Skip to content
@capiscio

CapiscIO

The Trust Layer of the Agentic AI Ecosystem
README.md

CapiscIO

AI Security for Agentic Systems

Authenticate agents. Block spoofing. Enforce trust levels.

License Twitter Follow LinkedIn

Website · Documentation · Blog

The Problem

AI agents are calling each other and invoking tools—but there's no standard way to verify who is calling what. CapiscIO provides the missing identity layer:

  • Identity — Ed25519 signatures prove which agent made the request
  • Integrity — SHA-256 body hashing detects tampering
  • Freshness — 60-second replay windows reject stale traffic

All with sub-millisecond overhead.

Quick Start

# Python SDK for FastAPI/Flask
pip install capiscio-sdk

# MCP server protection
pip install capiscio-mcp

# CLI for validation
npm install -g capiscio

Then protect your endpoints:

from fastapi import FastAPI
from capiscio_sdk import SimpleGuard

app = FastAPI()
guard = SimpleGuard(app)  # That's it

Repositories

Core

Repository Description
capiscio-sdk-python Python SDK with FastAPI/Flask middleware. Drop-in guard for A2A endpoints.
capiscio-mcp-python MCP SDK wrapper. Adds CapiscIO identity and signing to MCP servers.
capiscio-core High-performance Go enforcement engine. Also available as capiscio/guard Docker image.

Developer Tools

Repository Description
capiscio-node Node CLI (capiscio). Validate agent cards, test endpoints, run security checks in CI.
capiscio-python Python CLI wrapper for Python-centric environments.
validate-a2a GitHub Action for CI/CD. Validates agent cards and enforces compliance.

Examples & Demos

Repository Description
a2a-demos Three production-ready agent demos (LangChain, CrewAI, LangGraph) with CapiscIO security. Great starting point.

Specifications

Repository Description
capiscio-rfcs RFC specifications for trust badges, proof of possession, and protocol extensions.

OWASP Coverage

CapiscIO addresses 6 of the OWASP Top 10 for Agentic Applications:

Risk Coverage
AG01: Agent Identity Spoofing ✅ Direct
AG06: Communication Tampering ✅ Direct
AG07: Replay Attacks ✅ Direct
AG10: Audit & Logging Gaps ✅ Direct
AG02: Tool Misuse ⚡ Partial
AG03: Excessive Agency ⚡ Partial

Trust Levels

Like SSL certificates, but with 5-minute TTLs:

Level Validation Use Case
0 Self-signed Local development
1 Domain verified Production agents
2 Organization verified Enterprise
3 Extended validation High-trust scenarios

Architecture

┌─────────────────────────────────────────────────────────┐
│              CapiscIO Registry (optional)               │
│         Agent Discovery · Trust Badges · Events         │
└─────────────────────────┬───────────────────────────────┘
                          │
        ┌─────────────────┼─────────────────┐
        ▼                 ▼                 ▼
┌──────────────┐   ┌──────────────┐   ┌──────────────┐
│   Agent A    │   │   Agent B    │   │  MCP Server  │
│              │   │              │   │              │
│ capiscio-sdk │──▶│ capiscio-sdk │──▶│ capiscio-mcp │
│  (signing)   │   │ (verifying)  │   │ (verifying)  │
└──────────────┘   └──────────────┘   └──────────────┘

Each agent gets a cryptographic identity (DID) and signs requests. Receiving agents verify signatures before processing.

Contributing

  1. Try the demos — Clone a2a-demos and run three agents in 5 minutes
  2. Read the docsdocs.capisc.io
  3. Open issues — Found an edge case? Let us know
  4. Join the discussionReddit · LinkedIn · X
Open source under Apache 2.0 · Built for the agentic era

Pinned Loading

  1. capiscio-node capiscio-node Public

    The definitive CLI for validating A2A (Agent-to-Agent) protocol agent cards. Validates cryptographic trust, schema compliance, and live endpoint functionality.

    TypeScript 4

  2. capiscio-sdk-python capiscio-sdk-python Public

    Runtime security middleware for A2A (Agent-to-Agent) protocol agents. Provides always-on validation, signature verification, and rate limiting for AI agent interactions.

    Python 1

  3. capiscio-python capiscio-python Public

    The official CapiscIO CLI tool for validating A2A agents. A lightweight Python wrapper that automatically manages the capiscio-core binary.

    Python 1

  4. capiscio-core capiscio-core Public

    The Identity Authority and Trust Gateway for the AI Agent economy. Issues and verifies cryptographic TrustBadges to secure cross-cloud Agent-to-Agent (A2A) communication.

    Go 2

  5. validate-a2a validate-a2a Public

    Official CapiscIO GitHub Action to validate A2A (Agent-to-Agent) Agent Cards. Features schema validation, cryptographic verification, and live endpoint testing with 3D quality scoring.

    TypeScript 1

  6. capiscio-mcp-python capiscio-mcp-python Public

    CapiscIO MCP Guard - Secure your MCP tools with agent-to-server authentication, authorization, and audit logging

    Python

Repositories

Showing 9 of 9 repositories

Top languages

Loading…

Most used topics

Loading…