agentfortress 1.0.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: c3e112c42be216565ab9bb6e0bc91eb18d64a9f4e40a7869bff7a681c50db890
+  data.tar.gz: 9120e30bd4b78614975e394c2618e43f3a1c5f9e9443b360fcbccc8210e15057
+SHA512:
+  metadata.gz: 5bd5de3a243eee21edde5356821c185c5068de14a3dc8b8c40015fbbe39ebbfc8f637fd4219d1d057b4f8e5c3f2e272efb790d077ec8a3ed1e18726a2470ebda
+  data.tar.gz: 0df1d6db71d5d23d2091670963825b1052e0a680d3fa0b32a96cfd487ecffc0c128640dc7a98f6e29e4f39d0d47a0557505c15507e62ecdbf2eabe3e0c454411

data/README.md

@@ -0,0 +1,165 @@
+# AgentShield 🛡️
+
+> The CrowdStrike for AI Agents — Real-time security monitoring, threat detection, and runtime protection for LLM-powered agents.
+
+![License: MIT](https://img.shields.io/badge/License-MIT-green.svg)
+![Free & Open Source](https://img.shields.io/badge/Free-Open%20Source-brightgreen.svg)
+[![PyPI - SDK](https://img.shields.io/pypi/v/agentshield-python?label=agentshield-python)](https://pypi.org/project/agentshield-python/)
+[![PyPI - CLI](https://img.shields.io/pypi/v/agentshield-monitor?label=agentshield-monitor)](https://pypi.org/project/agentshield-monitor/)
+
+> 🆓 **100% Free & Open Source** — All features available to everyone. No paid plans, no paywalls, no credit card required. Ever.
+
+```
+╔══════════════════════════════════════════════════════════════════════════════╗
+║                        AGENTSHIELD ARCHITECTURE                             ║
+╠══════════════════════════════════════════════════════════════════════════════╣
+║                                                                              ║
+║   Your AI Agents                 AgentShield Platform                        ║
+║   ──────────────                 ───────────────────                         ║
+║                                                                              ║
+║  ┌─────────────┐                ┌──────────────────────────────────────┐    ║
+║  │  LangChain  │──┐             │           FastAPI Server             │    ║
+║  └─────────────┘  │             │                                      │    ║
+║  ┌─────────────┐  │  SDK        │  ┌──────────┐  ┌─────────────────┐  │    ║
+║  │   CrewAI    │──┼──────────►  │  │ Threat   │  │  Alert Manager  │  │    ║
+║  └─────────────┘  │  (events)   │  │Detection │  │                 │  │    ║
+║  ┌─────────────┐  │             │  └──────────┘  └─────────────────┘  │    ║
+║  │   AutoGen   │──┤             │  ┌──────────┐  ┌─────────────────┐  │    ║
+║  └─────────────┘  │             │  │ Policy   │  │  Anomaly Engine │  │    ║
+║  ┌─────────────┐  │             │  │Enforcer  │  │                 │  │    ║
+║  │  OpenAI SDK │──┘             │  └──────────┘  └─────────────────┘  │    ║
+║  └─────────────┘                │                                      │    ║
+║                                 │  ┌──────────────────────────────┐   │    ║
+║                                 │  │     PostgreSQL / SQLite       │   │    ║
+║                                 │  └──────────────────────────────┘   │    ║
+║                                 └─────────────────┬────────────────────┘    ║
+║                                                   │ WebSocket                ║
+║                                                   ▼                          ║
+║                                 ┌──────────────────────────────────────┐    ║
+║                                 │       React SOC Dashboard            │    ║
+║                                 │  • Real-time event feed              │    ║
+║                                 │  • Alert management                  │    ║
+║                                 │  • Session replay                    │    ║
+║                                 │  • Policy editor                     │    ║
+║                                 │  • Analytics & trends                │    ║
+║                                 └──────────────────────────────────────┘    ║
+║                                                                              ║
+╚══════════════════════════════════════════════════════════════════════════════╝
+```
+
+## What is AgentShield?
+
+AgentShield provides comprehensive security observability and runtime protection for AI agents. As autonomous AI systems gain access to sensitive tools and data, the attack surface grows dramatically. AgentShield acts as a security layer between your agents and the world.
+
+## Key Features
+
+- **🔍 Universal Agent Monitoring** — Instrument LangChain, CrewAI, AutoGen, OpenAI Agents SDK, or any custom agent with one line of code
+- **🚨 Real-time Threat Detection** — Detect prompt injection, PII leakage, data exfiltration, and scope creep as they happen
+- **📋 Policy Enforcement** — Define security policies that BLOCK, ALERT, LOG, or RATE_LIMIT suspicious behavior
+- **🎬 Session Replay** — Full timeline replay of every agent action for incident investigation
+- **📊 SOC Dashboard** — Real-time security operations center with alerts, analytics, and session management
+- **🔑 Kill Switch** — Instantly terminate any running agent session
+- **🧠 Threat Intelligence** — Built-in library of 200+ known prompt injection, jailbreak, and exfiltration patterns
+- **🏢 Multi-tenant** — Organization-based access control with API key management
+
+## Quick Start
+
+### 1. Install the SDK
+
+```bash
+pip install agentshield-sdk
+```
+
+### 2. Protect your agent
+
+```python
+import agentshield
+
+# Zero-config protection
+agentshield.init(api_key="your-api-key", server_url="http://localhost:8000")
+
+# Wrap your agent
+protected_agent = agentshield.protect(your_agent)
+
+# Run it — AgentShield monitors everything
+result = protected_agent.run("Your task here")
+```
+
+### 3. Start the platform
+
+```bash
+# Using Docker Compose
+cd infra && docker-compose up -d
+
+# Dashboard available at http://localhost:3000
+# API available at http://localhost:8000
+# API docs at http://localhost:8000/docs
+```
+
+## Installation
+
+### SDK
+
+```bash
+pip install agentshield-sdk
+```
+
+### Server (Development)
+
+```bash
+cd server
+pip install -r requirements.txt
+uvicorn main:app --reload
+```
+
+### Dashboard
+
+```bash
+cd dashboard
+npm install
+npm run dev
+```
+
+### CLI
+
+```bash
+pip install agentshield-cli
+agentshield init
+```
+
+## Architecture
+
+| Component | Technology | Purpose |
+|-----------|-----------|---------|
+| SDK | Python | Agent instrumentation & local detection |
+| Server | FastAPI + SQLAlchemy | Event ingestion, threat analysis, API |
+| Dashboard | React + Vite + TailwindCSS | SOC UI, real-time monitoring |
+| CLI | Click | Developer tooling |
+| Threat Intel | JSON patterns + Python engine | Known attack pattern matching |
+| Infra | Docker + Kubernetes | Deployment |
+
+## Detection Capabilities
+
+| Threat | Detection Method | Default Action |
+|--------|-----------------|----------------|
+| Prompt Injection | Pattern matching + ML scoring | ALERT |
+| PII Leakage | Regex + NER patterns | BLOCK |
+| Data Exfiltration | Size analysis + base64 detection | BLOCK |
+| Jailbreak Attempts | Pattern library matching | ALERT |
+| Scope Creep | Resource access monitoring | ALERT |
+| Anomalous Behavior | Statistical baseline deviation | ALERT |
+| Rapid API Calls | Rate pattern analysis | RATE_LIMIT |
+
+## Documentation
+
+- [Quick Start Guide](docs/quickstart.md)
+- [SDK Reference](docs/sdk-reference.md)
+- [Server API Reference](docs/server-api.md)
+- [Policy Configuration](docs/policies.md)
+- [Threat Model](docs/threat-model.md)
+- [Deployment Guide](docs/deployment.md)
+- [Architecture Deep Dive](docs/architecture.md)
+
+## License
+
+MIT — see [LICENSE](LICENSE)

data/lib/agentfortress/scanner.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+module AgentFortress
+  class Scanner
+    INJECTION_PATTERNS = [
+      /ignore (previous|all|above) instructions/i,
+      /you are now/i,
+      /disregard your (system|previous)/i,
+      /forget (everything|all)/i,
+      /jailbreak/i,
+    ].freeze
+
+    def scan(text)
+      INJECTION_PATTERNS.each do |pattern|
+        if text.match?(pattern)
+          return { action: :block, reason: "Prompt injection pattern detected", threat: :prompt_injection }
+        end
+      end
+      { action: :allow }
+    end
+  end
+end

data/lib/agentfortress/shield.rb

@@ -0,0 +1,30 @@
+# frozen_string_literal: true
+module AgentFortress
+  class Shield
+    attr_reader :session_id
+
+    def initialize(api_key: nil, server_url: nil, mode: :local)
+      @api_key = api_key
+      @server_url = server_url
+      @mode = mode
+      @session_id = "session-#{Time.now.to_i}-#{rand(36**8).to_s(36)}"
+      @handlers = []
+    end
+
+    def protect(agent_id: nil, &block)
+      -> (*args) {
+        result = block.call(*args)
+        result
+      }
+    end
+
+    def on_threat(&block)
+      @handlers << block
+      self
+    end
+
+    def scan(text)
+      Scanner.new.scan(text)
+    end
+  end
+end

data/lib/agentfortress/version.rb

@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+module AgentFortress
+  VERSION = "1.0.0"
+end

data/lib/agentfortress.rb

@@ -0,0 +1,29 @@
+# frozen_string_literal: true
+
+require_relative "agentfortress/version"
+require_relative "agentfortress/scanner"
+require_relative "agentfortress/shield"
+
+# AgentFortress — Runtime protection for AI agents
+# The CrowdStrike for AI Agents
+module AgentFortress
+  class Error < StandardError; end
+
+  INJECTION_PATTERNS = [
+    /ignore (previous|all|above) instructions/i,
+    /you are now/i,
+    /disregard your (system|previous)/i,
+    /forget (everything|all)/i,
+    /jailbreak/i,
+  ].freeze
+
+  # Quick scan for prompt injection
+  def self.scan(text)
+    Scanner.new.scan(text)
+  end
+
+  # Initialize with config
+  def self.init(api_key: nil, server_url: nil, mode: :local)
+    Shield.new(api_key: api_key, server_url: server_url, mode: mode)
+  end
+end

metadata

@@ -0,0 +1,49 @@
+--- !ruby/object:Gem::Specification
+name: agentfortress
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- Aayush
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2026-04-13 00:00:00.000000000 Z
+dependencies: []
+description: The CrowdStrike for AI Agents — Real-time security monitoring, threat
+  detection, and runtime protection for LLM-powered agents.
+email:
+- aayush022008@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- README.md
+- lib/agentfortress.rb
+- lib/agentfortress/scanner.rb
+- lib/agentfortress/shield.rb
+- lib/agentfortress/version.rb
+homepage: https://github.com/aayush022008/agentfortress
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.7.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.0.3.1
+signing_key: 
+specification_version: 4
+summary: Runtime protection and security monitoring for AI agents
+test_files: []