Skip to content
/ accountabilitylayer Public

The Accountability Layer is an open‑source tool designed to ensure transparency and traceability in AI agent decision-making.

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

fraware/accountabilitylayer

BranchesTags

Repository files navigation

Accountability Layer

The Accountability Layer is an open‑source tool designed to ensure transparency and traceability in AI agent decision-making. It achieves this by capturing detailed logs of each decision step, representing the entire chain-of-work, and providing mechanisms for anomaly detection, verification, and review. The system offers both a robust backend API and a dynamic, real‑time frontend dashboard for monitoring and analysis.

Table of Contents

Features

  • Detailed Logging & Audit Trail:
    Capture every decision step with inputs, outputs, timestamps, metadata, and the underlying reasoning.
  • Chain-of-Work Representation:
    Convert ephemeral chains-of-thought into a persistent, structured record.
  • Advanced Anomaly Detection:
    Utilize heuristic and statistical methods to flag irregular log entries, with integrated notifications for anomalies.
  • JWT-Based Authentication & Role-Based Access Control:
    Secure endpoints using JWT tokens with support for roles (auditor, admin, agent) to control sensitive operations.
  • Comprehensive RESTful API:
    Endpoints for creating logs, updating review statuses, searching logs with advanced filters, and summarizing log statistics.
  • Real-Time Dashboard:
    A React-based UI enhanced with WebSocket (Socket.IO) support for instant updates, advanced filtering, and detailed log viewing.
  • Developer & Community Support:
    Extensive documentation including an OpenAPI specification, developer guides, and clear contribution guidelines.

Architecture

The project consists of two main components:

  • Backend:
    Built with Node.js, Express, and MongoDB, the backend exposes versioned API endpoints (under /api/v1) for log management, authentication, and anomaly detection. It is containerized using Docker and secured with JWT-based authentication.
  • Frontend:
    Developed using React and Material‑UI, the frontend provides a rich, interactive dashboard for viewing and filtering logs. It supports real‑time updates via Socket.IO, advanced filtering options, and role‑based views (auditor/admin versus agent).

Repository Structure

accountability-layer/
├── backend/
│   ├── src/
│   │   ├── controllers/        # API endpoint handlers (logs, authentication)
│   │   ├── models/             # Data models and Mongoose schemas
│   │   ├── routes/             # API route definitions (versioned under /api/v1)
│   │   ├── services/           # Business logic (logging, anomaly detection, notifications)
│   │   ├── middleware/         # JWT authentication, role-based authorization, error handling, API usage logging
│   │   └── app.js              # Entry point for the backend API server
│   ├── tests/                  # Unit, integration, and security tests for backend endpoints
│   ├── Dockerfile              # Containerization configuration for the backend service
│   └── package.json            # Backend dependencies and scripts
├── frontend/
│   ├── public/
│   │   └── index.html          # HTML entry point for the React application
│   ├── src/
│   │   ├── components/         # UI components (Login, LogViewer, LogFilter, LogDetailModal, Notification, UserProfile)
│   │   ├── services/           # API configuration (Axios setup, Socket.IO integration)
│   │   ├── App.jsx             # Main React component
│   │   └── index.js            # React application entry point
│   ├── tests/                  # Unit tests and Cypress end-to-end tests for frontend components
│   ├── Dockerfile              # Containerization configuration for the frontend service
│   └── package.json            # Frontend dependencies and scripts
├── docs/
│   ├── api-spec.yaml           # OpenAPI (Swagger) specification for the backend API
│   ├── DEVELOPER_GUIDE.md      # Detailed guide for developers and contributors
│   └── README.md               # Project documentation and setup instructions
├── docker-compose.yml          # Multi-container orchestration configuration
├── CONTRIBUTING.md             # Contribution guidelines for the project
├── CODE_OF_CONDUCT.md          # Code of conduct for contributors
└── README.md                   # This file

Setup & Installation

Backend Setup

  1. Prerequisites:
  • Node.js (v14 or later)
  • MongoDB (local instance or via Docker)
  • Docker (optional, for containerized deployment)
  1. Installation:
cd backend
npm install
  1. Environment Variables: Create a .env file in the backend directory with the following content:
PORT=5000
MONGODB_URI=mongodb://localhost:27017/accountability
JWT_SECRET=your_secret_key
JWT_EXPIRES_IN=1h
API_ENV=development
  1. Running the Server:
npm run dev

The backend server will run on the specified port (default is 5000).

  1. API Documentation:

The OpenAPI spec is available at docs/api-spec.yaml. View live API documentation using Swagger UI or ReDoc by pointing to the spec file.

Frontend Setup

  1. Prerequisites:
  • .js (v14 or later)
  1. Installation:
cd frontend
npm install
  1. Running the Application:
npm start

The application will run on http://localhost:3000.

  1. Configuration: If needed, create a .env file in the frontend directory to configure API endpoints and other settings.

API Documentation

  • The complete API specification is maintained in docs/api-spec.yaml.
  • This specification includes details for:
    • Authentication: /auth/login
    • Log Creation: /logs
    • Log Retrieval & Updates: /logs/{agent_id}, /logs/{agent_id}/{step_id}, and /logs/search
    • Log Summary: /logs/summary/{agent_id}
  • Security is implemented via JWT Bearer tokens.

Testing

Backend Tests

  • Run Unit and Integration Tests:
  cd backend
  npm test
  • Security and Anomaly Detection Tests: Additional test suites validate input handling, rate limiting, and anomaly detection logic.

Frontend Tests

  • Run Unit Tests:
  cd frontend
  npm test
  • End-to-End Tests (Cypress):
  npx cypress open

Use Cypress to simulate complete user flows including login, dashboard interactions, filtering, and detailed log viewing.

CI/CD Pipeline

  • GitHub Actions: The CI/CD configuration is defined in .github/workflows/ci.yml. It performs the following:

    • Runs backend tests
    • Runs frontend tests
    • Executes Cypress end-to-end tests
    • Performs linting for code quality

  • Deployment Automation: Docker Compose is used for multi-environment deployments (staging, production). For production scalability, consider container orchestration with Kubernetes.

Developer Onboarding & Contribution

  • Developer Guide: Refer to docs/DEVELOPER_GUIDE.md for comprehensive setup instructions, contribution workflows, and deployment guidelines.

  • Contribution Guidelines: See CONTRIBUTING.md for coding standards, branch management, and pull request protocols.

Environment Configuration & Secrets Management

  • Local Development: Use .env files in the backend and frontend directories to manage configuration and secrets.

  • Production: Adopt secure secrets management solutions (e.g., AWS Secrets Manager, HashiCorp Vault) to handle sensitive data in production environments.

License

This project is licensed under the MIT License.

About

The Accountability Layer is an open‑source tool designed to ensure transparency and traceability in AI agent decision-making.

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages