Open Source SOC 2 HIPAA GDPR

Runtime Security for AI Agents.
Compliance for the Enterprise.

AgentShield monitors every command your AI agents execute. AI Agent Lens gives your organization compliance governance, audit trails, and enforcement — across every developer's machine.

View on GitHub Start Free
Download for macOS (Apple Silicon)
macOS 12+ · Apple Silicon (M1/M2/M3/M4) · ~7 MB
or install via Homebrew (recommended):
$ brew tap AI-AgentLens/tap && brew install agentshield
$ brew tap AI-AgentLens/tap && brew install agentshield
Installs agentshield + agentcompliance via Homebrew Cask
Then run:
$ agentshield setup && agentshield login
Download for Linux (x86_64)
Linux x86_64 / ARM64 · No dependencies
or via script:
$ curl -fsSL https://release.aiagentlens.com/releases/latest/agentshield_latest_linux_amd64.tar.gz | tar xz && sudo mv agentshield /usr/local/bin/
$ agentshield run -- rm -rf /
■ BLOCK rule: ts-block-rm-root Destructive recursive remove at filesystem root
$ agentshield run -- cat ~/.ssh/id_rsa
■ BLOCK rule: sec-block-ssh-private Direct access to private key files blocked
$ agentshield run -- npm install express
■ AUDIT rule: sc-audit-npm-install Package installation logged
$ agentshield run -- ls -la
■ ALLOW Command executed
$ agentshield status
Connected to acme-corp | Mode: managed | Rules: 59 | Uptime: 4h 23m
Products

Two products. One security platform.

Open-source runtime protection on every machine. Enterprise compliance governance in the cloud.

AgentShield Open Source

Install on any developer machine via Homebrew. 6-layer analysis pipeline evaluates every shell command and MCP tool call before execution. Works standalone with your own rules, or connects to AI Agent Lens for managed compliance.

AI Agent Lens SaaS

Organization-wide compliance governance. Admins create orgs, invite members, enable compliance frameworks, push rules to all agents, and get real-time audit trails with rich reports. SOC 2, HIPAA, GDPR, OWASP, ISO 27001, NIST.

Compliance Rules Engine

59+ controls across 7 compliance frameworks. Choose AUDIT (observe), BLOCK (enforce), or ALLOW per control. Free tier gets audit-only visibility. Paid tiers unlock enforcement, custom rules, and exportable reports.

How It Works

From install to enforced in 5 minutes

Install AgentShield

brew install agentshield
One command, every platform.

Connect to your org

agentshield login
Device auth flow links to your AI Agent Lens org.

Rules push automatically

Admins enable SOC 2, HIPAA, or GDPR. Rules sync to every agent in the org.

Monitor & enforce

Every command audited. Violations blocked. Reports generated. Compliance proven.

For Organizations

Hundreds of developers.
One compliance policy.

Sign up your org. Invite your team. Every AgentShield installation syncs the same compliance rules. Every command decision flows back to a central audit trail. Real-time dashboards show who's online, what's blocked, and your compliance posture.

Org management Member invites Role-based access Central audit log Agent fleet monitoring Compliance reports
GET /api/dashboard
{
"org": { "Acme Corp", "team" },
"agents": { 47 online, 3 offline },
"compliance": {
"SOC 2": 100%,
"HIPAA": 100%,
"GDPR": 89%
},
"audit_24h": {
"BLOCK": 23, "AUDIT": 1,247, "ALLOW": 8,914
}
}
Compliance

7 frameworks. 421 threat entries. One click.

Enable compliance frameworks in the dashboard. Rules automatically push to every AgentShield installation in your org. Generate audit-ready reports for your compliance team.

SOC 2 Type II

12 controls — access, credentials, monitoring

HIPAA

10 controls — ePHI safeguards, audit controls

GDPR

9 controls — data protection, breach notification

EU AI Act 2024

8 controls — risk management, human oversight, transparency

OWASP LLM Top 10

10 controls — prompt injection, data disclosure

ISO 27001:2022

17 controls — access, SDLC, data leakage prevention

NIST AI RMF

9 controls — AI risk governance, measurement

Pricing

Start free. Enforce when ready.

Free tier gives full audit visibility. Upgrade when you need enforcement, more frameworks, and compliance reports.

Free
$0 /month
Audit visibility for small teams
  • Up to 5 members
  • Up to 5 agents
  • OWASP LLM Top 10
  • Audit-only mode (observe)
  • 7-day log retention
  • API access
  • No enforcement
  • No custom rules
  • No compliance reports
Get Started
Team
$29 /user/month
Enforcement for growing teams
  • Up to 50 members
  • Up to 100 agents
  • SOC 2 + ISO 27001 + OWASP
  • Full enforcement (BLOCK/ALLOW)
  • 90-day log retention
  • Custom rules
  • Compliance reports (MD/CSV)
  • API access
  • No priority support
Start Team Plan
Enterprise
Custom
Full compliance suite for regulated orgs
  • Unlimited members
  • Unlimited agents
  • All 7 frameworks (incl. EU AI Act, HIPAA)
  • Full enforcement
  • 1-year log retention
  • Custom rules
  • Compliance reports
  • API access
  • Priority support
Contact Sales
Open Source

AgentShield is free.
Forever.

The runtime security engine is open source under Apache 2.0. Install it standalone with your own YAML rules — no SaaS required. The 6-layer analyzer pipeline, policy packs, and IDE integrations are all community-driven.

View on GitHub Policy Guide
6-Layer Pipeline
Regex → Structural → Semantic → Dataflow → Stateful → Guardian
3,700+ Test Cases
99.8% recall across 9 threat kingdoms
MCP Mediation
stdio + HTTP proxy — tool poisoning detection, content scanning
IDE Hooks
Claude Code, Cursor, Windsurf, OpenClaw — native integration
Get Started

Secure your AI agents today.

Install AgentShield in 30 seconds. Sign up for AI Agent Lens to manage compliance across your organization.

Download for macOS GitHub Repo Contact Us
$ brew tap AI-AgentLens/tap && brew install agentshield
Also available via Homebrew · macOS & Linux