Analysis updated 2026-05-18
Record verifiable evidence of what an AI agent actually did during a task.
Enforce policy boundaries so an agent cannot bypass rules through prompt injection or chained tool calls.
Route agent frameworks like LangChain, LangGraph, or AutoGen through a governance proxy before they act.
| ardurai/ardur | a-bissell/unleash-lite | abhiinnovates/whatsapp-hr-assistant | |
|---|---|---|---|
| Stars | 1 | 1 | 1 |
| Language | Python | Python | Python |
| Setup difficulty | hard | hard | hard |
| Complexity | 4/5 | 4/5 | 3/5 |
| Audience | developer | researcher | developer |
Figures from each repo's GitHub metadata at analysis time.
Multiple components (Python runtime, Go eBPF/Kubernetes pieces) and some parts are still pre-release.
Ardur is a runtime governance and evidence layer for AI agents. Instead of trusting an agent's own account of what it did, Ardur sits between the agent and the tools or systems it touches, and records verifiable proof of each action it takes. The goal is to let a team check what an agent actually did, not just what it claims to have done in its output. The project is a Python governance runtime paired with Go components for lower level capture and Kubernetes control plane pieces, and it ships adapters for popular agent frameworks including LangChain, LangGraph, and AutoGen, along with a Claude Code plugin and hook. It also includes a personal hub service and a public evidence site built with Hugo, so evidence generated by the system can be published and reviewed. According to its own test suite, the system is built to prove three things: that its governance proxy correctly enforces rules like visibility, message integrity, and rate limits, that it resists attempts to bypass those rules through prompt injection, jailbreaking, or chained tool tricks, and that real AI models routed through it can still build working multi file software while every tool call passes through governance first. The README reports specific passing test counts for these areas as of a recent hardening round in May. The project describes itself as opening in phases, meaning some parts, like fully repeatable proof recordings and production deployment packaging, are still being finished before they are presented as ready for real use. It is aimed at teams building or deploying AI agents who need a way to audit and constrain what those agents are allowed to do, rather than individual hobbyist users.
A runtime layer that records verifiable proof of what AI agents actually do, for teams that need to audit agent behavior.
Mainly Python. The stack also includes Python, Go, Kubernetes.
Use freely for any purpose, including commercial use, as long as you keep the copyright notice.
Setup difficulty is rated hard, with roughly 1h+ to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.