auditgate 0.1.0__tar.gz

auditgate-0.1.0/.gitignore

@@ -0,0 +1,15 @@
+__pycache__/
+*.py[cod]
+*$py.class
+*.egg-info/
+dist/
+build/
+.eggs/
+*.egg
+.mypy_cache/
+.ruff_cache/
+.pytest_cache/
+.venv/
+venv/
+*.so
+.DS_Store

auditgate-0.1.0/LICENSE

@@ -0,0 +1,96 @@
+Business Source License 1.1
+
+License text copyright (c) 2017 MariaDB Corporation Ab, All Rights
+Reserved. “Business Source License” is a trademark of MariaDB
+Corporation Ab.
+
+------------------------------------------------------------------------
+
+Parameters
+
+Licensor: actiongate-oss Licensed Work: AuditGate Additional Use Grant:
+None Change Date: February 28, 2030 Change License: Mozilla Public
+License 2.0
+
+------------------------------------------------------------------------
+
+Terms
+
+The Licensor hereby grants you the right to copy, modify, create
+derivative works, redistribute, and make non-production use of the
+Licensed Work. The Licensor may make an Additional Use Grant, above,
+permitting limited production use.
+
+Effective on the Change Date, or the fourth anniversary of the first
+publicly available distribution of a specific version of the Licensed
+Work under this License, whichever comes first, the Licensor hereby
+grants you rights under the terms of the Change License, and the rights
+granted in the paragraph above terminate.
+
+If your use of the Licensed Work does not comply with the requirements
+currently in effect as described in this License, you must purchase a
+commercial license from the Licensor, its affiliated entities, or
+authorized resellers, or you must refrain from using the Licensed Work.
+
+All copies of the original and modified Licensed Work, and derivative
+works of the Licensed Work, are subject to this License. This License
+applies separately for each version of the Licensed Work and the Change
+Date may vary for each version of the Licensed Work released by
+Licensor.
+
+You must conspicuously display this License on each original or modified
+copy of the Licensed Work. If you receive the Licensed Work in original
+or modified form from a third party, the terms and conditions set forth
+in this License apply to your use of that work.
+
+Any use of the Licensed Work in violation of this License will
+automatically terminate your rights under this License for the current
+and all other versions of the Licensed Work.
+
+This License does not grant you any right in any trademark or logo of
+Licensor or its affiliates (provided that you may use a trademark or
+logo of Licensor as expressly required by this License).
+
+TO THE EXTENT PERMITTED BY APPLICABLE LAW, THE LICENSED WORK IS PROVIDED
+ON AN “AS IS” BASIS. LICENSOR HEREBY DISCLAIMS ALL WARRANTIES AND
+CONDITIONS, EXPRESS OR IMPLIED, INCLUDING (WITHOUT LIMITATION)
+WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE,
+NON-INFRINGEMENT, AND TITLE.
+
+MariaDB hereby grants you permission to use this License’s text to
+license your works, and to refer to it using the trademark “Business
+Source License”, as long as you comply with the Covenants of Licensor
+below.
+
+------------------------------------------------------------------------
+
+Covenants of Licensor
+
+In consideration of the right to use this License’s text and the
+“Business Source License” name and trademark, Licensor covenants to
+MariaDB, and to all other recipients of the licensed work to be provided
+by Licensor:
+
+1.  To specify as the Change License the GPL Version 2.0 or any later
+    version, or a license that is compatible with GPL Version 2.0 or a
+    later version, where “compatible” means that software provided under
+    the Change License can be included in a program with software
+    provided under GPL Version 2.0 or a later version. Licensor may
+    specify additional Change Licenses without limitation.
+
+2.  To either: (a) specify an additional grant of rights to use that
+    does not impose any additional restriction on the right granted in
+    this License, as the Additional Use Grant; or (b) insert the text
+    “None”.
+
+3.  To specify a Change Date.
+
+4.  Not to modify this License in any other way.
+
+------------------------------------------------------------------------
+
+Notice
+
+The Business Source License (this document, or the “License”) is not an
+Open Source license. However, the Licensed Work will eventually be made
+available under an Open Source License, as stated in this License.

auditgate-0.1.0/PKG-INFO

@@ -0,0 +1,200 @@
+Metadata-Version: 2.4
+Name: auditgate
+Version: 0.1.0
+Summary: Compliance-grade audit logging for agent systems.
+Project-URL: Homepage, https://github.com/actiongate-oss/auditgate
+Project-URL: Documentation, https://github.com/actiongate-oss/auditgate#readme
+Project-URL: Repository, https://github.com/actiongate-oss/auditgate
+Author-email: ActionGate OSS <actiongate-oss@users.noreply.github.com>
+License-Expression: BUSL-1.1
+License-File: LICENSE
+Keywords: ai-agents,audit,compliance,llm,tamper-evident
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: Other/Proprietary License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Software Development :: Libraries :: Python Modules
+Classifier: Typing :: Typed
+Requires-Python: >=3.12
+Provides-Extra: dev
+Requires-Dist: mypy>=1.0; extra == 'dev'
+Requires-Dist: pytest-cov>=4.0; extra == 'dev'
+Requires-Dist: pytest>=8.0; extra == 'dev'
+Requires-Dist: ruff>=0.1; extra == 'dev'
+Description-Content-Type: text/markdown
+
+# AuditGate
+
+**Compliance-grade audit logging for agent systems.**
+
+Every decision, every verdict, every override — structured, queryable, and tamper-evident.
+
+```bash
+pip install auditgate
+```
+
+---
+
+## What It Does
+
+AuditGate records every gate decision as a structured audit entry with optional tamper-evidence via content hashing or hash chaining. It pairs with [ActionGate](https://github.com/actiongate-oss/actiongate), [BudgetGate](https://github.com/actiongate-oss/budgetgate), and [RuleGate](https://github.com/actiongate-oss/rulegate) as the fourth composable primitive in the agent execution layer.
+
+AuditGate does **not** make allow/block decisions. It records what other gates decided and guarantees the record exists.
+
+**Vendoring encouraged.** This is a small, stable primitive. Copy it, fork it, reimplement it. If you vendor AuditGate, you must preserve the LICENSE file, preserve copyright headers in source files, and not remove or modify the BSL terms. The production use restriction applies to vendored copies. See [SEMANTICS.md](SEMANTICS.md) for the behavioral contract if you reimplement.
+
+## Quick Start
+
+```python
+from auditgate import (
+    Engine, Trail, AuditPolicy, Verdict, Severity, IntegrityMode
+)
+
+engine = Engine()
+
+# Define an audit trail with hash chain integrity
+trail = Trail("billing", "actiongate", "user:123")
+policy = AuditPolicy(integrity=IntegrityMode.CHAIN)
+engine.register(trail, policy)
+
+# Record a decision from ActionGate
+decision = engine.record(
+    trail=trail,
+    verdict=Verdict.ALLOW,
+    severity=Severity.INFO,
+    gate_type="actiongate",
+    gate_identity="billing:refund@user:123",
+    reason="Rate limit check passed",
+    detail={"calls_in_window": 3, "max_calls": 10},
+)
+
+assert decision.recorded
+assert decision.entry.entry_hash is not None
+```
+
+## Integrity Modes
+
+| Mode    | Behavior | Use Case |
+|---------|----------|----------|
+| `NONE`  | No hashing | Maximum throughput, trust the store |
+| `HASH`  | SHA-256 per entry | Detect tampering of individual entries |
+| `CHAIN` | Hash includes previous entry's hash | Detect tampering or deletion of any entry |
+
+## Failure Modes
+
+| Policy | Behavior |
+|--------|----------|
+| `HARD` + `FAIL_CLOSED` | No action can proceed without a recorded audit entry |
+| `HARD` + `FAIL_OPEN` | Raises on failure but allows unaudited actions |
+| `SOFT` + `FAIL_CLOSED` | Returns DROPPED decision, caller decides |
+| `SOFT` + `FAIL_OPEN` | Fire-and-forget audit (best-effort) |
+
+## Decorator API
+
+```python
+# Raises AuditError if audit recording fails (HARD mode default)
+@engine.guard(
+    Trail("api", "combined", "global"),
+    policy=AuditPolicy(integrity=IntegrityMode.HASH),
+    severity=Severity.INFO,
+    gate_type="auditgate",
+)
+def process_order(order_id: str) -> dict:
+    return {"status": "processed", "id": order_id}
+
+# Or use guard_result for no-exception handling
+@engine.guard_result(
+    Trail("api", "combined", "global"),
+    policy=AuditPolicy(mode=Mode.SOFT),
+    severity=Severity.INFO,
+    gate_type="auditgate",
+)
+def fetch_data(query: str) -> list:
+    return db.search(query)
+
+result = fetch_data(query="recent orders")
+data = result.unwrap_or([])
+```
+
+## Querying the Audit Trail
+
+```python
+from auditgate import QueryFilter, Verdict, Severity
+
+# All blocked decisions in the last hour
+entries = engine._store.query(QueryFilter(
+    trail=trail,
+    verdict=Verdict.BLOCK,
+    after_ts=time.monotonic() - 3600,
+))
+
+# All critical events across all trails
+critical = engine._store.query(QueryFilter(
+    min_severity=Severity.CRITICAL,
+))
+```
+
+## Composing with Other Gates
+
+```python
+from actiongate import Engine as ActionEngine, Gate, Policy
+from auditgate import Engine as AuditEngine, Trail, AuditPolicy, Verdict, Severity
+
+action_engine = ActionEngine()
+audit_engine = AuditEngine()
+
+trail = Trail("api", "actiongate", "global")
+audit_engine.register(trail, AuditPolicy())
+
+# Listen to ActionGate decisions and auto-audit them
+def audit_listener(action_decision):
+    audit_engine.record(
+        trail=trail,
+        verdict=Verdict.ALLOW if action_decision.allowed else Verdict.BLOCK,
+        severity=Severity.INFO if action_decision.allowed else Severity.WARN,
+        gate_type="actiongate",
+        gate_identity=str(action_decision.gate),
+        reason=str(action_decision.reason) if action_decision.reason else None,
+    )
+
+action_engine.on_decision(audit_listener)
+```
+
+## Performance
+
+Sub-20µs per audit entry with MemoryStore and SHA-256 hashing (benchmarked). Hash chain mode adds negligible overhead. For context, a single LLM API call is 200ms–2s.
+
+## File Structure
+
+```
+auditgate/
+├── __init__.py   # Public API, exports, version
+├── core.py       # All value types (Trail, AuditPolicy, AuditEntry, Decision, Result)
+├── engine.py     # Engine class (record, guard, guard_result)
+└── store.py      # Store protocol + MemoryStore
+```
+
+## Specification
+
+See [SEMANTICS.md](SEMANTICS.md) for the normative behavior specification. When this document and the code conflict, the specification governs.
+
+## License
+
+AuditGate is licensed under the [Business Source License 1.1](LICENSE).
+
+```
+Licensor:             actiongate-oss
+Licensed Work:        AuditGate
+Additional Use Grant: None
+Change Date:          2030-02-28 (four years from initial publication)
+Change License:       Mozilla Public License 2.0
+```
+
+**What this means:** You may copy, modify, create derivative works, redistribute, and make non-production use of AuditGate. The Additional Use Grant is "None", which means any use in a live environment that provides value to end users or internal business operations — including SaaS, internal enterprise deployment, and paid betas — requires a commercial license from the licensor. On the Change Date, AuditGate becomes available under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/) and the production restriction terminates. Each version has its own Change Date calculated from its publication.
+
+**If you vendor AuditGate:** Preserve the LICENSE file and copyright headers. Do not remove or modify the BSL terms. The production restriction applies to all copies, vendored or otherwise.
+
+**Licensing difference from siblings:** [ActionGate](https://github.com/actiongate-oss/actiongate) and [BudgetGate](https://github.com/actiongate-oss/budgetgate) are Apache 2.0. AuditGate is BSL 1.1. If composing all three, ensure your use complies with both license terms.
+
+See [LICENSE](LICENSE) for the legally binding text.

auditgate-0.1.0/README.md

@@ -0,0 +1,174 @@
+# AuditGate
+
+**Compliance-grade audit logging for agent systems.**
+
+Every decision, every verdict, every override — structured, queryable, and tamper-evident.
+
+```bash
+pip install auditgate
+```
+
+---
+
+## What It Does
+
+AuditGate records every gate decision as a structured audit entry with optional tamper-evidence via content hashing or hash chaining. It pairs with [ActionGate](https://github.com/actiongate-oss/actiongate), [BudgetGate](https://github.com/actiongate-oss/budgetgate), and [RuleGate](https://github.com/actiongate-oss/rulegate) as the fourth composable primitive in the agent execution layer.
+
+AuditGate does **not** make allow/block decisions. It records what other gates decided and guarantees the record exists.
+
+**Vendoring encouraged.** This is a small, stable primitive. Copy it, fork it, reimplement it. If you vendor AuditGate, you must preserve the LICENSE file, preserve copyright headers in source files, and not remove or modify the BSL terms. The production use restriction applies to vendored copies. See [SEMANTICS.md](SEMANTICS.md) for the behavioral contract if you reimplement.
+
+## Quick Start
+
+```python
+from auditgate import (
+    Engine, Trail, AuditPolicy, Verdict, Severity, IntegrityMode
+)
+
+engine = Engine()
+
+# Define an audit trail with hash chain integrity
+trail = Trail("billing", "actiongate", "user:123")
+policy = AuditPolicy(integrity=IntegrityMode.CHAIN)
+engine.register(trail, policy)
+
+# Record a decision from ActionGate
+decision = engine.record(
+    trail=trail,
+    verdict=Verdict.ALLOW,
+    severity=Severity.INFO,
+    gate_type="actiongate",
+    gate_identity="billing:refund@user:123",
+    reason="Rate limit check passed",
+    detail={"calls_in_window": 3, "max_calls": 10},
+)
+
+assert decision.recorded
+assert decision.entry.entry_hash is not None
+```
+
+## Integrity Modes
+
+| Mode    | Behavior | Use Case |
+|---------|----------|----------|
+| `NONE`  | No hashing | Maximum throughput, trust the store |
+| `HASH`  | SHA-256 per entry | Detect tampering of individual entries |
+| `CHAIN` | Hash includes previous entry's hash | Detect tampering or deletion of any entry |
+
+## Failure Modes
+
+| Policy | Behavior |
+|--------|----------|
+| `HARD` + `FAIL_CLOSED` | No action can proceed without a recorded audit entry |
+| `HARD` + `FAIL_OPEN` | Raises on failure but allows unaudited actions |
+| `SOFT` + `FAIL_CLOSED` | Returns DROPPED decision, caller decides |
+| `SOFT` + `FAIL_OPEN` | Fire-and-forget audit (best-effort) |
+
+## Decorator API
+
+```python
+# Raises AuditError if audit recording fails (HARD mode default)
+@engine.guard(
+    Trail("api", "combined", "global"),
+    policy=AuditPolicy(integrity=IntegrityMode.HASH),
+    severity=Severity.INFO,
+    gate_type="auditgate",
+)
+def process_order(order_id: str) -> dict:
+    return {"status": "processed", "id": order_id}
+
+# Or use guard_result for no-exception handling
+@engine.guard_result(
+    Trail("api", "combined", "global"),
+    policy=AuditPolicy(mode=Mode.SOFT),
+    severity=Severity.INFO,
+    gate_type="auditgate",
+)
+def fetch_data(query: str) -> list:
+    return db.search(query)
+
+result = fetch_data(query="recent orders")
+data = result.unwrap_or([])
+```
+
+## Querying the Audit Trail
+
+```python
+from auditgate import QueryFilter, Verdict, Severity
+
+# All blocked decisions in the last hour
+entries = engine._store.query(QueryFilter(
+    trail=trail,
+    verdict=Verdict.BLOCK,
+    after_ts=time.monotonic() - 3600,
+))
+
+# All critical events across all trails
+critical = engine._store.query(QueryFilter(
+    min_severity=Severity.CRITICAL,
+))
+```
+
+## Composing with Other Gates
+
+```python
+from actiongate import Engine as ActionEngine, Gate, Policy
+from auditgate import Engine as AuditEngine, Trail, AuditPolicy, Verdict, Severity
+
+action_engine = ActionEngine()
+audit_engine = AuditEngine()
+
+trail = Trail("api", "actiongate", "global")
+audit_engine.register(trail, AuditPolicy())
+
+# Listen to ActionGate decisions and auto-audit them
+def audit_listener(action_decision):
+    audit_engine.record(
+        trail=trail,
+        verdict=Verdict.ALLOW if action_decision.allowed else Verdict.BLOCK,
+        severity=Severity.INFO if action_decision.allowed else Severity.WARN,
+        gate_type="actiongate",
+        gate_identity=str(action_decision.gate),
+        reason=str(action_decision.reason) if action_decision.reason else None,
+    )
+
+action_engine.on_decision(audit_listener)
+```
+
+## Performance
+
+Sub-20µs per audit entry with MemoryStore and SHA-256 hashing (benchmarked). Hash chain mode adds negligible overhead. For context, a single LLM API call is 200ms–2s.
+
+## File Structure
+
+```
+auditgate/
+├── __init__.py   # Public API, exports, version
+├── core.py       # All value types (Trail, AuditPolicy, AuditEntry, Decision, Result)
+├── engine.py     # Engine class (record, guard, guard_result)
+└── store.py      # Store protocol + MemoryStore
+```
+
+## Specification
+
+See [SEMANTICS.md](SEMANTICS.md) for the normative behavior specification. When this document and the code conflict, the specification governs.
+
+## License
+
+AuditGate is licensed under the [Business Source License 1.1](LICENSE).
+
+```
+Licensor:             actiongate-oss
+Licensed Work:        AuditGate
+Additional Use Grant: None
+Change Date:          2030-02-28 (four years from initial publication)
+Change License:       Mozilla Public License 2.0
+```
+
+**What this means:** You may copy, modify, create derivative works, redistribute, and make non-production use of AuditGate. The Additional Use Grant is "None", which means any use in a live environment that provides value to end users or internal business operations — including SaaS, internal enterprise deployment, and paid betas — requires a commercial license from the licensor. On the Change Date, AuditGate becomes available under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/) and the production restriction terminates. Each version has its own Change Date calculated from its publication.
+
+**If you vendor AuditGate:** Preserve the LICENSE file and copyright headers. Do not remove or modify the BSL terms. The production restriction applies to all copies, vendored or otherwise.
+
+**Licensing difference from siblings:** [ActionGate](https://github.com/actiongate-oss/actiongate) and [BudgetGate](https://github.com/actiongate-oss/budgetgate) are Apache 2.0. AuditGate is BSL 1.1. If composing all three, ensure your use complies with both license terms.
+
+See [LICENSE](LICENSE) for the legally binding text.