Safety and approval controls for AI agents.
The control plane decides when/how an agent may act. The data plane executes side effects.
Watch interactive terminal recording
Most agent stacks have strong execution layers but weak governance. This package provides:
- Deterministic policy enforcement before execution.
- Human/risk approval gates for high-impact actions.
- Budget guardrails and kill-switch semantics.
- Durable event history for audit, replay, and recovery.
Good fit:
- Platform teams running production agent workflows.
- Teams needing explicit human-in-the-loop and policy controls.
- Multi-agent systems requiring auditable decisions.
Less useful:
- One-off demos with no side effects.
- Prompt/tooling projects that do not need governance.
pip install agent-control-planeuv sync --extra dev
make checkUse the runnable sync quickstart:
uv run python examples/quickstart_sync.pyACP-first continuous loop examples:
uv run python examples/single_agent_continuous_loop.py
uv run python examples/multi_agent_continuous_loop.py
uv run python examples/continuous_loop_governance.py
uv run python examples/long_running_autonomous_agent.py --horizon dayOptional SDK integrations (requires provider SDK + API key):
uv run python examples/openai_agents_sdk_integration.py
uv run python examples/claude_agent_sdk_integration.pyFor the narrated terminal walkthrough used in the demo video:
make demo-asciicast-agent- Policy and routing:
PolicyEngine,ProposalRouter - Human approvals:
ApprovalGate, scoped ticket decisions - Budget enforcement:
BudgetTracker - Token governance:
TokenBudgetTracker(identity-scoped token/cost budgets),ModelGovernor(model tier access policy) - Concurrency and kill switches:
ConcurrencyGuard,KillSwitch - Durable events and replay:
EventStore - Session lifecycle and recovery:
SessionManager,CrashRecovery,TimeoutEscalation - Host wrappers:
ControlPlaneFacade(sync),AsyncControlPlaneFacade(async)
- Treat
state_bearing=Trueevents as fail-closed. - Prefer
ScopedModelRegistryfor production embedding. - Use SQLite for local/single-process; use Postgres for multi-worker production.
- Architecture: docs/architecture.md
- Operations runbook: docs/operations_runbook.md
- Continuous operation playbook (1h/day/week/month): docs/continuous_operation_playbook.md
- Security model: docs/security_model.md
- Identity integration: docs/integration_identity.md
- Compatibility posture: docs/compatibility.md
- OpenAPI contract (companion gateway): docs/openapi/control-plane-v1.yml
- Public API exports: src/agent_control_plane/init.py
- Sync quickstart: examples/quickstart_sync.py
- Async quickstart: examples/quickstart.py
- Single-agent continuous loop: examples/single_agent_continuous_loop.py
- Multi-agent continuous loop: examples/multi_agent_continuous_loop.py
- Asciicast sync demo: examples/asciinema_sync_demo.py
- Continuous-loop governance example: examples/continuous_loop_governance.py
- Long-running autonomous example: examples/long_running_autonomous_agent.py
- OpenAI Agents SDK integration: examples/openai_agents_sdk_integration.py
- Claude Agent SDK integration: examples/claude_agent_sdk_integration.py
- Asciicast story runner: scripts/run_asciicast_agent_story.sh
- Audit replay: examples/audit_viewer.py
- Token governance demo: examples/token_governance_demo.py
- MCP gateway demo: examples/mcp_tool_gateway.py
- Companion REST/dashboard starter: examples/companion_gateway
MIT