agentiva 0.1.0__tar.gz

agentiva-0.1.0/LICENSE

@@ -0,0 +1,107 @@
+Apache License
+Version 2.0, January 2004
+http://www.apache.org/licenses/
+
+TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+1. Definitions.
+
+"License" shall mean the terms and conditions for use, reproduction, and
+distribution as defined by Sections 1 through 9 of this document.
+
+"Licensor" shall mean the copyright owner or entity authorized by
+the copyright owner that is granting the License.
+
+"Legal Entity" shall mean the union of the acting entity and all
+other entities that control, are controlled by, or are under common
+control with that entity. For the purposes of this definition,
+"control" means (i) the power, direct or indirect, to cause the
+direction or management of such entity, whether by contract or
+otherwise, or (ii) ownership of fifty percent (50%) or more of the
+outstanding shares, or (iii) beneficial ownership of such entity.
+
+"You" (or "Your") shall mean an individual or Legal Entity
+exercising permissions granted by this License.
+
+"Source" form shall mean the preferred form for making modifications,
+including but not limited to software source code, documentation
+source, and configuration files.
+
+"Object" form shall mean any form resulting from mechanical
+transformation or translation of a Source form, including but
+not limited to compiled object code, generated documentation,
+and conversions to other media types.
+
+"Work" shall mean the work of authorship, whether in Source or
+Object form, made available under the License, as indicated by a
+copyright notice that is included in or attached to the work.
+
+"Derivative Works" shall mean any work, whether in Source or Object
+form, that is based on (or derived from) the Work and for which the
+editorial revisions, annotations, elaborations, or other modifications
+represent, as a whole, an original work of authorship.
+
+"Contribution" shall mean any work of authorship, including
+the original version of the Work and any modifications or additions
+to that Work or Derivative Works thereof, that is intentionally
+submitted to Licensor for inclusion in the Work by the copyright owner
+or by an individual or Legal Entity authorized to submit on behalf of
+the copyright owner.
+
+"Contributor" shall mean Licensor and any individual or Legal Entity
+on behalf of whom a Contribution has been received by Licensor and
+subsequently incorporated within the Work.
+
+2. Grant of Copyright License. Subject to the terms and conditions of
+this License, each Contributor hereby grants to You a perpetual,
+worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+copyright license to reproduce, prepare Derivative Works of,
+publicly display, publicly perform, sublicense, and distribute the
+Work and such Derivative Works in Source or Object form.
+
+3. Grant of Patent License. Subject to the terms and conditions of
+this License, each Contributor hereby grants to You a perpetual,
+worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+(except as stated in this section) patent license to make, have made,
+use, offer to sell, sell, import, and otherwise transfer the Work.
+
+4. Redistribution. You may reproduce and distribute copies of the
+Work or Derivative Works thereof in any medium, with or without
+modifications, and in Source or Object form, provided that You meet
+the following conditions:
+
+(a) You must give any other recipients of the Work or
+Derivative Works a copy of this License; and
+
+(b) You must cause any modified files to carry prominent notices
+stating that You changed the files; and
+
+(c) You must retain, in the Source form of any Derivative Works
+that You distribute, all copyright, patent, trademark, and
+attribution notices from the Source form of the Work; and
+
+(d) If the Work includes a "NOTICE" text file as part of its
+distribution, then any Derivative Works that You distribute must
+include a readable copy of the attribution notices contained
+within such NOTICE file.
+
+5. Submission of Contributions. Unless You explicitly state otherwise,
+any Contribution intentionally submitted for inclusion in the Work
+shall be under the terms and conditions of this License.
+
+6. Trademarks. This License does not grant permission to use the trade
+names, trademarks, service marks, or product names of the Licensor.
+
+7. Disclaimer of Warranty. Unless required by applicable law or
+agreed to in writing, Licensor provides the Work on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+
+8. Limitation of Liability. In no event and under no legal theory,
+whether in tort (including negligence), contract, or otherwise, unless
+required by applicable law, shall any Contributor be liable to You for damages.
+
+9. Accepting Warranty or Additional Liability. While redistributing
+the Work or Derivative Works thereof, You may choose to offer support,
+warranty, indemnity, or other liability obligations.
+
+END OF TERMS AND CONDITIONS

agentiva-0.1.0/PKG-INFO

@@ -0,0 +1,300 @@
+Metadata-Version: 2.4
+Name: agentiva
+Version: 0.1.0
+Summary: Agentiva — open-source runtime for AI agent safety
+License: Apache-2.0
+Keywords: ai,agent,safety,langchain,fastapi,guardrails
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Requires-Python: >=3.10
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: aiofiles==25.1.0
+Requires-Dist: aiosqlite==0.21.0
+Requires-Dist: aiohappyeyeballs==2.6.1
+Requires-Dist: alembic==1.16.5
+Requires-Dist: asyncpg==0.30.0
+Requires-Dist: aiohttp==3.13.3
+Requires-Dist: aiosignal==1.4.0
+Requires-Dist: annotated-doc==0.0.4
+Requires-Dist: annotated-types==0.7.0
+Requires-Dist: anyio==4.12.1
+Requires-Dist: attrs==26.1.0
+Requires-Dist: certifi==2026.2.25
+Requires-Dist: charset-normalizer==3.4.6
+Requires-Dist: click==8.3.1
+Requires-Dist: dataclasses-json==0.6.7
+Requires-Dist: Faker==37.0.0
+Requires-Dist: fastapi==0.135.1
+Requires-Dist: frozenlist==1.8.0
+Requires-Dist: greenlet==3.3.2
+Requires-Dist: h11==0.16.0
+Requires-Dist: httpcore==1.0.9
+Requires-Dist: httpx==0.28.1
+Requires-Dist: httpx-sse==0.4.3
+Requires-Dist: idna==3.11
+Requires-Dist: iniconfig==2.3.0
+Requires-Dist: jsonpatch==1.33
+Requires-Dist: jsonpointer==3.0.0
+Requires-Dist: langchain==1.2.13
+Requires-Dist: langchain-classic==1.0.3
+Requires-Dist: langchain-community==0.4.1
+Requires-Dist: langchain-core==1.2.20
+Requires-Dist: langchain-text-splitters==1.1.1
+Requires-Dist: langgraph==1.1.3
+Requires-Dist: langgraph-checkpoint==4.0.1
+Requires-Dist: langgraph-prebuilt==1.0.8
+Requires-Dist: langgraph-sdk==0.3.12
+Requires-Dist: langsmith==0.7.21
+Requires-Dist: marshmallow==3.26.2
+Requires-Dist: multidict==6.7.1
+Requires-Dist: mypy_extensions==1.1.0
+Requires-Dist: numpy==2.4.3
+Requires-Dist: orjson==3.11.7
+Requires-Dist: ormsgpack==1.12.2
+Requires-Dist: packaging==26.0
+Requires-Dist: pluggy==1.6.0
+Requires-Dist: propcache==0.4.1
+Requires-Dist: pydantic==2.12.5
+Requires-Dist: pydantic-settings==2.13.1
+Requires-Dist: pydantic_core==2.41.5
+Requires-Dist: Pygments==2.19.2
+Requires-Dist: PyJWT==2.10.1
+Requires-Dist: pytest==9.0.2
+Requires-Dist: reportlab==4.4.2
+Requires-Dist: python-dotenv==1.2.2
+Requires-Dist: PyYAML==6.0.3
+Requires-Dist: redis==7.3.0
+Requires-Dist: requests==2.32.5
+Requires-Dist: requests-toolbelt==1.0.0
+Requires-Dist: SQLAlchemy==2.0.48
+Requires-Dist: starlette==0.52.1
+Requires-Dist: tenacity==9.1.4
+Requires-Dist: typing-inspect==0.9.0
+Requires-Dist: typing-inspection==0.4.2
+Requires-Dist: typing_extensions==4.15.0
+Requires-Dist: urllib3==2.6.3
+Requires-Dist: uuid_utils==0.14.1
+Requires-Dist: uvicorn==0.42.0
+Requires-Dist: websockets==16.0
+Requires-Dist: xxhash==3.6.0
+Requires-Dist: yarl==1.23.0
+Requires-Dist: zstandard==0.25.0
+Dynamic: license-file
+Dynamic: requires-python
+
+# Agentiva
+
+**Preview deployments for AI agents.**
+
+See what your AI agent would do before it does it.
+
+[![Tests](https://img.shields.io/badge/tests-24%2C599%20passing-brightgreen)]()
+[![OWASP](https://img.shields.io/badge/OWASP%20LLM%20Top%2010-100%25-brightgreen)]()
+[![Python](https://img.shields.io/badge/python-3.10%2B-blue)]()
+[![License](https://img.shields.io/badge/license-Apache%202.0-blue)]()
+
+> litellm was compromised March 24, 2026 — SSH keys, AWS credentials, and database passwords stolen from 97M monthly downloads.
+> Agentiva catches this class of attack at the action layer.
+
+## Quick start (2 minutes)
+
+```bash
+pip install agentiva
+agentiva serve --port 8000
+# Open localhost:3000 for the dashboard (from repo: cd dashboard && npm run dev)
+```
+
+## Protect your agent (3 lines)
+
+```python
+from agentiva import Agentiva
+
+shield = Agentiva(mode="shadow")
+tools = shield.protect([your_existing_tools])
+
+# Your agent works exactly the same.
+# Every action is intercepted, scored, and logged.
+```
+
+## Run the demo
+
+```bash
+# See 4 real incident recreations
+python demo/real_incidents_demo.py
+
+# See PayBot (fintech startup) demo
+python demo/paybot_demo.py
+
+# See proof: before vs after comparison
+python demo/proof_demo.py
+```
+
+Or use the project venv so dependencies resolve: `source .venv/bin/activate` then the commands above.
+
+## What it catches
+
+Tested against real-world incidents:
+
+- **litellm supply chain attack** (March 2026) — credential exfiltration blocked
+- **Amazon Kiro** (December 2025) — infrastructure destruction blocked
+- **Microsoft Copilot** (January 2026) — zero-click data theft blocked
+- **Replit agent** (2026) — mass record deletion blocked
+
+## Verified results
+
+| Benchmark | Result |
+|-----------|--------|
+| Agentiva test suite | 24,599 tests passing |
+| OWASP LLM Top 10 | 21/21 (100%) |
+| DeepTeam (Confident AI) | 38/47 (80.85%) |
+| Garak (NVIDIA) | 2,500 probes scanned |
+| PyRIT (Microsoft) | 9/9 scenarios completed |
+
+Run benchmarks yourself:
+
+```bash
+python -m pytest tests/ -m "slow or not slow"  # Full test suite
+python benchmarks/run_benchmark.py              # OWASP + incidents
+python benchmarks/run_all_benchmarks.py         # All frameworks
+```
+
+## Five operating modes
+
+| Mode | What it does |
+|------|--------------|
+| Shadow | Observe without executing |
+| Simulation | Preview impact before acting |
+| Approval | Human-in-the-loop for risky actions |
+| Negotiation | Agent learns to self-correct |
+| Rollback | Undo what the agent did |
+
+## Dashboard
+
+Real-time monitoring at localhost:3000:
+
+- **Overview** — stats, charts, recent activity
+- **Live Feed** — actions streaming via WebSocket
+- **Audit Log** — searchable history with compliance exports
+- **Agents** — registry with reputation and kill switch
+- **Policies** — YAML rule editor
+- **Security Co-pilot** — ask questions about your agent's behavior
+
+## Security co-pilot
+
+Ask naturally:
+
+- "What was blocked?" → real data from your audit log
+- "Why was send_email blocked?" → specific tool analysis
+- "Is this HIPAA compliant?" → compliance check with regulation citations
+- "Is my agent safe for production?" → honest assessment
+
+Basic mode works without any API key. Add `OPENROUTER_API_KEY` for Claude-powered deep analysis via OpenRouter.
+
+## Works with
+
+LangChain, CrewAI, OpenAI Agents SDK, Anthropic, MCP Protocol, or any custom agent via REST API.
+
+## Compliance-ready evidence
+
+Generates audit trails aligned with:
+
+- **HIPAA** — PHI access logs per 45 CFR § 164.312
+- **SOC2** — Evidence for CC6-CC8 controls
+- **PCI-DSS** — Cardholder data monitoring per Req 3, 7, 10
+
+Note: Agentiva helps prepare for compliance audits. Certification requires a third-party assessor.
+
+## Pricing
+
+| Tier | Price | Agents |
+|------|-------|--------|
+| Free | $0/forever | 1 agent |
+| Pro | $18/month | Up to 3 |
+| Team | $54/month | Unlimited |
+| Enterprise | Custom | Custom |
+
+Self-hosted is free forever. Cloud dashboard on waitlist.
+
+## Architecture
+
+```
+┌────────────────────┐
+│  AI Agent          │  LangChain · CrewAI · OpenAI · MCP · custom tools
+└─────────┬──────────┘
+          │ tool_call
+          ▼
+┌─────────────────────────────────────────────────────────────────────┐
+│                        AGENTIVA API (FastAPI)                        │
+│  /api/v1/intercept · /api/v1/audit · /api/v1/chat · WebSocket feed   │
+└───────────────────────────────┬─────────────────────────────────────┘
+                                │
+          ┌─────────────────────┴─────────────────────┐
+          ▼                                           ▼
+┌──────────────────────┐                 ┌──────────────────────┐
+│  Interceptor         │                 │  Shield Chat          │
+│  PolicyEngine (YAML) │                 │  Sessions + messages  │
+│  SmartRiskScorer     │                 │  (SQLite persistence) │
+│  PHI detector        │                 │  + optional LLM layer │
+│  Behavior / drift    │                 └──────────┬────────────┘
+└──────────┬───────────┘                            │
+           │                                        │
+           ▼                                        ▼
+┌──────────────────────┐                 ┌──────────────────────┐
+│  Modes               │                 │  Compliance KB        │
+│  Shadow · Approve ·  │                 │  HIPAA · SOC 2 ·      │
+│  Live · Negotiation  │                 │  PCI-DSS citations +  │
+│  Simulator · Rollback│                 │  evidence SQL hooks   │
+└──────────┬───────────┘                 └──────────────────────┘
+           │
+           ▼
+┌─────────────────────────────────────────────────────────────────────┐
+│  Persistence: action_logs (audit) · agent registry · approvals ·     │
+│  chat_sessions / chat_messages                                       │
+└─────────────────────────────────────────────────────────────────────┘
+           │
+           ▼
+┌──────────────────────┐
+│  Tools / APIs        │  Email · DB · Slack · shell · payments…
+└──────────────────────┘
+```
+
+## API reference (short)
+
+| Endpoint | Method | Description |
+|----------|--------|-------------|
+| `/health` | GET | Health check + mode + risk threshold |
+| `/api/v1/intercept` | POST | Intercept an agent action |
+| `/api/v1/audit` | GET | Query audit log |
+| `/api/v1/report` | GET | Summary report |
+| `/api/v1/settings` | PUT | Runtime mode + risk threshold |
+| `/ws/actions` | WebSocket | Real-time action stream |
+
+Full OpenAPI at `http://localhost:8000/docs`.
+
+## Testing
+
+```bash
+python -m pytest tests/ -q
+python -m pytest tests/ -m "slow or not slow" -q
+```
+
+## Contributing
+
+See [CONTRIBUTING.md](CONTRIBUTING.md).
+
+## License
+
+Apache 2.0 — see [LICENSE](LICENSE).
+
+## Built by
+
+**[Rishav Aryan](https://rishavar.github.io)** — ML Engineer, George Mason University
+
+[GitHub](https://github.com/RishavAr) · [Twitter](https://twitter.com/RishavAr)

agentiva-0.1.0/README.md

@@ -0,0 +1,209 @@
+# Agentiva
+
+**Preview deployments for AI agents.**
+
+See what your AI agent would do before it does it.
+
+[![Tests](https://img.shields.io/badge/tests-24%2C599%20passing-brightgreen)]()
+[![OWASP](https://img.shields.io/badge/OWASP%20LLM%20Top%2010-100%25-brightgreen)]()
+[![Python](https://img.shields.io/badge/python-3.10%2B-blue)]()
+[![License](https://img.shields.io/badge/license-Apache%202.0-blue)]()
+
+> litellm was compromised March 24, 2026 — SSH keys, AWS credentials, and database passwords stolen from 97M monthly downloads.
+> Agentiva catches this class of attack at the action layer.
+
+## Quick start (2 minutes)
+
+```bash
+pip install agentiva
+agentiva serve --port 8000
+# Open localhost:3000 for the dashboard (from repo: cd dashboard && npm run dev)
+```
+
+## Protect your agent (3 lines)
+
+```python
+from agentiva import Agentiva
+
+shield = Agentiva(mode="shadow")
+tools = shield.protect([your_existing_tools])
+
+# Your agent works exactly the same.
+# Every action is intercepted, scored, and logged.
+```
+
+## Run the demo
+
+```bash
+# See 4 real incident recreations
+python demo/real_incidents_demo.py
+
+# See PayBot (fintech startup) demo
+python demo/paybot_demo.py
+
+# See proof: before vs after comparison
+python demo/proof_demo.py
+```
+
+Or use the project venv so dependencies resolve: `source .venv/bin/activate` then the commands above.
+
+## What it catches
+
+Tested against real-world incidents:
+
+- **litellm supply chain attack** (March 2026) — credential exfiltration blocked
+- **Amazon Kiro** (December 2025) — infrastructure destruction blocked
+- **Microsoft Copilot** (January 2026) — zero-click data theft blocked
+- **Replit agent** (2026) — mass record deletion blocked
+
+## Verified results
+
+| Benchmark | Result |
+|-----------|--------|
+| Agentiva test suite | 24,599 tests passing |
+| OWASP LLM Top 10 | 21/21 (100%) |
+| DeepTeam (Confident AI) | 38/47 (80.85%) |
+| Garak (NVIDIA) | 2,500 probes scanned |
+| PyRIT (Microsoft) | 9/9 scenarios completed |
+
+Run benchmarks yourself:
+
+```bash
+python -m pytest tests/ -m "slow or not slow"  # Full test suite
+python benchmarks/run_benchmark.py              # OWASP + incidents
+python benchmarks/run_all_benchmarks.py         # All frameworks
+```
+
+## Five operating modes
+
+| Mode | What it does |
+|------|--------------|
+| Shadow | Observe without executing |
+| Simulation | Preview impact before acting |
+| Approval | Human-in-the-loop for risky actions |
+| Negotiation | Agent learns to self-correct |
+| Rollback | Undo what the agent did |
+
+## Dashboard
+
+Real-time monitoring at localhost:3000:
+
+- **Overview** — stats, charts, recent activity
+- **Live Feed** — actions streaming via WebSocket
+- **Audit Log** — searchable history with compliance exports
+- **Agents** — registry with reputation and kill switch
+- **Policies** — YAML rule editor
+- **Security Co-pilot** — ask questions about your agent's behavior
+
+## Security co-pilot
+
+Ask naturally:
+
+- "What was blocked?" → real data from your audit log
+- "Why was send_email blocked?" → specific tool analysis
+- "Is this HIPAA compliant?" → compliance check with regulation citations
+- "Is my agent safe for production?" → honest assessment
+
+Basic mode works without any API key. Add `OPENROUTER_API_KEY` for Claude-powered deep analysis via OpenRouter.
+
+## Works with
+
+LangChain, CrewAI, OpenAI Agents SDK, Anthropic, MCP Protocol, or any custom agent via REST API.
+
+## Compliance-ready evidence
+
+Generates audit trails aligned with:
+
+- **HIPAA** — PHI access logs per 45 CFR § 164.312
+- **SOC2** — Evidence for CC6-CC8 controls
+- **PCI-DSS** — Cardholder data monitoring per Req 3, 7, 10
+
+Note: Agentiva helps prepare for compliance audits. Certification requires a third-party assessor.
+
+## Pricing
+
+| Tier | Price | Agents |
+|------|-------|--------|
+| Free | $0/forever | 1 agent |
+| Pro | $18/month | Up to 3 |
+| Team | $54/month | Unlimited |
+| Enterprise | Custom | Custom |
+
+Self-hosted is free forever. Cloud dashboard on waitlist.
+
+## Architecture
+
+```
+┌────────────────────┐
+│  AI Agent          │  LangChain · CrewAI · OpenAI · MCP · custom tools
+└─────────┬──────────┘
+          │ tool_call
+          ▼
+┌─────────────────────────────────────────────────────────────────────┐
+│                        AGENTIVA API (FastAPI)                        │
+│  /api/v1/intercept · /api/v1/audit · /api/v1/chat · WebSocket feed   │
+└───────────────────────────────┬─────────────────────────────────────┘
+                                │
+          ┌─────────────────────┴─────────────────────┐
+          ▼                                           ▼
+┌──────────────────────┐                 ┌──────────────────────┐
+│  Interceptor         │                 │  Shield Chat          │
+│  PolicyEngine (YAML) │                 │  Sessions + messages  │
+│  SmartRiskScorer     │                 │  (SQLite persistence) │
+│  PHI detector        │                 │  + optional LLM layer │
+│  Behavior / drift    │                 └──────────┬────────────┘
+└──────────┬───────────┘                            │
+           │                                        │
+           ▼                                        ▼
+┌──────────────────────┐                 ┌──────────────────────┐
+│  Modes               │                 │  Compliance KB        │
+│  Shadow · Approve ·  │                 │  HIPAA · SOC 2 ·      │
+│  Live · Negotiation  │                 │  PCI-DSS citations +  │
+│  Simulator · Rollback│                 │  evidence SQL hooks   │
+└──────────┬───────────┘                 └──────────────────────┘
+           │
+           ▼
+┌─────────────────────────────────────────────────────────────────────┐
+│  Persistence: action_logs (audit) · agent registry · approvals ·     │
+│  chat_sessions / chat_messages                                       │
+└─────────────────────────────────────────────────────────────────────┘
+           │
+           ▼
+┌──────────────────────┐
+│  Tools / APIs        │  Email · DB · Slack · shell · payments…
+└──────────────────────┘
+```
+
+## API reference (short)
+
+| Endpoint | Method | Description |
+|----------|--------|-------------|
+| `/health` | GET | Health check + mode + risk threshold |
+| `/api/v1/intercept` | POST | Intercept an agent action |
+| `/api/v1/audit` | GET | Query audit log |
+| `/api/v1/report` | GET | Summary report |
+| `/api/v1/settings` | PUT | Runtime mode + risk threshold |
+| `/ws/actions` | WebSocket | Real-time action stream |
+
+Full OpenAPI at `http://localhost:8000/docs`.
+
+## Testing
+
+```bash
+python -m pytest tests/ -q
+python -m pytest tests/ -m "slow or not slow" -q
+```
+
+## Contributing
+
+See [CONTRIBUTING.md](CONTRIBUTING.md).
+
+## License
+
+Apache 2.0 — see [LICENSE](LICENSE).
+
+## Built by
+
+**[Rishav Aryan](https://rishavar.github.io)** — ML Engineer, George Mason University
+
+[GitHub](https://github.com/RishavAr) · [Twitter](https://twitter.com/RishavAr)

agentiva-0.1.0/agentiva/__init__.py

@@ -0,0 +1,9 @@
+"""
+Agentiva - Preview Deployments for AI Agents
+Open-source runtime that intercepts, previews, approves,
+and rolls back AI agent actions before they touch production.
+"""
+
+__version__ = "0.1.0"
+
+from agentiva.interceptor.core import Agentiva

agentiva-0.1.0/agentiva/alerts/__init__.py

@@ -0,0 +1 @@
+

agentiva-0.1.0/agentiva/alerts/alerter.py

@@ -0,0 +1,39 @@
+from __future__ import annotations
+
+from typing import Any, Dict, List
+
+import httpx
+
+
+class AlertManager:
+    """Send alerts when dangerous things happen."""
+
+    def __init__(self, websocket_broadcaster=None, slack_webhook_url: str = "", email_target: str = "", webhook_url: str = ""):
+        self.websocket_broadcaster = websocket_broadcaster
+        self.slack_webhook_url = slack_webhook_url
+        self.email_target = email_target
+        self.webhook_url = webhook_url
+        self.sent_alerts: List[Dict[str, Any]] = []
+
+    async def send_alert(self, alert_type, action, channel="all"):
+        payload = {
+            "alert_type": alert_type,
+            "action_id": action.id,
+            "tool_name": action.tool_name,
+            "decision": action.decision,
+            "risk_score": action.risk_score,
+            "agent_id": action.agent_id,
+        }
+        self.sent_alerts.append(payload)
+
+        if channel in {"all", "websocket"} and self.websocket_broadcaster is not None:
+            await self.websocket_broadcaster(payload)
+
+        async with httpx.AsyncClient(timeout=5.0) as client:
+            if channel in {"all", "slack"} and self.slack_webhook_url:
+                await client.post(self.slack_webhook_url, json={"text": str(payload)})
+            if channel in {"all", "webhook"} and self.webhook_url:
+                await client.post(self.webhook_url, json=payload)
+            if channel in {"all", "email"} and self.email_target:
+                # Placeholder email integration hook.
+                pass

agentiva-0.1.0/agentiva/api/__init__.py

@@ -0,0 +1 @@
+