Releases: CharanBharathula/agentnotary
v0.4.0 — doctor, score, drift, compare, audit + GitHub Action
The differentiation release. Five new commands turn AgentNotary into a lifecycle health system.
✨ Five new commands
agentnotary doctor— one-command health scan with actionable punch-list (brew doctorfor AI agents)agentnotary score [--badge|--json]— single 0–100 governance score across 7 dimensions + shareable shields.io badge URLagentnotary drift— re-probe the model, quantify drift since last seal. First OSS tool to detect silent provider weight updates.agentnotary compare <a.lock> <b.lock>— high-level lockfile diff with section-by-section state (model, prompts, tools, deps)agentnotary audit <session-id>— forensic session security audit (PII detection, repeat-loops, cost spikes, guardrail events)
🎯 GitHub Action
Drop-in CI step:
- uses: CharanBharathula/agentnotary@v0.4.0
with:
manifest: agentnotary.yaml
min-score: "70"
fail-on-drift: "true"Runs seal --verify, attack --dry-run, compliance --check, score. Posts a summary to the PR.
🪪 README badge
agentnotary score --badge
# → https://img.shields.io/badge/agentnotary-87/100-brightgreenAdd to your README. Every project that adopts the badge drives discovery back to AgentNotary.
📊 Quality
- 202 tests passing (up from 169 in v0.3 — +33 new)
- Ruff clean
- CI green across Python 3.9 / 3.10 / 3.11 / 3.12
- Aligned with OWASP Agentic AI Top 10 (Dec 2025)
📦 Install
pip install agentnotary==0.4.0Full changelog: CHANGELOG.md.
v0.3.0 — Notarize, govern, and audit AI agents
The launch release of AgentNotary (renamed from agentbox).
✨ Four new commands
agentnotary bom— AI Bill of Materials in CycloneDX 1.6 + SPDX 2.3.agentnotary bench— cross-model Pareto chart of cost vs accuracy.agentnotary attack— adversarial fuzzer with OWASP LLM Top 10 corpus.agentnotary replay --rewind— time-travel debugging; fork a session at any step, edit the prompt, simulate forward.
🪪 Carrying over from v0.2 (the governance loop)
agentnotary seal— Cargo.lock for AI agents.agentnotary guard run— runtime enforcement at the API boundary.agentnotary compliance --standard eu-ai-act— Annex IV documentation.
🔄 Backwards compatibility
agentbox.yamlcontinues to parse (with a one-line stderr deprecation warning).apiVersion: agentbox/v0.2still accepted..agentbox/state directories still respected.- Migration: rename → reinstall → done.
📊 Quality
- 169 tests passing (up from 121 in v0.2).
- Ruff clean.
- CI matrix: Python 3.9 / 3.10 / 3.11 / 3.12.
📦 Install
pip install agentnotary==0.3.0Full changelog: CHANGELOG.md.
v0.2.0 — declare → seal → enforce → document (released as agentbox)
Historical release. This version was published under the project's prior name
agentbox. The package was renamed toagentnotaryin v0.3.0; see migration notes.
The differentiation release. Three new commands turn the project from a metadata format into a complete governance loop.
✨ New (in v0.2.0)
seal— Cargo.lock for AI agents. Cryptographically hashes manifest, prompts, tool source, dependencies. Optional--probedetects silent provider weight updates.guard run -- <cmd>— local HTTP proxy that actively blocks runaway agents at the API boundary. Framework-agnostic. Provider-shaped 403s.compliance --standard eu-ai-act— auto-generates EU AI Act Annex IV technical documentation in Markdown + JSON. Deterministic risk classifier with cited rules. CI mode with--check.
📐 Manifest schema v0.2
apiVersion: agentbox/v0.2 (now also accepted as agentnotary/v0.2) adds typed model, guardrails, entry_point, and compliance blocks. All v0.1 manifests still parse cleanly.
✅ Quality at the time of release
- 121 tests passing (up from 63 in v0.1)
- Ruff clean
- CI: matrix across Python 3.9 / 3.10 / 3.11 / 3.12
📦 Install (legacy)
pip install agentbox==0.2.0For the current release, see v0.3.0:
pip install agentnotaryv0.1.0 — initial release (as agentbox)
Initial public release of the project under its prior name agentbox. Manifest format, evals, sessions, version tagging, codebase scanner. The package was renamed to agentnotary in v0.3.0; see migration notes.