Skip to content

v3.1.1 — E2E Encrypted Messaging, Security Hardening, Docs Site

Pre-release
Pre-release

Choose a tag to compare

View all tags
@imran-siddique imran-siddique released this 21 Apr 04:54
· 1461 commits to main since this release
v3.1.1
a9b95c4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Agent Governance Toolkit v3.1.1

Public Preview — Microsoft-signed, production-quality. Feedback welcome.

Highlights

E2E Encrypted Agent Messaging (Signal Protocol)

AGT now provides end-to-end encrypted channels between agents using X3DH key agreement + Double Ratchet — the same protocol that secures WhatsApp and Signal. Trust-gated via EncryptedTrustBridge: peers must pass the handshake before encryption begins. 61 tests, zero new dependencies.

Security Hardening

  • Resolved all 106 open code scanning alerts
  • Added BinSkim binary security analysis for .NET SDK
  • 6 Dependabot security vulnerabilities addressed
  • Hardcoded credentials removed

GitHub Pages Docs Site

Full documentation at https://microsoft.github.io/agent-governance-toolkit/ — MkDocs Material, auto-deployed.

Cross-Language SDK Parity

  • .NET: MCP security, kill switch, lifecycle management
  • Go: MCP security, execution rings, lifecycle
  • Rust: Execution rings, lifecycle management

CI/CD

  • Path filters: docs-only PRs drop from ~14 checks to ~4
  • Concurrency groups cancel stale runs
  • ESRP NuGet signing fixed

New Tutorials & Docs

  • Tutorial 32: E2E Encrypted Messaging
  • Tutorial 33: Offline-Verifiable Decision Receipts
  • Customer FAQ (13 Q&As)
  • Chaos testing, ISO 42001, Entra Agent ID bridge tutorials

Install

pip install --upgrade agent-governance-toolkit[full]==3.1.1

No breaking changes. Backwards-compatible with v3.1.0.

Full changelog: CHANGELOG.md

Assets 6
Loading