The Zero-Trust Control Plane for AI Agents
Deploy autonomous AI agents safely with enterprise-grade governance, compliance, and security controls.
UAAL is the missing governance layer for AI agents. It sits between your AI agents and the systems they interact with, enforcing:
β
Zero-Trust Access - Least-privilege policies for every agent action
β
Human-in-the-Loop - Approval workflows for high-risk operations
β
Spend Controls - Set and enforce budget limits per agent/team
β
Complete Audit Trail - Every action logged for compliance
β
Action Replay - Simulate what-if scenarios before execution
β
Instant Rollback - Undo any agent action with one click
β
Multi-Provider - Works with OpenAI, Anthropic, Google, any LLM
AI agents can now act autonomously across your systems - accessing databases, calling APIs, moving money, and making decisions. But:
- π¨ 80% of companies have experienced unintended AI agent actions
- πΈ No visibility into AI spending until the bill arrives
- βοΈ Compliance teams can't audit what agents did
- π Traditional IAM doesn't cover AI agents
UAAL creates a control plane that standardizes, governs, and secures all AI agent actions - giving you:
- Visibility: See every action in real-time
- Control: Enforce policies before actions execute
- Compliance: Complete audit logs for SOC2, HIPAA, GDPR
- Safety: Rollback dangerous actions instantly
βββββββββββββββ βββββββββββββββ βββββββββββββββ
β OpenAI β β Anthropic β β Gemini β
β Agents ββββββΆβ Agents ββββββΆβ Agents β
βββββββββββββββ βββββββββββββββ βββββββββββββββ
β β β
βββββββββββββββββββββΌβββββββββββββββββββββ
βΌ
βββββββββββββββββ
β UAAL Control β
β Plane β
βββββββββββββββββ
β
ββββββββββββββββΌβββββββββββββββ
βΌ βΌ βΌ
[Policy [Approval [Audit
Engine] Workflow] Logger]
β β β
ββββββββββββββββΌβββββββββββββββ
βΌ
βββββββββββββββββ
β Target APIs β
β & Systems β
βββββββββββββββββ
# Clone the repo
git clone https://github.com/LOLA0786/UAAL.git
cd UAAL
# Create virtual environment
python -m venv venv
source venv/bin/activate # On Windows: venv\Scripts\activate
# Install dependencies
pip install -r requirements.txt
# Run the server
uvicorn app_v2:app --reload --port 8000from agent_sdk import send_to_uaal
# Agent wants to send an email
result = send_to_uaal(
adapter="openai_function",
agent_output={
"action": "send_email",
"to": "ceo@company.com",
"subject": "Q4 Results"
},
require_approval=True # High-risk action
)
print(f"Action ID: {result['action_id']}")
print(f"Status: {result['status']}") # "pending_approval"All agent actions are normalized to a standard format:
{
"action_id": "act_abc123",
"agent_id": "gpt-4-analyst",
"action_type": "api_call",
"target": "stripe.com/v1/charges",
"parameters": {...},
"risk_level": "high",
"estimated_cost": 150.00
}Define rules that automatically approve, block, or require human review:
# Block actions over $10k
policy = {
"rule": "block_if",
"condition": "estimated_cost > 10000",
"action": "require_approval"
}Route high-risk actions to the right humans:
# Approve via API
POST /api/v1/actions/{action_id}/approve
{
"approver": "cfo@company.com",
"notes": "Approved for Q4 budget"
}Monitor and limit AI spending in real-time:
# Set budget limits
POST /api/v1/agents/{agent_id}/budget
{
"daily_limit": 500,
"monthly_limit": 10000,
"alert_threshold": 0.8
}Test what-if scenarios before executing:
# Simulate without executing
result = replay_action(
action_id="act_abc123",
simulation_mode=True
)Undo any action with full audit trail:
# Rollback a payment
POST /api/v1/actions/{action_id}/undo
{
"reason": "Incorrect amount",
"undone_by": "ops@company.com"
}- Problem: AI agent moved $50K to wrong account
- Solution: UAAL requires approval for transfers >$1K, maintains audit trail for compliance
- Problem: Need HIPAA audit logs for AI accessing patient data
- Solution: UAAL logs every data access with timestamps, user IDs, and purposes
- Problem: AI agent gave 90% discount to all customers
- Solution: UAAL policy engine blocks discounts >50%, rollback fixed the mistake
- Problem: No visibility into which AI agent is burning through API credits
- Solution: UAAL tracks costs per agent, alerts when budgets are exceeded
UAAL (Universal AI Authorization Layer) ensures that autonomous AI actions are provable, auditable, and tamper-evident.
This is not logging. This is cryptographic decision accountability.
Modern AI agents can:
- change prices
- approve transactions
- trigger emails
- modify systems
Traditional logs can be edited. UAAL produces immutable decision evidence that can be verified independently.
For every AI action:
- Authorization
- Every action is checked against an explicit policy
- Evidence
- A structured decision record is generated
- Immutability
- Evidence is cryptographically hashed
- Independent Verification
- Anyone can verify integrity without trusting UAAL
Verification does not require:
- UAAL runtime
- Source code access
- Secrets
- Database access
pip install uaal-verify
Verify all AI decisions for a day
uaal-verify day YYYY-MM-DD
Verify a single AI decision
uaal-verify record <decision_id>
Verify a date range
uaal-verify range YYYY-MM-DD YYYY-MM-DD
If any evidence was modified, verification fails deterministically.
Regulatory Mapping
EU AI Act (High-Risk Systems)
Article 12: Logging β UAAL evidence
Article 14: Human oversight β uaal-approvals
Article 15: Accuracy & robustness β tamper detection
SOC 2
CC7.2: Change detection β Merkle verification
CC5.3: Control enforcement β policy gating
CC8.1: Auditability β independent verifier
RBI / Financial Regulators
Non-repudiation of automated decisions
Post-facto audit of AI actions
Separation of execution and verification
What UAAL Is NOT
β Not an LLM wrapper
β Not a monitoring dashboard
β Not prompt logging
UAAL is compliance infrastructure for autonomous systems.
Summary (for auditors)
βUAAL allows any third party to independently verify that AI decisions
were authorized, unmodified, and policy-compliant.β
That is the core guarantee.
This doc alone is enough for:
- enterprise security review
- compliance conversations
- regulator discussions
---
# 3οΈβ£ Integration Example (distribution lever)
Weβll do **CrewAI-style** because itβs simple and familiar.
---
## π¦ Example: CrewAI + UAAL (20 lines)
**Where**
- New repo or folder: `uaal-crewai-demo/`
- Or add to `uaal-regulated-ai-demo/`
---
### `crew_agent.py`
```python
from uaal import authorize
from uaal.approvals import require_approval
def pricing_agent(new_price: int):
decision = authorize(
agent="pricing-agent",
action="update_price",
payload={"new_price": new_price}
)
if not decision.allowed:
raise Exception("Blocked by policy")
if new_price > 500:
require_approval(decision)
return "price updated"
What this demonstrates (important)
CrewAI / agents stay unchanged
UAAL is a drop-in gate
Policies are enforced before action
Evidence is generated automatically
Verification is external
This is exactly what enterprises want:
βDonβt rewrite my agents. Just control them.β
## π Integrations
### Supported AI Providers
- β
OpenAI (GPT-4, GPT-3.5)
- β
Anthropic (Claude 3.5 Sonnet, Claude 3 Opus)
- β
Google (Gemini Pro, Gemini Ultra)
- β
Open-source models via API
- π AWS Bedrock
- π Azure OpenAI
### Notification Channels
- β
Webhooks
- π Slack
- π Microsoft Teams
- π Email
- π PagerDuty
---
## π Dashboard
UAAL includes a web dashboard for monitoring and management:
```bash
# Access at http://localhost:8000/dashboard
open http://localhost:8000/dashboardDashboard Features:
- Real-time action feed
- Approval queue
- Spend analytics
- Anomaly alerts
- Audit log viewer
- Every action authenticated and authorized
- Least-privilege access by default
- No ambient authority
- SOC 2 Type II ready (audit logs)
- HIPAA compliant data handling
- GDPR data retention policies
- Complete action replay for investigations
- π SSO/SAML integration
- π Role-Based Access Control (RBAC)
- π Multi-tenancy
- π 99.9% SLA with monitoring
Q1 2025
- β Core action standardization
- β Approval workflows
- β Basic policy engine
- π§ Spend tracking dashboard
- π§ Replay/simulation engine
Q2 2025
- SSO/SAML integration
- Advanced anomaly detection
- Slack/Teams approvals
- Multi-tenancy support
Q3 2025
- SOC 2 Type II certification
- GraphQL API
- Action marketplace
- Advanced analytics
We welcome contributions! See CONTRIBUTING.md for guidelines.
# Install dev dependencies
pip install -r requirements-dev.txt
# Run tests
pytest tests/
# Run linter
black . && flake8 . && mypy .
# Run locally
uvicorn app_v2:app --reloadMIT License - see LICENSE for details
| Feature | UAAL | Astrix ACP | Microsoft Agent 365 | LangChain |
|---|---|---|---|---|
| Zero-Trust | β | β | β | β |
| Multi-Provider | β | β | β | β |
| Spend Controls | β | β | β | β |
| Action Replay | β | β | β | β |
| Open Source | β | β | β | β |
| Approval Flows | β | Limited | β | β |
- Docs: docs.uaal.dev (coming soon)
- Discord: Join our community (coming soon)
- Email: support@uaal.dev
- Issues: GitHub Issues
- Current Version: 0.2.0
- Production Ready: Q2 2025 (estimated)
- Contributors: 1
- Stars: β Give us a star if this interests you!
Built with inspiration from:
- Zero-Trust security principles
- Policy-as-Code movement
- Enterprise IAM patterns
- AI safety research
Made with π‘οΈ by the UAAL Team
Website β’ Twitter β’ LinkedIn
CHANDAN GALANI, AI ENTHUSIAST +91-9326176427