hexgate 0.2.1__tar.gz → 0.2.2__tar.gz

hexgate-0.2.2/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Hexamind
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

{hexgate-0.2.1 → hexgate-0.2.2}/PKG-INFO

@@ -1,9 +1,11 @@
 Metadata-Version: 2.4
 Name: hexgate
-Version: 0.2.1
+Version: 0.2.2
 Summary: HexaGate — authorization infrastructure for AI agents (agent runtime + cloud client).
+License-Expression: MIT
 Requires-Python: >=3.13
 Description-Content-Type: text/markdown
+License-File: LICENSE
 Requires-Dist: bashlex>=0.18
 Requires-Dist: biscuit-python>=0.4
 Requires-Dist: cryptography>=42
@@ -33,21 +35,77 @@ Requires-Dist: jupyter; extra == "dev"
 Requires-Dist: pytest>=8.4.1; extra == "dev"
 Requires-Dist: pytest-asyncio>=1.0.0; extra == "dev"
 Requires-Dist: ruff>=0.12.2; extra == "dev"
+Dynamic: license-file
 
-# hexgate
+<div align="center">
 
-`hexgate` is a lightweight LangChain-based agent runtime built around:
+# HexaGate
 
-- `langchain`
-- `gpt-5.4`
-- `Linkup` web search
-- Tavily-based page fetch
-- `Langfuse` tracing
+**Authorization infrastructure for AI agents.**
+Policy enforcement, signed policy bundles, per-request user scope, audit trail — for OpenAI Agents, LangChain, Google ADK, Pydantic AI, or a native runtime.
 
-This package is intentionally small. The first milestone is a single assistant with:
+[![PyPI](https://img.shields.io/pypi/v/hexgate?color=blue&logo=pypi&logoColor=white)](https://pypi.org/project/hexgate/)
+[![Python](https://img.shields.io/pypi/pyversions/hexgate?logo=python&logoColor=white)](https://pypi.org/project/hexgate/)
+[![CI](https://github.com/HexamindOrganisation/hexgate/actions/workflows/tests.yml/badge.svg?branch=main)](https://github.com/HexamindOrganisation/hexgate/actions/workflows/tests.yml)
+[![Downloads](https://img.shields.io/pypi/dm/hexgate?color=blueviolet)](https://pypi.org/project/hexgate/)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
 
-- `web_search`
-- `fetch`
+[Quick Start](#-quick-start--local-cli) · [Two paths](#-which-path-do-i-pick) · [Framework adapters](#-framework-agent-wrapping) · [Policy bundles](#-policy-bundles--compile-sign-enforce-wasm) · [User scope](#-user-scope--roles) · [Platform](#-hexagate-platform)
+
+</div>
+
+---
+
+## What is HexaGate?
+
+HexaGate is two things that move together:
+
+- **`hexgate` — the SDK.** A Python runtime that gates every tool call through a typed `Decision` (allow / deny / approval-required), wraps your existing OpenAI / LangChain / Google ADK / Pydantic AI agent without rewriting it, and threads per-request user identity through tracing + audit.
+- **The HexaGate platform** *(optional)* — a FastAPI control plane + React dashboard for editing policy in a browser, minting per-project tokens, watching live decisions stream from a serving agent, and shipping signed WASM policy bundles to production.
+
+You can use the SDK with nothing else (single-process REPL, YAML on disk). Or plug in the platform when you want auditable decisions in ClickHouse, a shared Playground UI, and live policy edits.
+
+```text
+                      ┌─────────────────────────────────────────┐
+   your code  ───►    │   create_agent / wrap_*_agent / Runner  │
+                      │            ↓                            │
+                      │     PolicyEnforcer.decide(role, tool)   │
+                      │            ↓                            │
+                      │   allow · deny · approval_required      │
+                      └────────────────────┬────────────────────┘
+                                           │
+                  ┌────────────────────────┼─────────────────────────┐
+                  ▼                        ▼                         ▼
+        ┌────────────────┐       ┌──────────────────┐       ┌────────────────┐
+        │  Local policy  │       │ Signed WASM      │       │   Audit log    │
+        │  (YAML / dir,  │       │ bundle from      │       │   (ClickHouse  │
+        │  hot reload)   │       │ HexaGate cloud   │       │   via REST)    │
+        └────────────────┘       └──────────────────┘       └────────────────┘
+```
+
+## Table of contents
+
+- [Prerequisites](#-prerequisites)
+- [Quick Start — Local CLI](#-quick-start--local-cli)
+- [Which path do I pick?](#-which-path-do-i-pick) — chat vs serve
+- [Quick Start — Platform](#-quick-start--platform)
+- [Core primitives](#-core-primitives)
+- [Build an agent — end to end](#-build-an-agent--end-to-end)
+- [What you can import](#-what-you-can-import)
+- [Framework agent wrapping](#-framework-agent-wrapping) — OpenAI, LangChain, Google ADK, Pydantic AI
+- [Define agents in code](#-define-agents-in-code)
+- [Builtin and local agents](#-builtin-and-local-agents)
+- [Policy shape](#-policy-shape)
+- [Tool-call policy enforcement](#-tool-call-policy-enforcement)
+- [Policy bundles — compile, sign, enforce (WASM)](#-policy-bundles--compile-sign-enforce-wasm)
+- [Approval-required tool calls](#-approval-required-tool-calls)
+- [Workspace sandbox](#-workspace-sandbox)
+- [Environment](#-environment)
+- [Tests & dev tooling](#-tests--dev-tooling)
+- [CLI reference](#-cli-reference)
+- [HexaGate platform](#-hexagate-platform)
+- [User scope + roles](#-user-scope--roles)
+- [Stream results](#-stream-results)
 
 ## 🛠️ Prerequisites
 
@@ -1059,41 +1117,18 @@ The platform-side test suite is separate and lives at `platform/api/tests/`:
 cd platform/api && uv run pytest tests/
 ```
 
-## ▶️ Run It
-
-Install the package into your current environment:
-
-```bash
-python -m pip install -e .
-```
+## 🖥️ CLI reference
 
-Run the config-driven demo:
-
-```bash
-python examples/demo.py
-```
-
-Run the inline chat CLI with a local or builtin YAML agent:
-
-```bash
-hexgate chat --agent example_agent
-```
-
-Run the CLI with code-defined agents from a Python script:
+The `hexgate` binary exposes `chat`, `serve`, `register`, and `policy` subcommands. The [Quick Start](#-quick-start--local-cli) covers `chat`; this section drills into `register` and `serve` for the platform path.
 
 ```bash
+hexgate --help                                     # list subcommands
+hexgate <subcommand> --help                        # flags for a subcommand
+hexgate chat --list-agents                         # show resolvable agents
 hexgate chat --use examples/file_agents.py --agent workspace_explorer
-hexgate chat --use examples/file_agents.py --agent repo_editor
-hexgate chat --use examples/research_agents.py --agent update_researcher
 hexgate chat --use examples/research_agents.py --agent update_researcher --approval-mode ask
 ```
 
-List what the CLI can currently resolve:
-
-```bash
-hexgate chat --list-agents
-```
-
 ### `hexgate register` — push a manifest to the platform
 
 Register a code-defined agent's manifest with the HexaGate platform. `--agent`

{hexgate-0.2.1 → hexgate-0.2.2}/README.md

@@ -1,17 +1,72 @@
-# hexgate
+<div align="center">
 
-`hexgate` is a lightweight LangChain-based agent runtime built around:
+# HexaGate
 
-- `langchain`
-- `gpt-5.4`
-- `Linkup` web search
-- Tavily-based page fetch
-- `Langfuse` tracing
+**Authorization infrastructure for AI agents.**
+Policy enforcement, signed policy bundles, per-request user scope, audit trail — for OpenAI Agents, LangChain, Google ADK, Pydantic AI, or a native runtime.
 
-This package is intentionally small. The first milestone is a single assistant with:
+[![PyPI](https://img.shields.io/pypi/v/hexgate?color=blue&logo=pypi&logoColor=white)](https://pypi.org/project/hexgate/)
+[![Python](https://img.shields.io/pypi/pyversions/hexgate?logo=python&logoColor=white)](https://pypi.org/project/hexgate/)
+[![CI](https://github.com/HexamindOrganisation/hexgate/actions/workflows/tests.yml/badge.svg?branch=main)](https://github.com/HexamindOrganisation/hexgate/actions/workflows/tests.yml)
+[![Downloads](https://img.shields.io/pypi/dm/hexgate?color=blueviolet)](https://pypi.org/project/hexgate/)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
 
-- `web_search`
-- `fetch`
+[Quick Start](#-quick-start--local-cli) · [Two paths](#-which-path-do-i-pick) · [Framework adapters](#-framework-agent-wrapping) · [Policy bundles](#-policy-bundles--compile-sign-enforce-wasm) · [User scope](#-user-scope--roles) · [Platform](#-hexagate-platform)
+
+</div>
+
+---
+
+## What is HexaGate?
+
+HexaGate is two things that move together:
+
+- **`hexgate` — the SDK.** A Python runtime that gates every tool call through a typed `Decision` (allow / deny / approval-required), wraps your existing OpenAI / LangChain / Google ADK / Pydantic AI agent without rewriting it, and threads per-request user identity through tracing + audit.
+- **The HexaGate platform** *(optional)* — a FastAPI control plane + React dashboard for editing policy in a browser, minting per-project tokens, watching live decisions stream from a serving agent, and shipping signed WASM policy bundles to production.
+
+You can use the SDK with nothing else (single-process REPL, YAML on disk). Or plug in the platform when you want auditable decisions in ClickHouse, a shared Playground UI, and live policy edits.
+
+```text
+                      ┌─────────────────────────────────────────┐
+   your code  ───►    │   create_agent / wrap_*_agent / Runner  │
+                      │            ↓                            │
+                      │     PolicyEnforcer.decide(role, tool)   │
+                      │            ↓                            │
+                      │   allow · deny · approval_required      │
+                      └────────────────────┬────────────────────┘
+                                           │
+                  ┌────────────────────────┼─────────────────────────┐
+                  ▼                        ▼                         ▼
+        ┌────────────────┐       ┌──────────────────┐       ┌────────────────┐
+        │  Local policy  │       │ Signed WASM      │       │   Audit log    │
+        │  (YAML / dir,  │       │ bundle from      │       │   (ClickHouse  │
+        │  hot reload)   │       │ HexaGate cloud   │       │   via REST)    │
+        └────────────────┘       └──────────────────┘       └────────────────┘
+```
+
+## Table of contents
+
+- [Prerequisites](#-prerequisites)
+- [Quick Start — Local CLI](#-quick-start--local-cli)
+- [Which path do I pick?](#-which-path-do-i-pick) — chat vs serve
+- [Quick Start — Platform](#-quick-start--platform)
+- [Core primitives](#-core-primitives)
+- [Build an agent — end to end](#-build-an-agent--end-to-end)
+- [What you can import](#-what-you-can-import)
+- [Framework agent wrapping](#-framework-agent-wrapping) — OpenAI, LangChain, Google ADK, Pydantic AI
+- [Define agents in code](#-define-agents-in-code)
+- [Builtin and local agents](#-builtin-and-local-agents)
+- [Policy shape](#-policy-shape)
+- [Tool-call policy enforcement](#-tool-call-policy-enforcement)
+- [Policy bundles — compile, sign, enforce (WASM)](#-policy-bundles--compile-sign-enforce-wasm)
+- [Approval-required tool calls](#-approval-required-tool-calls)
+- [Workspace sandbox](#-workspace-sandbox)
+- [Environment](#-environment)
+- [Tests & dev tooling](#-tests--dev-tooling)
+- [CLI reference](#-cli-reference)
+- [HexaGate platform](#-hexagate-platform)
+- [User scope + roles](#-user-scope--roles)
+- [Stream results](#-stream-results)
 
 ## 🛠️ Prerequisites
 
@@ -1023,41 +1078,18 @@ The platform-side test suite is separate and lives at `platform/api/tests/`:
 cd platform/api && uv run pytest tests/
 ```
 
-## ▶️ Run It
-
-Install the package into your current environment:
-
-```bash
-python -m pip install -e .
-```
+## 🖥️ CLI reference
 
-Run the config-driven demo:
-
-```bash
-python examples/demo.py
-```
-
-Run the inline chat CLI with a local or builtin YAML agent:
-
-```bash
-hexgate chat --agent example_agent
-```
-
-Run the CLI with code-defined agents from a Python script:
+The `hexgate` binary exposes `chat`, `serve`, `register`, and `policy` subcommands. The [Quick Start](#-quick-start--local-cli) covers `chat`; this section drills into `register` and `serve` for the platform path.
 
 ```bash
+hexgate --help                                     # list subcommands
+hexgate <subcommand> --help                        # flags for a subcommand
+hexgate chat --list-agents                         # show resolvable agents
 hexgate chat --use examples/file_agents.py --agent workspace_explorer
-hexgate chat --use examples/file_agents.py --agent repo_editor
-hexgate chat --use examples/research_agents.py --agent update_researcher
 hexgate chat --use examples/research_agents.py --agent update_researcher --approval-mode ask
 ```
 
-List what the CLI can currently resolve:
-
-```bash
-hexgate chat --list-agents
-```
-
 ### `hexgate register` — push a manifest to the platform
 
 Register a code-defined agent's manifest with the HexaGate platform. `--agent`

{hexgate-0.2.1 → hexgate-0.2.2}/hexgate/adapters/google/runner.py

@@ -79,16 +79,32 @@ class HexgateRunner:
         user: User,
         **kwargs: Any,
     ) -> Generator[Any, None, None]:
-        """Run the Google ADK agent synchronously, yielding events."""
+        """Run the Google ADK agent synchronously, yielding events.
+
+        ADK's ``Runner.run`` drives the agent loop in a worker thread whose
+        context cannot see our :class:`User` scope, so the tools' enforcers
+        lose the active role. We drive ``run_async`` inline on a per-call loop
+        instead, keeping execution in this scoped thread.
+        """
         self._setup_observability()
         self._binding.refresh()  # per-run policy pull; 304 when unchanged
         with user.sync_scope(), self._propagate(user):
-            yield from self._runner.run(
+            agen = self._runner.run_async(
                 user_id=user.user_id,
                 session_id=user.session_id,
                 new_message=new_message,
                 **kwargs,
             )
+            loop = asyncio.new_event_loop()
+            try:
+                while True:
+                    try:
+                        yield loop.run_until_complete(agen.__anext__())
+                    except StopAsyncIteration:
+                        break
+            finally:
+                loop.run_until_complete(agen.aclose())
+                loop.close()
 
     async def run_async(
         self,

{hexgate-0.2.1 → hexgate-0.2.2}/hexgate/adapters/openai/runner.py

@@ -134,21 +134,22 @@ class HexgateRunner:
     ) -> RunResultStreaming:
         """Stream the OpenAI agent inside a User scope.
 
-        ``Runner.run_streamed`` returns sync; tools only run during
-        ``stream_events`` iteration. The User scope is opened inside the
-        wrapped iterator. Langfuse propagation runs during setup so the
-        trace span attaches. The policy refresh runs in the setup body —
-        the wrap is fixed before tools fire during stream_events.
+        ``Runner.run_streamed`` returns sync but spawns the agent loop as a
+        background task that snapshots the current contextvars at creation;
+        tools fire there, not in ``stream_events``. So the User scope must be
+        active around the ``run_streamed`` call for the task to inherit it —
+        the wrapped iterator re-opens it for exit/audit semantics.
         """
         self._setup_observability()
         binding = self._binding_for(agent)
         binding.refresh()  # must precede the wrap + setup
         wrapped_agent = wrap_openai_agent(agent, enforcer=binding.enforcer)
 
-        with self._propagate(user, agent.name):
-            result = Runner.run_streamed(
-                wrapped_agent, input, run_config=run_config, **kwargs
-            )
+        with user.sync_scope():
+            with self._propagate(user, agent.name):
+                result = Runner.run_streamed(
+                    wrapped_agent, input, run_config=run_config, **kwargs
+                )
 
         original_stream_events = result.stream_events
 

{hexgate-0.2.1 → hexgate-0.2.2}/hexgate.egg-info/PKG-INFO

@@ -1,9 +1,11 @@
 Metadata-Version: 2.4
 Name: hexgate
-Version: 0.2.1
+Version: 0.2.2
 Summary: HexaGate — authorization infrastructure for AI agents (agent runtime + cloud client).
+License-Expression: MIT
 Requires-Python: >=3.13
 Description-Content-Type: text/markdown
+License-File: LICENSE
 Requires-Dist: bashlex>=0.18
 Requires-Dist: biscuit-python>=0.4
 Requires-Dist: cryptography>=42
@@ -33,21 +35,77 @@ Requires-Dist: jupyter; extra == "dev"
 Requires-Dist: pytest>=8.4.1; extra == "dev"
 Requires-Dist: pytest-asyncio>=1.0.0; extra == "dev"
 Requires-Dist: ruff>=0.12.2; extra == "dev"
+Dynamic: license-file
 
-# hexgate
+<div align="center">
 
-`hexgate` is a lightweight LangChain-based agent runtime built around:
+# HexaGate
 
-- `langchain`
-- `gpt-5.4`
-- `Linkup` web search
-- Tavily-based page fetch
-- `Langfuse` tracing
+**Authorization infrastructure for AI agents.**
+Policy enforcement, signed policy bundles, per-request user scope, audit trail — for OpenAI Agents, LangChain, Google ADK, Pydantic AI, or a native runtime.
 
-This package is intentionally small. The first milestone is a single assistant with:
+[![PyPI](https://img.shields.io/pypi/v/hexgate?color=blue&logo=pypi&logoColor=white)](https://pypi.org/project/hexgate/)
+[![Python](https://img.shields.io/pypi/pyversions/hexgate?logo=python&logoColor=white)](https://pypi.org/project/hexgate/)
+[![CI](https://github.com/HexamindOrganisation/hexgate/actions/workflows/tests.yml/badge.svg?branch=main)](https://github.com/HexamindOrganisation/hexgate/actions/workflows/tests.yml)
+[![Downloads](https://img.shields.io/pypi/dm/hexgate?color=blueviolet)](https://pypi.org/project/hexgate/)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
 
-- `web_search`
-- `fetch`
+[Quick Start](#-quick-start--local-cli) · [Two paths](#-which-path-do-i-pick) · [Framework adapters](#-framework-agent-wrapping) · [Policy bundles](#-policy-bundles--compile-sign-enforce-wasm) · [User scope](#-user-scope--roles) · [Platform](#-hexagate-platform)
+
+</div>
+
+---
+
+## What is HexaGate?
+
+HexaGate is two things that move together:
+
+- **`hexgate` — the SDK.** A Python runtime that gates every tool call through a typed `Decision` (allow / deny / approval-required), wraps your existing OpenAI / LangChain / Google ADK / Pydantic AI agent without rewriting it, and threads per-request user identity through tracing + audit.
+- **The HexaGate platform** *(optional)* — a FastAPI control plane + React dashboard for editing policy in a browser, minting per-project tokens, watching live decisions stream from a serving agent, and shipping signed WASM policy bundles to production.
+
+You can use the SDK with nothing else (single-process REPL, YAML on disk). Or plug in the platform when you want auditable decisions in ClickHouse, a shared Playground UI, and live policy edits.
+
+```text
+                      ┌─────────────────────────────────────────┐
+   your code  ───►    │   create_agent / wrap_*_agent / Runner  │
+                      │            ↓                            │
+                      │     PolicyEnforcer.decide(role, tool)   │
+                      │            ↓                            │
+                      │   allow · deny · approval_required      │
+                      └────────────────────┬────────────────────┘
+                                           │
+                  ┌────────────────────────┼─────────────────────────┐
+                  ▼                        ▼                         ▼
+        ┌────────────────┐       ┌──────────────────┐       ┌────────────────┐
+        │  Local policy  │       │ Signed WASM      │       │   Audit log    │
+        │  (YAML / dir,  │       │ bundle from      │       │   (ClickHouse  │
+        │  hot reload)   │       │ HexaGate cloud   │       │   via REST)    │
+        └────────────────┘       └──────────────────┘       └────────────────┘
+```
+
+## Table of contents
+
+- [Prerequisites](#-prerequisites)
+- [Quick Start — Local CLI](#-quick-start--local-cli)
+- [Which path do I pick?](#-which-path-do-i-pick) — chat vs serve
+- [Quick Start — Platform](#-quick-start--platform)
+- [Core primitives](#-core-primitives)
+- [Build an agent — end to end](#-build-an-agent--end-to-end)
+- [What you can import](#-what-you-can-import)
+- [Framework agent wrapping](#-framework-agent-wrapping) — OpenAI, LangChain, Google ADK, Pydantic AI
+- [Define agents in code](#-define-agents-in-code)
+- [Builtin and local agents](#-builtin-and-local-agents)
+- [Policy shape](#-policy-shape)
+- [Tool-call policy enforcement](#-tool-call-policy-enforcement)
+- [Policy bundles — compile, sign, enforce (WASM)](#-policy-bundles--compile-sign-enforce-wasm)
+- [Approval-required tool calls](#-approval-required-tool-calls)
+- [Workspace sandbox](#-workspace-sandbox)
+- [Environment](#-environment)
+- [Tests & dev tooling](#-tests--dev-tooling)
+- [CLI reference](#-cli-reference)
+- [HexaGate platform](#-hexagate-platform)
+- [User scope + roles](#-user-scope--roles)
+- [Stream results](#-stream-results)
 
 ## 🛠️ Prerequisites
 
@@ -1059,41 +1117,18 @@ The platform-side test suite is separate and lives at `platform/api/tests/`:
 cd platform/api && uv run pytest tests/
 ```
 
-## ▶️ Run It
-
-Install the package into your current environment:
-
-```bash
-python -m pip install -e .
-```
+## 🖥️ CLI reference
 
-Run the config-driven demo:
-
-```bash
-python examples/demo.py
-```
-
-Run the inline chat CLI with a local or builtin YAML agent:
-
-```bash
-hexgate chat --agent example_agent
-```
-
-Run the CLI with code-defined agents from a Python script:
+The `hexgate` binary exposes `chat`, `serve`, `register`, and `policy` subcommands. The [Quick Start](#-quick-start--local-cli) covers `chat`; this section drills into `register` and `serve` for the platform path.
 
 ```bash
+hexgate --help                                     # list subcommands
+hexgate <subcommand> --help                        # flags for a subcommand
+hexgate chat --list-agents                         # show resolvable agents
 hexgate chat --use examples/file_agents.py --agent workspace_explorer
-hexgate chat --use examples/file_agents.py --agent repo_editor
-hexgate chat --use examples/research_agents.py --agent update_researcher
 hexgate chat --use examples/research_agents.py --agent update_researcher --approval-mode ask
 ```
 
-List what the CLI can currently resolve:
-
-```bash
-hexgate chat --list-agents
-```
-
 ### `hexgate register` — push a manifest to the platform
 
 Register a code-defined agent's manifest with the HexaGate platform. `--agent`

{hexgate-0.2.1 → hexgate-0.2.2}/hexgate.egg-info/SOURCES.txt

@@ -1,3 +1,4 @@
+LICENSE
 README.md
 pyproject.toml
 hexgate/__init__.py

{hexgate-0.2.1 → hexgate-0.2.2}/pyproject.toml

@@ -9,9 +9,11 @@ build-backend = "setuptools.build_meta"
 # 0.2.0 (the original package name was taken on PyPI by a 2014
 # abandoned project; the team consolidated on `hexgate` for everything).
 name = "hexgate"
-version = "0.2.1"
+version = "0.2.2"
 description = "HexaGate — authorization infrastructure for AI agents (agent runtime + cloud client)."
 readme = "README.md"
+license = "MIT"
+license-files = ["LICENSE"]
 requires-python = ">=3.13"
 dependencies = [
     "bashlex>=0.18",