Điểm nổi bật
- Stars: 0 star luc quet nhung repo duoc update trong cua so 9h-15h va mo ta ro bai toan execution control cho agent.
- Mo hinh chinh: moi request deu thanh JSON co actor, intent, context, constraints va auth, sau do moi duoc allow hoac deny cuc bo.
- Che do van hanh: co observer mode de do hanh vi agent truoc khi bat enforcement that.
- Gia tri thuc te: dinh vi nhu safety engine giua file writes, shell commands va he thong san xuat, khong phu thuoc cloud.
Biểu đồ
Tóm tắt
LetterBlack Sentinel, hay SDK LBE duoc repo mo ta, danh thang vao bai toan dang nong cua agent ops: lam sao chen mot lop policy gate giua y dinh cua agent va hanh dong that tren may. Thay vi tin vao prompt "hay can than", du an nay dong goi request thanh mot cau truc JSON co schema ro, de host xac thuc, kiem tra va quyet dinh cho phep hay tu choi truoc khi shell command hay file write duoc thuc thi.
Repo con rat som va quy mo nho, nhung y tuong cua no cap bac hon mot utility le. Neu agent dang tien tu giai doan "tra loi" sang "lam", thi layer kiem soat thuc thi se tro thanh mot lop ha tang can phai co. Day la ly do du an nay xung dang duoc ghi nhan trong slot opensource, du sao GitHub con thap.
Chi tiết
Trong README, LBE duoc dinh vi la execution-control layer nam giua quyet dinh cua AI agent va hanh dong that. Day la khac biet can ban so voi nhieu guardrail demo chi sanh prompt hoac run regex tren output. O LBE, host nhan mot request JSON day du thong tin: version, request_id, timestamp, actor, intent, context, constraints va auth. Runtime validate cau truc nay, tra ve mot quyet dinh allow hoac deny, roi host moi chon co thuc thi hay khong. Cach lam nay dua bai toan an toan tu cap "nhac nho" len cap "hop dong thuc thi".
Y nghia cua thiet ke nay rat lon voi agent van hanh. Khi agent duoc cap quyen ghi file, chay lenh shell, hay tac dong len project that, moi sai lam khong con la chat output vo hai. No co the tro thanh lenh xoa file, ghi de config, hay chay tac vu pha hoai. LBE co gang giai bai toan do bang mot lop local policy gate, nghia la quyet dinh xay ra tai host, khong can gui cloud, khong can daemon phuc tap. Day la huong di hop voi xu the doanh nghiep, noi governance khong the chi dua vao prompt discipline.
Observer mode la chi tiet dang chu y nhat. Nhieu doi muon bat dau voi agent nhung so enforcement qua som se chan viec ship. Observer mode cho phep ghi lai va validate day du moi request, nhung chua block. Tu do doi ngu co the hoc agent dang dinh lam gi, tan suat ra sao, truoc khi viet chinh sach allow/deny that. O goc adoption, day la quyet dinh san pham thong minh hon viec ep nguoi dung vao che do khoa ngay lap tuc.
Du an cung co loi the truyen thong dat ngu phap cho hanh dong cua agent. Thay vi noi chung chung "agent co quyen dung shell", host co the doc request co intent, payload, workspace, policy_mode, timeout_ms va signature. Day la tien de de sau nay tao audit trail, replay, hay ghim vao SIEM/noi bo compliance. Noi cach khac, repo nay dang goi y mot chuan giao tiep giua agent runtime va execution layer.
Tat nhien, hien tai no van som. So star bang 0, license la NOASSERTION, va tai lieu moi tap trung vao SDK hon he sinh thai adapter. Chua ro no se ho tro bao nhieu host hoac framework, va chinh sach se duoc dinh nghia theo ngon ngu nao. Tuy nhien, nhu cau thi rat that. Khi coding agent va work agent duoc cap quyen ngay cang rong, doanh nghiep se can lop thuc thi co the quan sat va rollback duoc. LetterBlack Sentinel chua chac se la nguoi thang cuoi cung, nhung no dang dung dung diem dau cua mot van de lon.