tollgate 1.0.0__py3-none-any.whl → 1.0.2__py3-none-any.whl

tollgate/__init__.py

@@ -31,7 +31,7 @@ from .types import (
     ToolRequest,
 )
 
-__version__ = "1.0.0"
+__version__ = "1.0.2"
 
 __all__ = [
     "ControlTower",

tollgate-1.0.2.dist-info/METADATA

@@ -0,0 +1,117 @@
+Metadata-Version: 2.4
+Name: tollgate
+Version: 1.0.2
+Summary: Runtime enforcement layer for AI agent tool calls using Identity + Intent + Policy
+Author: Tollgate Maintainers
+License-Expression: Apache-2.0
+License-File: LICENSE
+Keywords: agents,ai,enforcement,llm,policy,security
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Requires-Python: >=3.10
+Requires-Dist: pyyaml>=6.0.0
+Provides-Extra: dev
+Requires-Dist: build>=1.0.0; extra == 'dev'
+Requires-Dist: pytest-asyncio>=0.21.0; extra == 'dev'
+Requires-Dist: pytest>=7.0.0; extra == 'dev'
+Requires-Dist: ruff>=0.1.0; extra == 'dev'
+Requires-Dist: twine>=4.0.0; extra == 'dev'
+Description-Content-Type: text/markdown
+
+# tollgate 🚪
+
+Runtime enforcement layer for AI agent tool calls using **Identity + Intent + Policy**.
+
+`tollgate` provides a deterministic safety boundary for AI agents. It ensures every tool call is validated against a policy before execution, with support for async human-in-the-loop approvals, framework interception (MCP, Strands, LangChain, OpenAI), and structured audit logging.
+
+**[🚀 Quickstart Guide](https://github.com/ravi-labs/tollgate/blob/main/QUICKSTART.md) | [📊 Integration Comparison](https://github.com/ravi-labs/tollgate/blob/main/COMPARISON.md)**
+
+```
+┌────────────┐     ┌─────────────────────┐     ┌──────────────────┐
+│  AI Agent  │────▶│ Tollgate Interceptor│────▶│ Policy + Registry│
+└────────────┘     └─────────────────────┘     └────────┬─────────┘
+                                                        │
+                   ┌────────────────────────────────────┼────────────────────────────────────┐
+                   │                                    │                                    │
+                   ▼                                    ▼                                    ▼
+            ┌───────────┐                        ┌───────────┐                        ┌───────────┐
+            │   ALLOW   │                        │    ASK    │                        │   DENY    │
+            └─────┬─────┘                        └─────┬─────┘                        └─────┬─────┘
+                  │                                    │                                    │
+                  ▼                                    ▼                                    ▼
+            ┌───────────┐                     ┌───────────────┐                      ┌───────────┐
+            │  Execute  │                     │Human Approval │                      │  Block &  │
+            │   Tool    │                     │  (Approved?)  │                      │   Audit   │
+            └─────┬─────┘                     └───────┬───────┘                      └─────┬─────┘
+                  │                              ▼         ▼                               │
+                  │                          Yes │         │ No                            │
+                  │                              ▼         ▼                               │
+                  │                        ┌─────────┐ ┌─────────┐                         │
+                  │                        │ Execute │ │  Block  │                         │
+                  │                        └────┬────┘ └────┬────┘                         │
+                  │                             │           │                              │
+                  └─────────────────────────────┴───────────┴──────────────────────────────┘
+                                                        │
+                                                        ▼
+                                                 ┌───────────┐
+                                                 │ Audit Log │
+                                                 └───────────┘
+```
+
+## ✨ v1 Core Principles
+
+1. **Interception-First**: Enforcement happens at the tool execution boundary via adapters.
+2. **Safe Defaults**: Any unknown tool effect or resource defaults to **DENY**.
+3. **Trust Model**: Tool metadata is trusted only if it comes from a developer-controlled **Tool Registry**.
+4. **Approval Integrity**: Approvals are bound to a request hash and correlation ID with replay protection.
+5. **Async-First**: Native support for asynchronous agent loops and non-blocking approvals.
+6. **Audit Integrity**: Every decision, approval, and outcome is recorded with full cryptographic context.
+
+## 🚀 v1 Integrations
+
+### MCP (Model Context Protocol)
+Wrap an MCP client to gate all tool calls:
+```python
+from tollgate import ControlTower, ToolRegistry
+from tollgate.integrations.mcp import TollgateMCPClient
+
+registry = ToolRegistry("manifest.yaml")
+tower = ControlTower(...)
+client = TollgateMCPClient(base_client, server_name="my_server", tower=tower, registry=registry)
+
+# Calls are now gated!
+await client.call_tool("read_data", {"id": 1}, agent_ctx=ctx, intent=intent)
+```
+
+### Strands Agents
+Gate Strands tools with minimal friction:
+```python
+from tollgate.integrations.strands import guard_tools
+
+guarded = guard_tools(my_strands_tools, tower, registry)
+
+# Use guarded tools in your agent
+await guarded[0]("input", agent_ctx=ctx, intent=intent)
+```
+
+## 📜 Development
+
+```bash
+# Install
+make install
+
+# Run Tests
+make test
+
+# Run Examples (non-interactive)
+python examples/mcp_minimal/demo.py
+python examples/strands_minimal/demo.py
+```
+
+## ⚖️ License
+Apache-2.0

{tollgate-1.0.0.dist-info → tollgate-1.0.2.dist-info}/RECORD

@@ -1,4 +1,4 @@
-tollgate/__init__.py,sha256=IFGFmwaby9j_F67ji8z9Zd6fvEcN6O4tFu_Zz5ruoU8,1322
+tollgate/__init__.py,sha256=o-IL79mjKN0M_68YJ6y54aECDhpPQFbRxNNByCpmofI,1322
 tollgate/approvals.py,sha256=82DjgRSugFnJGlH6TNYjGwC5jWAtOmEWV8rJju7G5LI,7083
 tollgate/audit.py,sha256=ugMhuuLoyBNdYD2S_MjGN_ac4nHdtRz15MElqElREIs,1279
 tollgate/exceptions.py,sha256=2yYY3esnHz26dyJlx_Cd_J64ryhexrgc4KliDmiVJSs,882
@@ -14,7 +14,7 @@ tollgate/interceptors/__init__.py,sha256=0c3MYyVKGYrBOZ1mMolgrAowrqZrULzAl0vv-s8
 tollgate/interceptors/base.py,sha256=uJxHzH0eurcGEVknbk1kQkk_2u2qNtnM--ZRCp52Wyo,1390
 tollgate/interceptors/langchain.py,sha256=_8vXCjWkRKeTlxtXm33a67Gf4po9YiHS7faThMJLohc,2963
 tollgate/interceptors/openai.py,sha256=--xSussx3HY5DYBLO4F7_h6_amer47PtpqGyRDUPwGc,2680
-tollgate-1.0.0.dist-info/METADATA,sha256=0QRShziPp_TIZOijHzxCssg5Ef2GOC6qvam6yDZ-fGM,3345
-tollgate-1.0.0.dist-info/WHEEL,sha256=WLgqFyCfm_KASv4WHyYy0P3pM_m7J5L9k2skdKLirC8,87
-tollgate-1.0.0.dist-info/licenses/LICENSE,sha256=psuoW8kuDP96RQsdhzwOqi6fyWv0ct8CR6Jr7He_P_k,10173
-tollgate-1.0.0.dist-info/RECORD,,
+tollgate-1.0.2.dist-info/METADATA,sha256=Q5Njrg5fscAEimYJafqwarIqMv_JFiTZM0ybn4-Udd0,6787
+tollgate-1.0.2.dist-info/WHEEL,sha256=WLgqFyCfm_KASv4WHyYy0P3pM_m7J5L9k2skdKLirC8,87
+tollgate-1.0.2.dist-info/licenses/LICENSE,sha256=EZ9SehMCkcatlggcoT7WV0tx-ku4OsAoQf9LmJZvG1g,10806
+tollgate-1.0.2.dist-info/RECORD,,

{tollgate-1.0.0.dist-info → tollgate-1.0.2.dist-info}/licenses/LICENSE

@@ -1,3 +1,19 @@
+Copyright 2026 Ravi Labs
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+--------------------------------------------------------------------------------
+
                                  Apache License
                            Version 2.0, January 2004
                         http://www.apache.org/licenses/

tollgate-1.0.0.dist-info/METADATA

@@ -1,98 +0,0 @@
-Metadata-Version: 2.4
-Name: tollgate
-Version: 1.0.0
-Summary: Runtime enforcement layer for AI agent tool calls using Identity + Intent + Policy
-Author: Tollgate Maintainers
-License-Expression: Apache-2.0
-License-File: LICENSE
-Keywords: agents,ai,enforcement,llm,policy,security
-Classifier: Development Status :: 3 - Alpha
-Classifier: Intended Audience :: Developers
-Classifier: License :: OSI Approved :: Apache Software License
-Classifier: Programming Language :: Python :: 3
-Classifier: Programming Language :: Python :: 3.10
-Classifier: Programming Language :: Python :: 3.11
-Classifier: Programming Language :: Python :: 3.12
-Requires-Python: >=3.10
-Requires-Dist: pyyaml>=6.0.0
-Provides-Extra: dev
-Requires-Dist: build>=1.0.0; extra == 'dev'
-Requires-Dist: pytest-asyncio>=0.21.0; extra == 'dev'
-Requires-Dist: pytest>=7.0.0; extra == 'dev'
-Requires-Dist: ruff>=0.1.0; extra == 'dev'
-Requires-Dist: twine>=4.0.0; extra == 'dev'
-Description-Content-Type: text/markdown
-
-# tollgate 🚪
-
-Runtime enforcement layer for AI agent tool calls using **Identity + Intent + Policy**.
-
-`tollgate` provides a deterministic safety boundary for AI agents. It ensures every tool call is validated against a policy before execution, with support for async human-in-the-loop approvals, framework interception (MCP, Strands, LangChain, OpenAI), and structured audit logging.
-
-**[🚀 Quickstart Guide](./QUICKSTART.md) | [📊 Integration Comparison](./COMPARISON.md)**
-
-```mermaid
-graph TD
-    A[AI Agent] -->|Tool Call| B(Tollgate Interceptor)
-    B --> C{Policy + Registry}
-    C -->|ALLOW| D[Execute Tool]
-    C -->|DENY| E[Block & Audit]
-    C -->|ASK| F{Human Approval}
-    F -->|Approved| D
-    F -->|Denied| E
-    D --> G[Audit Log]
-    E --> G
-```
-
-## ✨ v1 Core Principles
-
-1. **Interception-First**: Enforcement happens at the tool execution boundary via adapters.
-2. **Safe Defaults**: Any unknown tool effect or resource defaults to **DENY**.
-3. **Trust Model**: Tool metadata is trusted only if it comes from a developer-controlled **Tool Registry**.
-4. **Approval Integrity**: Approvals are bound to a request hash and correlation ID with replay protection.
-5. **Async-First**: Native support for asynchronous agent loops and non-blocking approvals.
-6. **Audit Integrity**: Every decision, approval, and outcome is recorded with full cryptographic context.
-
-## 🚀 v1 Integrations
-
-### MCP (Model Context Protocol)
-Wrap an MCP client to gate all tool calls:
-```python
-from tollgate import ControlTower, ToolRegistry
-from tollgate.integrations.mcp import TollgateMCPClient
-
-registry = ToolRegistry("manifest.yaml")
-tower = ControlTower(...)
-client = TollgateMCPClient(base_client, server_name="my_server", tower=tower, registry=registry)
-
-# Calls are now gated!
-await client.call_tool("read_data", {"id": 1}, agent_ctx=ctx, intent=intent)
-```
-
-### Strands Agents
-Gate Strands tools with minimal friction:
-```python
-from tollgate.integrations.strands import guard_tools
-
-guarded = guard_tools(my_strands_tools, tower, registry)
-
-# Use guarded tools in your agent
-await guarded[0]("input", agent_ctx=ctx, intent=intent)
-```
-
-## 📜 Development
-
-```bash
-# Install
-make install
-
-# Run Tests
-make test
-
-# Run Examples (non-interactive)
-python examples/mcp_minimal/demo.py
-python examples/strands_minimal/demo.py
-```
-
-## ⚖️ License
-Apache-2.0