# aa-security
Security primitives for Agent Assembly — credential scanning, redaction, and
audit-normalization.
[](https://crates.io/crates/aa-security)
[](https://docs.rs/aa-security)
[](https://github.com/ai-agent-assembly/agent-assembly/blob/master/LICENSE)
Owns the credential-detection scanner, redaction primitives, audit-normalization
types, and the canonical policy AST relied on by the trusted enforcement layers
(`aa-runtime`, `aa-gateway`, `aa-proxy`, and the eBPF loader). Deliberately a
**leaf** crate with no `aa-core` dependency, so the shared policy AST is hosted
here without a dependency cycle.
Part of [Agent Assembly](https://github.com/ai-agent-assembly/agent-assembly) — [documentation](https://docs.agent-assembly.com/) · [monorepo](https://github.com/ai-agent-assembly/agent-assembly).