KitForge — enforcing agent scaffold + safety framework — AgentKits<br>Skip to content<br>Why this exists. Most “agent safety” frameworks describe guardrails the code never enforces — an audit verify that returns true, budget counters that never block. KitForge is built the opposite way: the controls are deterministic gates around the model, and the repo ships the tests that prove they stop a real violation. Run python -m pytest tests/ and watch a tampered audit log fail verification and a rejected approval halt the action.

What enforces<br>Authority budgets that block<br>Tool-call, token, and wall-clock counters decrement and raise when exhausted. The agent loop stops — it does not log a warning and continue.

Audit trail that fails on tamper<br>An append-only, HMAC-chained log. verify() recomputes the chain and returns false if any entry was altered, reordered, or deleted. Not a no-op.

Human-in-the-loop that halts<br>A rejected or timed-out approval raises and the guarded action never runs. Approval is required structurally, not requested politely.

Circuit breaker + output validation<br>A breaker opens after repeated tool failures and refuses further calls; tool output is validated against its declared schema before it touches agent state.

Download KitForge (.zip)Python 3.10+ · MIT · ~30 KB<br>Design one in your browser<br>Sketch an agent here. You get a valid blueprint.json to save and feed to KitForge locally — and a one-click check of the design in the Compliance Scanner. The code itself is generated on your machine by the Python CLI; this builds the blueprint it runs on.<br>Agent name<br>What it does<br>Tools tick the ones that should need human approvalapproval<br>+ Add tool<br>Tool-call budget<br>Audit levelfull_crypto (HMAC-chained)basicnone

Build blueprintAdd a name and at least one tool to build.

Quick start<br>unzip kitforge.zip && cd kitforge<br>pip install pydantic # the only runtime dep<br>python -m pytest tests/ -q # 13 enforcement tests pass

# generate the demo agent (Quarterly Earnings Analyzer)<br>python -m kitforge demo -o ./my-agent<br>cd my-agent && export KITFORGE_AUDIT_KEY=$(openssl rand -hex 32)<br>python main.py # runs the loop; HITL gate stops 'publish' until you approveHonest scope<br>Python + LangGraph patterns only. The generated graph runner is intentionally minimal; swap in langgraph.StateGraph for production — the safety wiring is identical.<br>Generated tools are [MOCK] stubs. Wiring them to your real systems (and your real approver — Slack, email, web) is the last mile, and it's yours.<br>The framework enforces the controls it ships; it is not a substitute for a security review of your specific deployment.<br>Part of the AgentKits governance tools. See also the Compliance Scanner and Risk Assessment.