Skip to content

Sentinel v3.0.0

Choose a tag to compare

View all tags
@paolovella paolovella released this 14 Feb 22:54
· 1381 commits to main since this release
v3.0.0
9172453

Sentinel v3.0.0 — AI Agent Tool Firewall

Runtime security engine for AI agent tool calls. Intercepts MCP (Model Context Protocol) and function-calling requests, enforces security policies, and maintains tamper-evident audit trails.

Highlights

  • 4,812+ Rust tests + 130 Python + 28 Go + 15 TypeScript SDK tests — zero failures, zero warnings
  • 38-round adversarial security audit — 400+ findings triaged, 310+ fixed
  • <5ms P99 evaluation latency — pre-compiled patterns, zero-allocation hot path
  • 7-framework compliance — EU AI Act, SOC 2, MITRE ATLAS, NIST AI RMF, ISO 27090, CoSAI, Adversa TOP 25, ISO/IEC 42001
  • 6 deployment modes — HTTP API, stdio proxy, HTTP reverse proxy, WebSocket proxy, gRPC proxy, MCP gateway

What's New in v3.0.0

Go SDK — Zero-dependency Go client with full API parity (12 methods), functional options, context.Context on all methods, fail-closed verdict parsing, 28 table-driven tests.

ISO/IEC 42001 Compliance — AI Management System registry with clause coverage mapping, evidence report generation, integrated into 7-framework gap analysis.

HTTP Proxy Benchmarks — 35 Criterion benchmarks for production hot path: origin validation (<440ns), HMAC (<1.6µs), call chain parsing (<3.8µs), privilege escalation (<76ns).

Advanced Authorization (Phase 21) — Cedar-style ABAC engine with forbid-overrides, capability delegation tokens (Ed25519), least-agency tracking, identity federation, continuous authorization. ~80 tests.

Research & Future (Phase 23) — Multimodal injection detection (PNG/JPEG/PDF + steganography), autonomous red teaming (8 mutation types), FIPS 140-3 mode (ECDSA P-256), Sigstore/Rekor integration, stateful session guards. 71 tests.

Developer Experience (Phase 22) — Policy simulator API, CLI simulate command, GitHub Action for CI policy gates, dashboard SVG charts, TypeScript SDK.

Regulatory Compliance (Phase 19) — EU AI Act conformity assessment, SOC 2 evidence reports, CoSAI 38/38 threat coverage, Adversa TOP 25 25/25, OTLP export, Merkle inclusion proofs.

Transport (Phases 17-18) — WebSocket bidirectional proxy, gRPC reverse proxy (tonic), extension registry, transport discovery/negotiation/fallback.

MCP Gateway (Phase 20) — Multi-backend routing, health state machine, session affinity, tool conflict detection.

Security Properties

  • Fail-closed: errors, missing policies → Deny
  • Zero unwrap() in library code
  • Tamper-evident audit (SHA-256 chain + Merkle proofs + Ed25519 checkpoints)
  • OWASP Agentic Top 10 coverage (ASI01-ASI10)
  • 22 fuzz targets

SDKs

SDK Tests Features
Python 130 sync + async, LangChain, LangGraph, parameter redaction
Go 28 stdlib-only, functional options, context.Context
TypeScript 15 fetch-based, zero runtime deps

Installation

# Docker
docker pull ghcr.io/paolovella/sentinel:3.0.0

# From source
cargo build --release

See README.md for full documentation.

Assets 2
Loading