Audit tool for AGENTS.md hygiene - reads .agents/workspace.json for richer findings
Security armor for OpenClaw agents — audit, scan, monitor
MCP server for GMC Guard — lets AI agents audit, fix, and monitor Google Merchant Center accounts
Harness engineering tools for AI agents — audit, init, recommend, eval-log
The Lighthouse for AI coding agents. Audit any repo for how ready it is for Claude Code, Cursor, Codex, Copilot, and Gemini CLI. Get a 0–100 score and a fix list in 30 seconds.
TypeScript reference implementation of the guardian-agent spec: a runtime supervisor for tool-using LLM agents (audit log, tool-permission scoping, HITL approval gates, emergency-stop).
Audit token savings when converting HTML to Markdown for AI agents
Common workflow skills for Claude Code sessions: promote changes through the full release cycle, audit Claude Code plugins/skills/agents, audit project standards compliance, analyse projects for impro
Diagnose and fix React codebases for security, performance, correctness, accessibility, bundle-size, and architecture issues
Deterministic codebase intelligence for TypeScript and JavaScript. Quality, risk, architecture, dependencies, duplication, and safe cleanup evidence for humans, CI, and agents. Optional runtime intelligence layer (Fallow Runtime) adds production execution
Audits NPM, Yarn, and PNPM projects in CI environments
VaultGuard MCP Server - Yearn V3 / DeFi vault security and analysis tools for AI coding agents. Audit ERC-4626 vaults, analyze strategy risks, and check PQC readiness.
Verdaccio Middleware plugin to bypass npmjs audit
Maps proxy protocols to `http.Agent` implementations
Given a response from the npm security api, render it into a variety of security reports
Runtime bridge for executing agent-contracts workflows on Agent SDKs
Core modules for audit-resolve.json file and logic of its processing
Runtime governance layer for AI agents — audit trails, policy enforcement, and compliance for MCP tool calls
Reshape into a better npm audit for the community and encourage more people to include security audit into their process.
Generate an HTML report for CODEOWNERS ownership gaps and run in CI or from the CLI to fail when files are not covered.
The missing `yarn audit fix`
Compliance layer for autonomous agents. Audit guard blocks critical actions without on-chain proof. Certify outputs on MultiversX via xProof. 6-second finality.
A chat interface for AI coding agents — control Claude Code, Codex, Gemini CLI, OpenCode from browser and mobile
A wrapper around yarn audit that fixes many issues
Aho agent is responsible for collecting resource usage data of VM instances on \ individual Compute nodes within an Datamart Platform Studio deployment.
Register AI agents, issue scoped tokens, enforce per-tool permissions, and query audit logs via the AgentsID API. Includes MCP middleware for validating tool calls in MCP servers.
A production-grade decision agent that provides deterministic rule evaluation, conflict resolution, and full audit replay capabilities. Framework-agnostic and AI-optional.
AgentRuntime provides a reusable control plane for building tool-using LLM agents with explicit state, policy enforcement, and auditability.
Embeds a FOSM-aware MCP server and ACP agent into your Rails development environment, giving coding agents (Claude Code, Codex, Copilot) runtime intelligence: database queries, logs, code evaluation, and deep introspection of FOSM lifecycle definitions, state machines, transitions, guards, and audit trails. Built on the FOSM (Finite Object State Machine) paradigm — declarative lifecycles for business objects where AI agents operate within bounded, auditable state machines.
KairosChain is a Model Context Protocol (MCP) server for self-managed, evolvable AI skill definitions. It combines Pure Skills design (Ruby DSL/AST) with a private blockchain, enabling AI agents to define, evolve, and audit their own capabilities through self-referential skill management. Supports stdio and Streamable HTTP transport.
pikuri-core is the lean, audit-friendly foundation of the pikuri family: Pikuri::Agent (a thin wrapper around ruby_llm's chat loop) with its Configurator + Extension protocol, the strict Pikuri::Tool framework, a listener surface for rendering / budgets / sub-agents, and four bundled stateless tools (calculator, web search, web scrape, fetch). Extensions (skills, MCP, workspace, coding stack, named-agent personas) live in sibling gems so a privacy-conscious user can install just this core and audit a minimal dependency tree. For the convenience bundle that pulls in everything, see the +pikuri+ metagem.
Rails Active MCP enables secure Rails console access through Model Context Protocol (MCP) for AI agents and development tools like Claude Desktop. Provides safe database querying, model introspection, and code execution with comprehensive safety checks and audit logging. Features include: • Safe Ruby code execution with configurable safety checks • Read-only database query tools with result limiting • Rails model introspection (schema, associations, validations) • Dry-run code analysis for safety validation • Environment-specific configuration presets • Comprehensive audit logging and monitoring • Claude Desktop integration out of the box
MandateClaw-DSL is a Ruby DSL for defining programmatic, signed, and auditable contracts that govern what an AI agent is and isn't allowed to do on behalf of a human or organisation.
MandateClaw-DSL is a Ruby DSL for defining programmatic, signed, and auditable contracts that govern what an AI agent is and isn't allowed to do on behalf of a human or organisation.
## Overview Privileged Access Manager (PAM) is a Google Cloud native, managed solution to secure, manage and audit privileged access while ensuring operational velocity and developer productivity. PAM enables just-in-time, time-bound, approval-based access elevations, and auditing of privileged access elevations and activity. PAM lets you define the rules of who can request access, what they can request access to, and if they should be granted access with or without approvals based on the sensitivity of the access and emergency of the situation. ## Concepts ### Entitlement An entitlement is an eligibility or license that allows specified users (requesters) to request and obtain access to specified resources subject to a set of conditions such as duration, etc. entitlements can be granted to both human and non-human principals. ### Grant A grant is an instance of active usage against the entitlement. A user can place a request for a grant against an entitlement. The request may be forwarded to an approver for their decision. Once approved, the grant is activated, ultimately giving the user access (roles/permissions) on a resource per the criteria specified in entitlement. ### How does PAM work PAM creates and uses a service agent (Google-managed service account) to perform the required IAM policy changes for granting access at a specific resource/access scope. The service agent requires getIAMPolicy and setIAMPolicy permissions at the appropriate (or higher) access scope - Organization/Folder/Project to make policy changes on the resources listed in PAM entitlements. When enabling PAM for a resource scope, the user/ principal performing that action should have the appropriate permissions at that resource scope (resourcemanager.{projects|folders|organizations}.setIamPolicy, resourcemanager.{projects|folders|organizations}.getIamPolicy, and resourcemanager.{projects|folders|organizations}.get) to list and grant the service agent/account the required access to perform IAM policy changes. Note that google-cloud-privileged_access_manager-v1 is a version-specific client library. For most uses, we recommend installing the main client library google-cloud-privileged_access_manager instead. See the readme for more details.
## Overview Privileged Access Manager (PAM) is a Google Cloud native, managed solution to secure, manage and audit privileged access while ensuring operational velocity and developer productivity. PAM enables just-in-time, time-bound, approval-based access elevations, and auditing of privileged access elevations and activity. PAM lets you define the rules of who can request access, what they can request access to, and if they should be granted access with or without approvals based on the sensitivity of the access and emergency of the situation. ## Concepts ### Entitlement An entitlement is an eligibility or license that allows specified users (requesters) to request and obtain access to specified resources subject to a set of conditions such as duration, etc. entitlements can be granted to both human and non-human principals. ### Grant A grant is an instance of active usage against the entitlement. A user can place a request for a grant against an entitlement. The request may be forwarded to an approver for their decision. Once approved, the grant is activated, ultimately giving the user access (roles/permissions) on a resource per the criteria specified in entitlement. ### How does PAM work PAM creates and uses a service agent (Google-managed service account) to perform the required IAM policy changes for granting access at a specific resource/access scope. The service agent requires getIAMPolicy and setIAMPolicy permissions at the appropriate (or higher) access scope - Organization/Folder/Project to make policy changes on the resources listed in PAM entitlements. When enabling PAM for a resource scope, the user/ principal performing that action should have the appropriate permissions at that resource scope (resourcemanager.{projects|folders|organizations}.setIamPolicy, resourcemanager.{projects|folders|organizations}.getIamPolicy, and resourcemanager.{projects|folders|organizations}.get) to list and grant the service agent/account the required access to perform IAM policy changes.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.