Project AIR · The platform

The platform

Monitor. Enforce. Prove. Account.

Evidence plus enforcement, not evidence alone. The deterministic floor stops an uncovered agent before it acts, and signs the proof that it did.

Monitor

16 detectors

Every agent action is read against all 10 OWASP Top 10 for Agentic Applications signatures, 3 OWASP LLM categories, and 3 AIR-native checks. 14 run offline with zero config.

10 OWASP Agentic + 3 OWASP LLM + 3 AIR-native = 16

ASI04 ships a detector for MCP supply-chain risk; full supply-chain coverage is a commercial add-on.

Enforce

deterministic floor

Structural Verification runs as fixed logic over the causal graph. It returns the same verdict every time and cannot be prompt-injected or talked out of blocking. No agent acts without a human delegation.

SV-SECRET · SV-NET · SV-SCOPE · SV-ENTITY · SV-EXFIL

Prove

signed + anchored

Each action is an AgDR record: BLAKE3 content hash, Ed25519 signature with opt-in ML-DSA-65 post-quantum signing, forward-chained and anchored to public Sigstore Rekor.

Records signed in-process, not reconstructed from logs.

Account

delegated authority

Every agent is bound to a named human through Auth0, Microsoft Entra, Okta, or SPIFFE. This is the system of record for who authorized what, and the proof the authority was never exceeded.

The newest layer, and the one buyers ask for first.

airMIT · OSS

The CLI. Ingest any agent trace, run the 16 detectors, output a signed forensic timeline. Free to download today.

airsdkMIT · OSS

Drop-in instrumentation for LangChain, OpenAI, Anthropic, LlamaIndex, Gemini, and Google ADK. Signs every action at the moment it happens.

FlightDeckENTERPRISE

The hosted console. The deterministic floor enforced live, human-identity binding, and evidence packs. Where security, legal, and compliance work.