Every enterprise deploying AI agents has the same problem: the agent can call any tool, access any data, and nobody enforces policy before the action executes.
We built an open-source SDK that fixes this. One line of code.
Install
npm install @rends/agent-sdk
Before (no governance)
const agent = createReactAgent({ llm, tools: [search, database, emailer] });
Your agent can search anything, query any table, email anyone. No guardrails.
After (governed)
import { RendsClient } from '@rends/agent-sdk';
import { governTools } from '@rends/agent-sdk/adapters/langchain';
const client = new RendsClient({
apiKey: 'ac_live_...',
orgId: 'your-org-uuid',
agentId: 'your-agent-uuid',
});
const governed = governTools(client, [search, database, emailer]);
const agent = createReactAgent({ llm, tools: governed });
Now every tool call goes through a policy check. ALLOW → runs. BLOCK → never fires.
What happens under the hood
- Agent wants to call
databasetool - SDK intercepts → POST /compliance/check-action
- Policy engine evaluates rules synchronously
- Returns ALLOW, BLOCK, or MODIFY
- Decision logged to SHA-512 hash-chained audit trail
The whole check takes <100ms.
Three enforcement modes
-
enforce — blocked actions throw
GovernanceBlockError - monitor — everything logged, nothing blocked (shadow mode)
- dry-run — test your policies without executing anything
Also works with Python
pip install rends-agent-sdk
CrewAI and AutoGen adapters included.
Links
- GitHub: github.com/eishops23/agent-sdk
- Platform: agentcompliant.ai
MIT licensed. Free forever.
Top comments (0)