agentfortress 1.0.0

Runtime protection and security monitoring for AI agents β€” The CrowdStrike for AI Agents
Documentation

AgentShield πŸ›‘οΈ

The CrowdStrike for AI Agents β€” Real-time security monitoring, threat detection, and runtime protection for LLM-powered agents.

License: MIT Free & Open Source PyPI - SDK PyPI - CLI

πŸ†“ 100% Free & Open Source β€” All features available to everyone. No paid plans, no paywalls, no credit card required. Ever.

╔══════════════════════════════════════════════════════════════════════════════╗
β•‘                        AGENTSHIELD ARCHITECTURE                             β•‘
╠══════════════════════════════════════════════════════════════════════════════╣
β•‘                                                                              β•‘
β•‘   Your AI Agents                 AgentShield Platform                        β•‘
β•‘   ──────────────                 ───────────────────                         β•‘
β•‘                                                                              β•‘
β•‘  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”                β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”    β•‘
β•‘  β”‚  LangChain  │──┐             β”‚           FastAPI Server             β”‚    β•‘
β•‘  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β”‚             β”‚                                      β”‚    β•‘
β•‘  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”‚  SDK        β”‚  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”‚    β•‘
β•‘  β”‚   CrewAI    │──┼──────────►  β”‚  β”‚ Threat   β”‚  β”‚  Alert Manager  β”‚  β”‚    β•‘
β•‘  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β”‚  (events)   β”‚  β”‚Detection β”‚  β”‚                 β”‚  β”‚    β•‘
β•‘  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”‚             β”‚  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β”‚    β•‘
β•‘  β”‚   AutoGen   │───             β”‚  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”‚    β•‘
β•‘  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β”‚             β”‚  β”‚ Policy   β”‚  β”‚  Anomaly Engine β”‚  β”‚    β•‘
β•‘  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”  β”‚             β”‚  β”‚Enforcer  β”‚  β”‚                 β”‚  β”‚    β•‘
β•‘  β”‚  OpenAI SDK β”‚β”€β”€β”˜             β”‚  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜  β”‚    β•‘
β•‘  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜                β”‚                                      β”‚    β•‘
β•‘                                 β”‚  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”   β”‚    β•‘
β•‘                                 β”‚  β”‚     PostgreSQL / SQLite       β”‚   β”‚    β•‘
β•‘                                 β”‚  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜   β”‚    β•‘
β•‘                                 β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”¬β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜    β•‘
β•‘                                                   β”‚ WebSocket                β•‘
β•‘                                                   β–Ό                          β•‘
β•‘                                 β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”    β•‘
β•‘                                 β”‚       React SOC Dashboard            β”‚    β•‘
β•‘                                 β”‚  β€’ Real-time event feed              β”‚    β•‘
β•‘                                 β”‚  β€’ Alert management                  β”‚    β•‘
β•‘                                 β”‚  β€’ Session replay                    β”‚    β•‘
β•‘                                 β”‚  β€’ Policy editor                     β”‚    β•‘
β•‘                                 β”‚  β€’ Analytics & trends                β”‚    β•‘
β•‘                                 β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜    β•‘
β•‘                                                                              β•‘
β•šβ•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•

What is AgentShield?

AgentShield provides comprehensive security observability and runtime protection for AI agents. As autonomous AI systems gain access to sensitive tools and data, the attack surface grows dramatically. AgentShield acts as a security layer between your agents and the world.

Key Features

  • πŸ” Universal Agent Monitoring β€” Instrument LangChain, CrewAI, AutoGen, OpenAI Agents SDK, or any custom agent with one line of code
  • 🚨 Real-time Threat Detection β€” Detect prompt injection, PII leakage, data exfiltration, and scope creep as they happen
  • πŸ“‹ Policy Enforcement β€” Define security policies that BLOCK, ALERT, LOG, or RATE_LIMIT suspicious behavior
  • 🎬 Session Replay β€” Full timeline replay of every agent action for incident investigation
  • πŸ“Š SOC Dashboard β€” Real-time security operations center with alerts, analytics, and session management
  • πŸ”‘ Kill Switch β€” Instantly terminate any running agent session
  • 🧠 Threat Intelligence β€” Built-in library of 200+ known prompt injection, jailbreak, and exfiltration patterns
  • 🏒 Multi-tenant β€” Organization-based access control with API key management

Quick Start

1. Install the SDK

pip install agentshield-sdk

2. Protect your agent

import agentshield

# Zero-config protection
agentshield.init(api_key="your-api-key", server_url="http://localhost:8000")

# Wrap your agent
protected_agent = agentshield.protect(your_agent)

# Run it β€” AgentShield monitors everything
result = protected_agent.run("Your task here")

3. Start the platform

# Using Docker Compose
cd infra && docker-compose up -d

# Dashboard available at http://localhost:3000
# API available at http://localhost:8000
# API docs at http://localhost:8000/docs

Installation

SDK

pip install agentshield-sdk

Server (Development)

cd server
pip install -r requirements.txt
uvicorn main:app --reload

Dashboard

cd dashboard
npm install
npm run dev

CLI

pip install agentshield-cli
agentshield init

Architecture

Component Technology Purpose
SDK Python Agent instrumentation & local detection
Server FastAPI + SQLAlchemy Event ingestion, threat analysis, API
Dashboard React + Vite + TailwindCSS SOC UI, real-time monitoring
CLI Click Developer tooling
Threat Intel JSON patterns + Python engine Known attack pattern matching
Infra Docker + Kubernetes Deployment

Detection Capabilities

Threat Detection Method Default Action
Prompt Injection Pattern matching + ML scoring ALERT
PII Leakage Regex + NER patterns BLOCK
Data Exfiltration Size analysis + base64 detection BLOCK
Jailbreak Attempts Pattern library matching ALERT
Scope Creep Resource access monitoring ALERT
Anomalous Behavior Statistical baseline deviation ALERT
Rapid API Calls Rate pattern analysis RATE_LIMIT

Documentation

License

MIT β€” see LICENSE