feat: initial release of GoPlus AgentGuard v1.0

Author: 0xbeekeeper

.claude-plugin/marketplace.json

@@ -0,0 +1,19 @@
+{
+  "name": "goplus-agentguard",
+  "owner": {
+    "name": "GoPlus Security",
+    "url": "https://github.com/GoPlusSecurity"
+  },
+  "metadata": {
+    "description": "GoPlus AgentGuard — AI agent security framework",
+    "version": "1.0.0"
+  },
+  "plugins": [
+    {
+      "name": "agentguard",
+      "description": "AI agent security guard. Blocks dangerous commands, prevents data leaks, protects secrets.",
+      "source": "./",
+      "strict": true
+    }
+  ]
+}

.claude-plugin/plugin.json

@@ -0,0 +1,13 @@
+{
+  "name": "agentguard",
+  "version": "1.0.0",
+  "description": "GoPlus AgentGuard — AI agent security guard. Blocks dangerous commands, prevents data leaks, protects secrets. 20 detection rules, runtime action evaluation, trust registry.",
+  "author": {
+    "name": "GoPlus Security",
+    "url": "https://github.com/GoPlusSecurity"
+  },
+  "homepage": "https://github.com/GoPlusSecurity/agentguard",
+  "repository": "https://github.com/GoPlusSecurity/agentguard",
+  "license": "MIT",
+  "keywords": ["security", "agent-protection", "web3", "claude-code", "scanner", "trust-registry"]
+}

.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,34 @@
+---
+name: Bug Report
+about: Report a bug in GoPlus AgentGuard
+labels: bug
+---
+
+## Description
+
+A clear description of the bug.
+
+## Steps to Reproduce
+
+1. ...
+2. ...
+3. ...
+
+## Expected Behavior
+
+What should happen.
+
+## Actual Behavior
+
+What actually happens.
+
+## Environment
+
+- Node.js version:
+- OS:
+- AgentGuard version:
+- Platform (Claude Code / Codex CLI / other):
+
+## Additional Context
+
+Any relevant logs, screenshots, or config.

.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,21 @@
+---
+name: Feature Request
+about: Suggest a new feature or detection rule
+labels: enhancement
+---
+
+## Problem
+
+What problem does this feature solve?
+
+## Proposed Solution
+
+How should it work?
+
+## Alternatives Considered
+
+Any alternative approaches you've considered.
+
+## Additional Context
+
+Any relevant examples, links, or references.

.github/pull_request_template.md

@@ -0,0 +1,20 @@
+## Summary
+
+Brief description of the changes.
+
+## Type
+
+- [ ] Bug fix
+- [ ] New feature / detection rule
+- [ ] Refactoring
+- [ ] Documentation
+
+## Testing
+
+- [ ] `npm run build` passes
+- [ ] `npm test` passes (32 tests)
+- [ ] Manually tested the change
+
+## Related Issues
+
+Closes #

.github/workflows/ci.yml

@@ -0,0 +1,35 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+permissions:
+  contents: read
+
+jobs:
+  build-and-test:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        node-version: [18, 20, 22]
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Build
+        run: npm run build
+
+      - name: Test
+        run: npm test

.gitignore

@@ -0,0 +1,17 @@
+node_modules/
+dist/
+*.log
+.env
+.env.local
+.env.*
+.DS_Store
+coverage/
+*.tgz
+*.swp
+*.swo
+.idea/
+.vscode/
+tmp/
+.npmrc
+skills/agentguard/scripts/data/
+skills/agentguard/scripts/package-lock.json

CLAUDE.md

@@ -0,0 +1,37 @@
+# GoPlus AgentGuard
+
+Security framework for AI agents. Provides code scanning, runtime action evaluation, and trust management.
+
+## Skill
+
+This project provides a unified Claude Code skill: `/agentguard`
+
+```
+/agentguard scan <path>          — Scan code for security risks (20 detection rules)
+/agentguard action <description> — Evaluate runtime action safety (allow/deny/confirm)
+/agentguard trust <subcommand>   — Manage skill trust levels (lookup/attest/revoke/list)
+/agentguard report               — View security event audit log
+/agentguard config <level>       — Set protection level (strict/balanced/permissive)
+```
+
+## Project Structure
+
+- `skills/agentguard/` — Claude Code skill definition and supporting files
+- `src/` — TypeScript source (scanner rules, registry, action detectors, MCP server)
+- `data/` — Registry storage (`registry.json`)
+- `dist/` — Compiled JavaScript output
+
+## Setup for Trust & Action CLI
+
+The `trust` and `action` subcommands use CLI scripts that require the agentguard package:
+
+```bash
+cd skills/agentguard/scripts && npm install
+```
+
+For GoPlus API (optional Web3 enhancement for action evaluation):
+
+```bash
+export GOPLUS_API_KEY=your_key
+export GOPLUS_API_SECRET=your_secret
+```

CONTRIBUTING.md

@@ -0,0 +1,62 @@
+# Contributing to GoPlus AgentGuard
+
+Thanks for your interest in contributing to GoPlus AgentGuard! Here's how to get started.
+
+## Development Setup
+
+```bash
+git clone https://github.com/GoPlusSecurity/agentguard.git
+cd agentguard
+npm install
+npm run build
+npm test
+```
+
+## Project Structure
+
+- `src/` — TypeScript source code
+  - `scanner/` — Static analysis engine (20 detection rules)
+  - `action/` — Runtime action evaluator (exec, network, file, web3 detectors)
+  - `registry/` — Trust level management
+  - `policy/` — Default policies and capability presets
+  - `tests/` — Test suite (Node.js built-in test runner)
+- `skills/agentguard/` — Claude Code skill definition (SKILL.md + reference docs)
+- `hooks/` — Plugin hooks configuration for auto-guard
+- `examples/` — Demo projects for testing
+
+## Making Changes
+
+1. Fork the repository
+2. Create a feature branch: `git checkout -b feature/my-change`
+3. Make your changes
+4. Run `npm run build && npm test` to verify
+5. Submit a pull request
+
+## Adding Detection Rules
+
+New scan rules go in `src/scanner/rules/`. Each rule needs:
+- A unique `id` (e.g., `MY_NEW_RULE`)
+- `severity`: `low` | `medium` | `high` | `critical`
+- `pattern`: regex to match against file content
+- `fileTypes`: array of extensions to scan (e.g., `['.js', '.ts']`)
+
+Export the rule from the appropriate category file and add it to the `ALL_RULES` array in `src/scanner/rules/index.ts`.
+
+## Adding Action Detectors
+
+Action detectors go in `src/action/detectors/`. They evaluate runtime actions and return risk assessments with tags.
+
+## Code Style
+
+- TypeScript strict mode
+- Zod for runtime validation
+- Minimal dependencies (currently 5 production deps)
+- Node.js built-in test runner (no test framework needed)
+
+## Reporting Issues
+
+Please open an issue at https://github.com/GoPlusSecurity/agentguard/issues with:
+- What you expected to happen
+- What actually happened
+- Steps to reproduce
+- Your Node.js version and OS

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 GoPlusSecurity
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.