SHADI

Secure Host for Agentic AI Dynamic Instantiation (SHADI) is a secure runtime for AI agents.

It gives agents a safer place to run by combining identity verification, gated secret access, OS-level sandboxing, encrypted local memory, and secure messaging.

Why SHADI

SHADI is for teams that want agents to work with real tools and real credentials without treating the host machine as a fully trusted environment.

Verify who an agent is before releasing secrets.
Constrain what a process can read, write, execute, and reach on the network.
Keep local memory encrypted at rest.
Connect agents over authenticated SLIM messaging.
Audit changes with snapshots and runtime inspection tools.

What You Get

shadictl: the main CLI for policy, sandbox execution, identity, secrets, memory, and shell control.
shadi_sandbox: OS-enforced sandbox policy.
agent_secrets: keychain-backed secret storage and verification gates.
shadi_memory: SQLCipher-backed local memory.
agent_transport_slim: secure transport and stdio bridge support.
examples/shadi_demo_bot: a Rust demo bot that exercises the main SHADI features, including SLIM messaging.

Install the CLI

On Linux, install the latest released shadictl with:

curl -fsSL https://agntcy.github.io/shadi/install.sh | bash

For pinned versions, custom install paths, and installer environment overrides, see docs/install.md.

On macOS, you can install the latest released shadictl formula with Homebrew:

brew tap agntcy/shadi https://github.com/agntcy/shadi
brew install agntcy/shadi/shadictl

On Windows, once the matching WinGet manifest has landed in the default source, you can install or upgrade shadictl with:

winget install --id AGNTCY.shadictl -e
winget upgrade --id AGNTCY.shadictl -e

The Homebrew formula builds from the published agntcy-shadi-cli release tag. Published agntcy-shadi-cli releases also include prebuilt archives for Linux (x86_64 and aarch64), macOS (arm64 and x86_64), and Windows (x86_64). For unreleased changes or any other host, use the source build flow below.

Quick Start

cargo build --workspace
cargo test --workspace
cargo run -p shadi_demo_bot -- feature-bot

The demo bot runs a compact end-to-end check across secrets, memory, sandboxing, and local SLIM messaging.

Learn More

Start here: docs/getting_started.md
System model: docs/architecture.md
Security model: docs/security.md
CLI reference: docs/cli.md
Sandbox and policy details: docs/sandbox.md
Shell and demo workflows: examples/shell_demo/README.md and examples/shadi_demo_bot/README.md

Contributing

See CONTRIBUTING.md, CODE_OF_CONDUCT.md, and SECURITY.md.

License

See LICENSE.md.

Name		Name	Last commit message	Last commit date
Latest commit History 52 Commits
.github		.github
Formula		Formula
crates		crates
docs		docs
examples		examples
just		just
overrides/partials		overrides/partials
policies/presets		policies/presets
scripts		scripts
tools		tools
.gitignore		.gitignore
.just.env		.just.env
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
CONTRIBUTORS.md		CONTRIBUTORS.md
Cargo.lock		Cargo.lock
Cargo.toml		Cargo.toml
Justfile		Justfile
LICENSE.md		LICENSE.md
MAINTAINERS.md		MAINTAINERS.md
README.md		README.md
SECURITY.md		SECURITY.md
mkdocs.yml		mkdocs.yml
release-plz.toml		release-plz.toml
rust-toolchain.toml		rust-toolchain.toml
sandbox.json		sandbox.json
uv.lock		uv.lock

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

SHADI

Why SHADI

What You Get

Install the CLI

Quick Start

Learn More

Contributing

License

About

Uh oh!

Releases 17

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

SHADI

Why SHADI

What You Get

Install the CLI

Quick Start

Learn More

Contributing

License

About

Resources

License

Code of conduct

Contributing

Security policy

Uh oh!

Stars

Watchers

Forks

Releases 17

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages