Skip to content

arosstale/pi-sentinel

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
extensions
extensions
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package.json
package.json
 
 

Repository files navigation

@artale/pi-sentinel

Agent security framework for pi. Immutable audit trail, permission policies, destructive command guard, self-modification detection.

Based on 0DIN research: "Context is the control plane." Detects self-modification attacks (Palisade Research).

Install

npm install -g @artale/pi-sentinel

Features

  • 22 destructive command patterns blocked via tool_call hook
  • Immutable audit trail with SHA-256 hashed entries
  • Permission policies — allow/deny rules for paths, tools, commands
  • Self-modification detection — monitors writes to extensions, AGENTS.md, .ssh, .env
  • Session integrity — hash session files, detect reframe attacks

Tools

  • sentinel_policy — View/modify permission policies
  • sentinel_audit — Query audit trail
  • sentinel_scan — Security scan for manipulation patterns

Commands

  • /sentinel status — Current policies and audit stats
  • /sentinel audit [n] — Last N audit entries
  • /sentinel scan — Full security scan

About

Agent security framework — audit trail, destructive command guard, self-modification detection

Topics

security pi ai-safety audit-trail agent-security coding-agent

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages