Strips PII from text. SSNs, emails, API keys, phone numbers, addresses, credit cards, IPs. GDPR/HIPAA aligned.

Compresses text into LLM-optimized Reasoning Maps. Save 80%+ on context window token costs.

Detects and breaks recursive agent loops. Bloom-filter detection, paid reset to resume.

Hosts agent-card.json files at permanent public URLs. Discoverable by any A2A agent.

Generates valid A2A agent cards for any website from stable structured sources. Never scrapes.

Converts between JSON, CSV, XML, YAML, Markdown, HTML, and TOML. Nested JSON flattening. Zero external deps.

Scores AI output for likely hallucinated facts. Detects fabricated precision, invented citations, temporal impossibilities, and overconfident absolutes.

Checks if an agent's requested action exceeds its defined scope. Detects privilege escalation and flags dangerous operations.

Deep second-pass scan for sensitive data that slipped through PII scrubbing. Catches JWTs, keys, connection strings, internal IPs, and more.

Scans agent input for prompt injection attacks. Detects instruction overrides, jailbreaks, role-play manipulation, system prompt leakage, and hidden instructions.

Tracks cumulative agent session spend against budget ceilings. Calculates cost from token usage and API calls, returns budget status with recommendations.

Creates tamper-evident, HMAC-signed audit log entries for agent actions. Returns signed receipts the caller stores for compliance.

Verifies trust between agents by checking goal alignment, spend limits, and action scope. Detects goal drift and hijack attempts. OWASP ASI01 coverage.

Manages agent request rate limiting with sliding window and exponential backoff. Prevents rate limit errors for agents calling external APIs.

Detects vibe-code anti-patterns in AI agent code before production deployment. AST-powered analysis for Python, JavaScript, and LLM prompts.