feat: add 5 standalone one-file runnable framework quickstarts

Copilot · imran-siddique · web-flow · commit 7797f00ed2bd · 2026-03-15T10:48:28.000-07:00
* Initial plan

* feat: add 5 standalone one-file runnable framework quickstarts

Co-authored-by: imran-siddique &lt;45405841+imran-siddique@users.noreply.github.com&gt;

---------

Co-authored-by: copilot-swe-agent[bot] &lt;198982749+Copilot@users.noreply.github.com&gt;
Co-authored-by: imran-siddique &lt;45405841+imran-siddique@users.noreply.github.com&gt;
diff --git a/examples/quickstart/autogen_governed.py b/examples/quickstart/autogen_governed.py
@@ -0,0 +1,76 @@
+# Copyright (c) Microsoft Corporation.
+# Licensed under the MIT License.
+"""
+AutoGen Agents with Trust Verification — Quickstart
+====================================================
+
+pip install ai-agent-compliance[full] pyautogen
+python examples/quickstart/autogen_governed.py
+
+Shows a real policy violation being caught during message routing,
+then a safe message passing verification, with a printed audit trail.
+"""
+
+from __future__ import annotations
+
+import sys
+from datetime import datetime
+from pathlib import Path
+
+_REPO_ROOT = Path(__file__).resolve().parent.parent.parent
+sys.path.insert(0, str(_REPO_ROOT / "packages" / "agent-os" / "src"))
+
+from agent_os.integrations import AutoGenKernel
+from agent_os.integrations.base import GovernancePolicy, PolicyViolationError
+
+# ── 1. Define a governance policy ─────────────────────────────────────────
+policy = GovernancePolicy(
+    name="autogen-demo-policy",
+    blocked_patterns=["api_key=", "password="],  # block credential leaks
+    max_tool_calls=5,
+)
+
+kernel = AutoGenKernel(policy=policy)
+ctx = kernel.create_context("autogen-assistant")
+audit: list[dict] = []
+
+print("=" * 60)
+print("  AutoGen Agents — Governance Quickstart")
+print("=" * 60)
+
+# ── 2. Policy violation: credential leak in message ───────────────────────
+print("\n[1] Agent message containing a credential leak …")
+msg = {"role": "assistant", "content": "Here is your token: api_key=sk-abc123"}
+allowed, reason = kernel.pre_execute(ctx, msg)
+if not allowed:
+    print(f"    🚫 BLOCKED — {reason}")
+    audit.append({"ts": datetime.now().isoformat(), "msg": "api_key leak", "status": "BLOCKED"})
+
+# ── 3. Policy violation: call budget exhausted ────────────────────────────
+print("\n[2] Agent conversation budget exhausted …")
+ctx.call_count = policy.max_tool_calls
+allowed, reason = kernel.pre_execute(ctx, {"role": "assistant", "content": "Let me help."})
+if not allowed:
+    print(f"    🚫 BLOCKED — {reason}")
+    audit.append({"ts": datetime.now().isoformat(), "msg": "budget exceeded", "status": "BLOCKED"})
+ctx.call_count = 0
+
+# ── 4. Compliant message passes ───────────────────────────────────────────
+print("\n[3] Safe agent message passes trust verification …")
+msg = {"role": "assistant", "content": "Here is a summary of the quarterly report."}
+allowed, reason = kernel.pre_execute(ctx, msg)
+if allowed:
+    print("    ✅ ALLOWED — trust verification passed")
+    audit.append({"ts": datetime.now().isoformat(), "msg": "quarterly summary", "status": "ALLOWED"})
+
+# ── 5. Health check ───────────────────────────────────────────────────────
+health = kernel.health_check()
+print(f"\n[4] Kernel health: status={health['status']!r}, "
+      f"backend={health['backend']!r}")
+
+# ── 6. Audit trail ────────────────────────────────────────────────────────
+print("\n── Audit Trail ──────────────────────────────────────────")
+for i, entry in enumerate(audit, 1):
+    print(f"  [{i}] {entry['ts']}  msg={entry['msg']!r}  status={entry['status']}")
+
+print("\n🎉 AutoGen governance demo complete.")
diff --git a/examples/quickstart/crewai_governed.py b/examples/quickstart/crewai_governed.py
@@ -0,0 +1,70 @@
+# Copyright (c) Microsoft Corporation.
+# Licensed under the MIT License.
+"""
+CrewAI Crew with Governance Middleware — Quickstart
+====================================================
+
+pip install ai-agent-compliance[full] crewai
+python examples/quickstart/crewai_governed.py
+
+Shows a real policy violation being caught, then a compliant run succeeding,
+with a printed audit trail.
+"""
+
+from __future__ import annotations
+
+import sys
+from datetime import datetime
+from pathlib import Path
+
+_REPO_ROOT = Path(__file__).resolve().parent.parent.parent
+sys.path.insert(0, str(_REPO_ROOT / "packages" / "agent-os" / "src"))
+
+from agent_os.integrations import CrewAIKernel
+from agent_os.integrations.base import GovernancePolicy, PolicyViolationError
+
+# ── 1. Define a governance policy ─────────────────────────────────────────
+policy = GovernancePolicy(
+    name="crewai-demo-policy",
+    blocked_patterns=["DROP TABLE", "rm -rf"],  # dangerous SQL/shell commands
+    max_tool_calls=3,
+    require_human_approval=False,
+)
+
+kernel = CrewAIKernel(policy=policy)
+ctx = kernel.create_context("crewai-demo-crew")
+audit: list[dict] = []
+
+print("=" * 60)
+print("  CrewAI Crew — Governance Quickstart")
+print("=" * 60)
+
+# ── 2. Policy violation: blocked content pattern ───────────────────────────
+print("\n[1] Crew task with a dangerous SQL injection pattern …")
+allowed, reason = kernel.pre_execute(ctx, "Execute: DROP TABLE users")
+if not allowed:
+    print(f"    🚫 BLOCKED — {reason}")
+    audit.append({"ts": datetime.now().isoformat(), "task": "DROP TABLE users", "status": "BLOCKED"})
+
+# ── 3. Policy violation: call budget exhausted ────────────────────────────
+print("\n[2] Exhausting the call budget …")
+ctx.call_count = policy.max_tool_calls  # simulate budget consumed
+allowed, reason = kernel.pre_execute(ctx, "Summarise quarterly reports")
+if not allowed:
+    print(f"    🚫 BLOCKED — {reason}")
+    audit.append({"ts": datetime.now().isoformat(), "task": "summarise reports", "status": "BLOCKED"})
+ctx.call_count = 0  # reset for next check
+
+# ── 4. Compliant task succeeds ────────────────────────────────────────────
+print("\n[3] Safe crew task passes policy check …")
+allowed, reason = kernel.pre_execute(ctx, "Summarise the quarterly financial reports")
+if allowed:
+    print("    ✅ ALLOWED — policy check passed")
+    audit.append({"ts": datetime.now().isoformat(), "task": "summarise reports", "status": "ALLOWED"})
+
+# ── 5. Audit trail ────────────────────────────────────────────────────────
+print("\n── Audit Trail ──────────────────────────────────────────")
+for i, entry in enumerate(audit, 1):
+    print(f"  [{i}] {entry['ts']}  task={entry['task']!r}  status={entry['status']}")
+
+print("\n🎉 CrewAI governance demo complete.")
diff --git a/examples/quickstart/google_adk_governed.py b/examples/quickstart/google_adk_governed.py
@@ -0,0 +1,82 @@
+# Copyright (c) Microsoft Corporation.
+# Licensed under the MIT License.
+"""
+Google ADK Agent with Policy Gates — Quickstart
+================================================
+
+pip install ai-agent-compliance[full] google-adk
+python examples/quickstart/google_adk_governed.py
+
+Shows real policy violations being caught by ADK governance callbacks,
+then a compliant call succeeding, with a printed audit trail.
+"""
+
+from __future__ import annotations
+
+import sys
+from pathlib import Path
+
+_REPO_ROOT = Path(__file__).resolve().parent.parent.parent
+sys.path.insert(0, str(_REPO_ROOT / "packages" / "agent-os" / "src"))
+
+from agent_os.integrations.google_adk_adapter import GoogleADKKernel
+
+# ── 1. Define a governance policy ─────────────────────────────────────────
+kernel = GoogleADKKernel(
+    max_tool_calls=10,
+    allowed_tools=["search", "summarize"],          # explicit allowlist
+    blocked_tools=["exec_code", "shell"],            # explicit blocklist
+    blocked_patterns=["DROP TABLE", "rm -rf"],       # ban dangerous strings
+    max_budget=5.0,                                  # cost cap per session
+    on_violation=lambda _e: None,                    # collect silently; printed below
+)
+
+print("=" * 60)
+print("  Google ADK Agent — Governance Quickstart")
+print("=" * 60)
+
+# ── 2. Policy violation: blocked tool ────────────────────────────────────
+print("\n[1] ADK callback — blocked tool ('shell') invoked by agent …")
+result = kernel.before_tool_callback(tool_name="shell", tool_args={}, agent_name="adk-agent")
+if result and result.get("error"):
+    print(f"    🚫 BLOCKED — {result['error']}")
+
+# ── 3. Policy violation: tool not on allowlist ────────────────────────────
+print("\n[2] ADK callback — tool not on allowlist ('web_scraper') …")
+result = kernel.before_tool_callback(tool_name="web_scraper", tool_args={}, agent_name="adk-agent")
+if result and result.get("error"):
+    print(f"    🚫 BLOCKED — {result['error']}")
+
+# ── 4. Policy violation: blocked content in tool arguments ────────────────
+print("\n[3] ADK callback — tool argument contains dangerous pattern …")
+result = kernel.before_tool_callback(
+    tool_name="search",
+    tool_args={"query": "DROP TABLE sessions; SELECT 1"},
+    agent_name="adk-agent",
+)
+if result and result.get("error"):
+    print(f"    🚫 BLOCKED — {result['error']}")
+
+# ── 5. Compliant tool call passes all policy gates ────────────────────────
+print("\n[4] ADK callback — allowed tool with safe arguments …")
+result = kernel.before_tool_callback(
+    tool_name="search",
+    tool_args={"query": "AI governance best practices"},
+    agent_name="adk-agent",
+)
+if result is None:
+    print("    ✅ ALLOWED — all policy gates passed")
+
+# ── 6. Audit trail from kernel ────────────────────────────────────────────
+stats = kernel.get_stats()
+violations = kernel.get_violations()
+print(f"\n── Kernel Stats ─────────────────────────────────────────")
+print(f"  violations={stats['violations']}  audit_events={stats['audit_events']}")
+
+print("\n── Audit Trail ──────────────────────────────────────────")
+for i, v in enumerate(violations, 1):
+    print(f"  [{i}] BLOCKED  policy={v.policy_name!r}  reason={v.description!r}")
+for j, entry in enumerate(kernel.get_audit_log()[-1:], len(violations) + 1):
+    print(f"  [{j}] ALLOWED  tool={entry.details.get('tool')!r}  agent={entry.agent_name!r}")
+
+print("\n🎉 Google ADK governance demo complete.")
diff --git a/examples/quickstart/langchain_governed.py b/examples/quickstart/langchain_governed.py
@@ -0,0 +1,71 @@
+# Copyright (c) Microsoft Corporation.
+# Licensed under the MIT License.
+"""
+LangChain Agent with Policy Enforcement — Quickstart
+=====================================================
+
+pip install ai-agent-compliance[full] langchain langchain-openai
+python examples/quickstart/langchain_governed.py
+
+Shows a real policy violation being caught, then a compliant call succeeding,
+with a printed audit trail.
+"""
+
+from __future__ import annotations
+
+import sys
+from datetime import datetime
+from pathlib import Path
+
+# Allow running from the repo root without installing the toolkit.
+_REPO_ROOT = Path(__file__).resolve().parent.parent.parent
+sys.path.insert(0, str(_REPO_ROOT / "packages" / "agent-os" / "src"))
+
+from agent_os.integrations import LangChainKernel
+from agent_os.integrations.base import GovernancePolicy, PolicyViolationError
+
+# ── 1. Define a strict governance policy ──────────────────────────────────
+policy = GovernancePolicy(
+    name="langchain-demo-policy",
+    blocked_patterns=["DROP TABLE", "rm -rf"],  # ban dangerous patterns
+    require_human_approval=False,
+    max_tool_calls=5,
+)
+
+kernel = LangChainKernel(policy=policy)
+ctx = kernel.create_context("langchain-demo-agent")
+audit: list[dict] = []
+
+print("=" * 60)
+print("  LangChain Agent — Governance Quickstart")
+print("=" * 60)
+
+# ── 2. Policy violation: blocked content pattern ──────────────────────────
+print("\n[1] Agent task containing a dangerous SQL pattern …")
+allowed, reason = kernel.pre_execute(ctx, "Execute: DROP TABLE users; SELECT 1")
+if not allowed:
+    print(f"    🚫 BLOCKED — {reason}")
+    audit.append({"ts": datetime.now().isoformat(), "input": "DROP TABLE", "status": "BLOCKED"})
+
+# ── 3. Policy violation: call budget exhausted ────────────────────────────
+print("\n[2] Exceeding the maximum call budget …")
+ctx.call_count = policy.max_tool_calls
+allowed, reason = kernel.pre_execute(ctx, "Summarise the quarterly report")
+if not allowed:
+    print(f"    🚫 BLOCKED — {reason}")
+    audit.append({"ts": datetime.now().isoformat(), "input": "summarise reports", "status": "BLOCKED"})
+ctx.call_count = 0  # reset for the next check
+
+# ── 4. Compliant call succeeds ────────────────────────────────────────────
+print("\n[3] Safe agent input passes policy check …")
+allowed, reason = kernel.pre_execute(ctx, "What is the weather in London today?")
+if allowed:
+    print("    ✅ ALLOWED — policy check passed")
+    audit.append({"ts": datetime.now().isoformat(), "input": "weather query", "status": "ALLOWED"})
+
+# ── 5. Print audit trail ──────────────────────────────────────────────────
+print("\n── Audit Trail ──────────────────────────────────────────")
+for i, entry in enumerate(audit, 1):
+    print(f"  [{i}] {entry['ts']}  input={entry['input']!r}  status={entry['status']}")
+
+print("\n🎉 LangChain governance demo complete.")
diff --git a/examples/quickstart/openai_agents_governed.py b/examples/quickstart/openai_agents_governed.py
@@ -0,0 +1,92 @@
+# Copyright (c) Microsoft Corporation.
+# Licensed under the MIT License.
+"""
+OpenAI Agents SDK with Guardrails — Quickstart
+===============================================
+
+pip install ai-agent-compliance[full] openai-agents
+python examples/quickstart/openai_agents_governed.py
+
+Shows a real policy violation being caught by a tool guard, then a compliant
+tool call succeeding, with a printed audit trail.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import sys
+from datetime import datetime
+from pathlib import Path
+
+_REPO_ROOT = Path(__file__).resolve().parent.parent.parent
+sys.path.insert(0, str(_REPO_ROOT / "packages" / "agent-os" / "src"))
+
+from agent_os.integrations.openai_agents_sdk import (
+    GovernancePolicy,
+    OpenAIAgentsKernel,
+    PolicyViolationError,
+)
+
+# ── 1. Define a strict governance policy ──────────────────────────────────
+policy = GovernancePolicy(
+    allowed_tools=["file_search", "code_interpreter"],  # explicit allowlist
+    blocked_tools=["shell_exec", "network_request"],    # explicit blocklist
+    blocked_patterns=["DROP TABLE", "rm -rf"],           # ban dangerous strings
+    max_tool_calls=10,
+)
+
+kernel = OpenAIAgentsKernel(policy=policy, on_violation=lambda _e: None)
+guard = kernel.create_tool_guard()
+audit: list[dict] = []
+
+print("=" * 60)
+print("  OpenAI Agents SDK — Governance Quickstart")
+print("=" * 60)
+
+
+async def main() -> None:
+    # ── 2. Policy violation: blocked tool (not in allowlist) ──────────────
+    print("\n[1] Guarded tool call to a disallowed function ('web_search') …")
+
+    @guard
+    async def web_search(query: str) -> str:
+        return f"results for {query}"
+
+    try:
+        await web_search("AI governance news")
+    except PolicyViolationError as exc:
+        print(f"    🚫 BLOCKED — {exc}")
+        audit.append({"ts": datetime.now().isoformat(), "tool": "web_search", "status": "BLOCKED"})
+
+    # ── 3. Policy violation: blocked content in argument ──────────────────
+    print("\n[2] Allowed tool called with a dangerous argument …")
+
+    @guard
+    async def code_interpreter(code: str) -> str:
+        return "executed"
+
+    try:
+        await code_interpreter("import os; os.system('rm -rf /')")
+    except PolicyViolationError as exc:
+        print(f"    🚫 BLOCKED — {exc}")
+        audit.append({"ts": datetime.now().isoformat(), "tool": "code_interpreter", "status": "BLOCKED"})
+
+    # ── 4. Compliant tool call succeeds ───────────────────────────────────
+    print("\n[3] Allowed tool called with safe content …")
+
+    @guard
+    async def file_search(query: str) -> list[str]:
+        return ["Q4_report.pdf", "annual_summary.pdf"]
+
+    result = await file_search("Find Q4 financial reports")
+    print(f"    ✅ ALLOWED — guardrails passed, found: {result}")
+    audit.append({"ts": datetime.now().isoformat(), "tool": "file_search", "status": "ALLOWED"})
+
+    # ── 5. Audit trail ────────────────────────────────────────────────────
+    print("\n── Audit Trail ──────────────────────────────────────────")
+    for i, entry in enumerate(audit, 1):
+        print(f"  [{i}] {entry['ts']}  tool={entry['tool']!r}  status={entry['status']}")
+    print("\n🎉 OpenAI Agents SDK governance demo complete.")
+
+
+asyncio.run(main())
