GitHub StarsApache 2.0 · Open Source

The open enforcement foundation.

EnforceCore is the open-source framework that provides kernel-level enforcement primitives for autonomous AI agents. Policy-as-code, cryptographic sandboxing, and Merkle audit trails — the foundation that AKIOS and any agentic system can build on.
View on GitHub
pip install enforcecore
from enforcecore import PolicyEngine, Sandbox

# Load policy
policy = PolicyEngine.from_yaml("policy.yaml")

# Wrap any agent
safe = Sandbox(
    agent=my_agent,
    policy=policy,
    allow_network=["api.openai.com"],
    allow_fs=["/tmp/workspace"],
    max_cost_usd=5.00,
    redact_pii=True
)

# Run — enforced
result = safe.run("Analyze Q3 earnings")
Product boundary

One commercial product. Two open-source foundations.

AKIOS Pro is the product this website sells. RADAR and FLUX are Pro capabilities. AKIOS OSS and EnforceCore stay visible as separate open-source proof, not as the AKIOS Pro free tier.

Commercial

AKIOS Pro

Self-hosted compliance evidence platform for regulated enterprises. It monitors existing stacks and produces governance records.

Capabilities

RADAR and FLUX

RADAR captures trace evidence. FLUX adds operational-risk, cost, and reliability signals inside the AKIOS Pro workflow.

Open source

AKIOS OSS

Separate open-source execution cage for AI agents. It is part of the AKIOUD AI family, but it is not AKIOS Pro Free.

Open source

EnforceCore

Apache 2.0 enforcement primitives for teams that want low-level policy and sandboxing building blocks.

Technical Specifications

Built for production workloads.

Sub-millisecond policy evaluation. Kernel-level isolation. Zero runtime dependencies.

Policy latency
< 0.5 ms
Language
Rust core
SDK
Python
Policy format
YAML / Rego
Audit format
Merkle / JSON
Sandbox
Kernel-level
License
Apache 2.0
Deployment
Library / Sidecar
What is EnforceCore?

The enforcement layer that any agent system can use.

EnforceCore is the open-source foundation that keeps enforcement primitives visible: policy evaluation, sandboxing, and audit trail generation. Licensed under Apache 2.0, it is useful directly for technical evaluation while AKIOS Pro remains the commercial self-hosted compliance platform.
License
Apache 2.0
Language
Rust + Python SDK
Overhead
< 0.5 ms
Core capabilities

Enforcement Primitives

Six foundational primitives that make policy violations structurally impossible at the kernel level.

Policy-as-Code Engine

Define agent constraints in YAML or Rego. Policies are compiled to WASM for sub-millisecond evaluation. Version-controlled and cryptographically signed.

Kernel Sandboxing

Isolate agent execution at the syscall level. Control network, filesystem, and process access with deterministic deny-by-default policies.

Merkle Audit Trails

Every agent action is cryptographically logged in a Merkle tree. Immutable, tamper-evident, and exportable for compliance audits.

PII Redaction Engine

Real-time entity detection and redaction inline before data exits the sandbox. Covers PCI, HIPAA, and GDPR entity classes.

Cost Kill-Switch

Hard limits on token usage and API spend. Circuit breakers trigger automatically when budgets are exceeded — no runaway costs.

Tool Permission Framework

Granular allow/deny rules for every tool an agent can invoke. Prevent unauthorized API calls, file writes, and network access at the framework level.
Drop-in Integration

Three lines to enforce.

Import. Wrap. Run. EnforceCore wraps any agent in a policy-enforced sandbox with a single function call. No refactoring, no SDK lock-in.
Zero Lock-in

Works with LangChain, AutoGPT, CrewAI, or any custom orchestrator. No SDK required.

Policy-as-Code

Define constraints in YAML or Rego. Version-control policies like application code.

Audit-Ready

Every decision is logged to a Merkle tree. Export JSON for compliance audits.

< 0.5 ms

Policies compile to WASM. Evaluation overhead is sub-millisecond at p99.

# policy.yaml
version: "1.0"
rules:
  - name: block-financial-advice
    match:
      output: "regex:you should (buy|sell|invest)"
    action: deny
    severity: critical

  - name: pii-redaction
    match:
      output: "entity:PERSON|SSN|CREDIT_CARD"
    action: redact

  - name: cost-limit
    match:
      token_spend: "> 10000"
    action: kill
    notify: ops@company.com
How it fits together

Open foundation. Commercial compliance platform.

EnforceCore and AKIOS Core provide transparent foundations. AKIOS Pro is the self-hosted enterprise compliance platform for monitoring, governance, and evidence generation.

Foundation

EnforceCore

Open enforcement primitives (Apache 2.0). Use standalone or as the base for AKIOS.

Production

AKIOS Core

Complete runtime (GPL-3.0-only). Adds governance, RADAR observability, FLUX cost control.

Enterprise

AKIOS Pro

Self-hosted compliance platform. RADAR monitoring, FLUX signals, governance checks, team RBAC, SIEM events, and audit evidence exports.

We're opening EnforceCore to the community. If you're building agentic systems and need kernel-level enforcement, contribute or grab a design partner slot.

Design Partner Slot

Open Source · Apache 2.0

Design Partner Program

Frequently Asked Questions

Need enterprise compliance evidence?

Use EnforceCore when you need open enforcement primitives. Use AKIOS Pro when security, legal, and compliance teams need self-hosted monitoring, evidence packs, SIEM events, review workflows, and procurement support.
Request AKIOS Pro TrialView AKIOS OSS
Compare rolesEnforceCore
Free (Apache 2.0)
AKIOS OSS
Free (open source)
AKIOS Pro
Custom self-hosted
Open-source foundations
Policy-as-code primitivesEvidence integration
Execution sandboxing
Local audit trail primitiveEvidence record
Standalone open-source use
Commercial compliance
RADAR trace evidenceDeveloper-level
FLUX operational-risk signalsDeveloper-level
Governance workflows
Evidence packs
Enterprise adoption
Team RBAC
SIEM events
Custom self-hosted licensing
SSO / SAML / VPC supportEnterprise
Open-source foundations
Policy-as-code primitives
Execution sandboxing
Local audit trail primitive
Standalone open-source use
Commercial compliance
RADAR trace evidence
FLUX operational-risk signals
Governance workflows
Evidence packs
Enterprise adoption
Team RBAC
SIEM events
Custom self-hosted licensing
SSO / SAML / VPC support
Open-source foundations
Policy-as-code primitives
Execution sandboxing
Local audit trail primitive
Standalone open-source use
Commercial compliance
RADAR trace evidenceDeveloper-level
FLUX operational-risk signalsDeveloper-level
Governance workflows
Evidence packs
Enterprise adoption
Team RBAC
SIEM events
Custom self-hosted licensing
SSO / SAML / VPC support
Open-source foundations
Policy-as-code primitivesEvidence integration
Execution sandboxing
Local audit trail primitiveEvidence record
Standalone open-source use
Commercial compliance
RADAR trace evidence
FLUX operational-risk signals
Governance workflows
Evidence packs
Enterprise adoption
Team RBAC
SIEM events
Custom self-hosted licensing
SSO / SAML / VPC supportEnterprise

Start enforcing.

Use EnforceCore for open enforcement primitives. Evaluate AKIOS Pro when your organization needs self-hosted compliance evidence.
View on GitHubRead the Docs