RepoRadar
Leave a Tip
Item detail

Justin0504/Aegis

Justin0504/Aegis is an MIT-licensed runtime policy engine and 'firewall' for AI agents that intercepts every tool call, classifies it against a policy, and blocks or human-approves risky actions before they execute, with a cryptographic audit trail and a kill switch built in.

Open source Back to radar
Score8.0
Popularity6.8
Riskconditional
TierGold
Score breakdown
Usefulness9.0
Novelty8.0
Momentum7.0
Maturity6.4
Open-source/build8.4
Evidence7.2
Workflow potential9.5
Setup ease6.4

Popularity is tracked separately. Support, ads, sponsorships, and tips never affect these signals.

Why it matters

Useful for platform engineers, security teams, and agent builders who need a defense-in-depth layer that stops an agent from exfiltrating data, deleting files, or calling dangerous tools even when the prompt is hijacked.

Who should use it

platform engineers shipping AI agents that need runtime safety guardrailssecurity teams that want a cryptographic audit trail of agent tool callsagent builders who need human-in-the-loop approvals for risky tool actionsteams that want a kill switch and policy-as-code for an agent fleet

Who should skip it

Skip if the source link, docs, or setup requirements do not match your workflow.

Risk explanation

A policy engine is itself a high-trust component: it intercepts and can block tool calls on behalf of an agent, so review its source, pin a known-good release, and test the policy surface against red-team prompts before pointing it at a production agent; It observes every tool call the agent makes (paths, commands, payloads), so deploy it with the same data-handling controls you would use for any other observability layer that sees production agent traffic.

Evidence links

Closest alternatives / related signals

agent-safetypolicyaudittool-callfirewallopen-source