Skip to content
@opena2a-org

opena2a.org

Open-source security for AI agents
README.md

OpenA2A

Open-source security for AI agents

Website · Discord · Email

OpenA2A builds open-source tools for securing AI agents in production. AI agents are the fastest-growing category of non-human identities, and most organizations have no governance, no visibility, and no security controls around them. We're building the infrastructure to fix that -- identity management, runtime protection, security scanning, compliance benchmarks, and credential management for AI developer tools. Everything is Apache-2.0, self-hostable, and designed to work independently or together.

Projects

Project Description Install
AIM Identity & access management for AI agents pip install aim-sdk
HackMyAgent Security scanner -- 147 checks, attack mode, auto-fix npx hackmyagent secure
OASB Open Agent Security Benchmark -- 182 attack scenarios npm install @opena2a/oasb
ARP Agent Runtime Protection -- process, network, filesystem monitoring npm install @opena2a/arp
Secretless AI Credential management for AI coding tools -- Claude Code, Cursor, Windsurf npx secretless-ai init
DVAA Deliberately vulnerable AI agents for security training docker pull opena2a/dvaa

How They Fit Together

┌──────────────────────────────────────────────────────────┐
│                      Your AI Agent                        │
│                                                           │
│  Secretless AI  → Credential management for dev tools     │
│  AIM            → Identity, governance, access control    │
│  ARP            → Runtime process/network/file monitoring │
│  HackMyAgent    → Scan, harden, attack-test               │
│  OASB           → Compliance benchmark (46 controls)      │
│  DVAA           → Train your team on AI agent security    │
└──────────────────────────────────────────────────────────┘

Upstream Contributions

We contribute security fixes back to the open-source projects we depend on and audit.

OpenClaw -- 8 security PRs (2 merged, 6 open):

  • Credential redaction in gateway config responses (#9858)
  • Skill/plugin code safety scanner (#9806)
  • Path traversal prevention in A2UI file serving (#10525)
  • Security headers for gateway HTTP responses (#10526)
  • Timing-safe comparison for hook token auth (#10527)
  • Supply chain hardening with --ignore-scripts (#10528)
  • File permission enforcement for credential files (#10529)
  • Skill scanner false positive reduction (#10530)

Nanobot -- 1 security PR (open):

  • Path traversal, XSS, and shell escape fixes (#472)

License

All projects are Apache-2.0.

Popular repositories Loading

  1. agent-identity-management agent-identity-management Public

    AIM - The open-source NHI platform for AI agents. Cryptographic identity, governance, and access control.

    Go 32 10

  2. hackmyagent hackmyagent Public

    Security toolkit for AI agents - verify skills, harden setups, scan for exposures

    TypeScript 14

  3. secretless-ai secretless-ai Public

    One command to keep secrets out of AI (LLMs). Works with Claude Code, Cursor, Copilot, Windsurf, and any AI coding tool.

    TypeScript 4

  4. cryptoserve cryptoserve Public

    Forked from ecolibria/cryptoserve

    Cryptography-as-a-Service Platform - "Life is hard but cryptography doesn't have to be"

    Python 2

  5. damn-vulnerable-ai-agent damn-vulnerable-ai-agent Public

    A deliberately vulnerable AI agent platform for security testing and education. Like DVWA but for AI agents.

    JavaScript 2 1

  6. arp arp Public

    Agent Runtime Protection - runtime security monitoring for AI agents

    TypeScript 1

Repositories

Showing 10 of 15 repositories
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Most used topics

Loading…