explaingit

ardurai/ardur

Analysis updated 2026-05-18

1PythonAudience · developerComplexity · 4/5LicenseSetup · hard

TLDR

A runtime layer that records verifiable proof of what AI agents actually do, for teams that need to audit agent behavior.

Mindmap

mindmap
  root((Ardur))
    What it does
      Governance layer
      Verifiable evidence
      Policy enforcement
    Tech stack
      Python
      Go
      Kubernetes
      LangChain
    Use cases
      Audit agent actions
      Block policy bypass
      Route agent frameworks
    Audience
      AI teams
      Platform engineers

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Record verifiable evidence of what an AI agent actually did during a task.

USE CASE 2

Enforce policy boundaries so an agent cannot bypass rules through prompt injection or chained tool calls.

USE CASE 3

Route agent frameworks like LangChain, LangGraph, or AutoGen through a governance proxy before they act.

What is it built with?

PythonGoKubernetesLangChainLangGraph

How does it compare?

ardurai/ardura-bissell/unleash-liteabhiinnovates/whatsapp-hr-assistant
Stars111
LanguagePythonPythonPython
Setup difficultyhardhardhard
Complexity4/54/53/5
Audiencedeveloperresearcherdeveloper

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · hard Time to first run · 1h+

Multiple components (Python runtime, Go eBPF/Kubernetes pieces) and some parts are still pre-release.

Use freely for any purpose, including commercial use, as long as you keep the copyright notice.

In plain English

Ardur is a runtime governance and evidence layer for AI agents. Instead of trusting an agent's own account of what it did, Ardur sits between the agent and the tools or systems it touches, and records verifiable proof of each action it takes. The goal is to let a team check what an agent actually did, not just what it claims to have done in its output. The project is a Python governance runtime paired with Go components for lower level capture and Kubernetes control plane pieces, and it ships adapters for popular agent frameworks including LangChain, LangGraph, and AutoGen, along with a Claude Code plugin and hook. It also includes a personal hub service and a public evidence site built with Hugo, so evidence generated by the system can be published and reviewed. According to its own test suite, the system is built to prove three things: that its governance proxy correctly enforces rules like visibility, message integrity, and rate limits, that it resists attempts to bypass those rules through prompt injection, jailbreaking, or chained tool tricks, and that real AI models routed through it can still build working multi file software while every tool call passes through governance first. The README reports specific passing test counts for these areas as of a recent hardening round in May. The project describes itself as opening in phases, meaning some parts, like fully repeatable proof recordings and production deployment packaging, are still being finished before they are presented as ready for real use. It is aimed at teams building or deploying AI agents who need a way to audit and constrain what those agents are allowed to do, rather than individual hobbyist users.

Copy-paste prompts

Prompt 1
Explain how Ardur's governance proxy verifies what an AI agent actually did.
Prompt 2
Show me how to wire a LangChain agent through Ardur's runtime governance layer.
Prompt 3
What does Ardur's test suite prove about resilience to prompt injection and jailbreaking?
Prompt 4
Help me set up the Ardur Claude Code plugin and hook for my project.

Frequently asked questions

What is ardur?

A runtime layer that records verifiable proof of what AI agents actually do, for teams that need to audit agent behavior.

What language is ardur written in?

Mainly Python. The stack also includes Python, Go, Kubernetes.

What license does ardur use?

Use freely for any purpose, including commercial use, as long as you keep the copyright notice.

How hard is ardur to set up?

Setup difficulty is rated hard, with roughly 1h+ to a first successful run.

Who is ardur for?

Mainly developer.

Open on GitHub → Explain another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.