-0.1.3.tar.gz.
File metadata
- Download URL: zin_adk-0.1.3.tar.gz
- Upload date:
- Size: 124.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
687df253fa9cf18cd6ed67511c180b900867cabbcaa85b94c6f079a08fa1170b
|
|
| MD5 |
c101fd2b17cf8c022b32697bd0d90f65
|
|
| BLAKE2b-256 |
9b4104f3f3161d7bff5943ea31c46f3e20335bd004bf966e574a1d2ba71c8ce3
|
File details
Details for the file zin_adk-0.1.3-py3-none-any.whl.
File metadata
- Download URL: zin_adk-0.1.3-py3-none-any.whl
- Upload date:
- Size: 172.0 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9910a16f8886e21e8fcc0beb1b52b875cf6a0ad7520f374e6b74872a3c3ddb4d
|
|
| MD5 |
659de92d09ea65827f684766b3db958c
|
|
| BLAKE2b-256 |
cde0f042fb0ae1fd8ea8d035de165d50e3b5fe94b276f704da5191e1b0049950
|
