Stop Your AI Agent Before It Makes a $50,000 Mistake¶
Your AI agent is about to issue a refund. Should it?
| Request | Amount | ACGP Decision | Time |
|---|---|---|---|
| Defective product return | $50 | OK - Approved | 12ms |
| Suspicious bulk refund | $50,000 | ESCALATE - Human review | 45ms |
ACGP checks every agent decision in real-time. Risky actions get caught. Safe ones flow through.
from acgp import GovernanceSteward, CognitiveTrace
steward = GovernanceSteward(blueprint_file="blueprint.yaml")
trace = CognitiveTrace(
reasoning="User requested refund for defective item",
action="issue_refund",
parameters={"amount": 50}
)
result = steward.evaluate(trace)
print(result.intervention) # "OK" - approved in 12ms
What is ACGP?¶
The Agentic Cognitive Governance Protocol is an open specification for governing autonomous AI agents at runtime. It provides:
- Governance Contracts: Performance SLAs, risk levels (low/elevated/critical), evaluation tiers (Eval-0 to Eval-3), and fallback behaviors (Standard+ conformance)
- Cognitive Traces: Transparent reasoning trails with versioning and attribution
- Interventions: Six intervention types (five primary levels: OK, Nudge, Escalate, Block, Halt, plus orthogonal Flag)
- Tripwires: Proactive safeguards against resource abuse and drift
- Trust System: Gradual autonomy through proven behavior
- Reflective Learning: Continuous improvement from outcomes
ACGP is designed to work with any agent framework (LangChain, AutoGPT, custom) and provides three conformance tiers:
- Minimal: Development and batch operations (2-4 hours implementation)
- Standard: Production-ready governance with SLAs (1-2 days)
- Complete: Mission-critical systems with HSM and consensus (1-2 weeks)
Core Concepts¶
ARI Framework¶
The Agent-Reflection-Intervention framework is the heart of ACGP:
graph LR
A[Agent Decision] --> R[Governance Steward Reflection]
R --> CTQ{Cognitive Trace Quality OK?}
CTQ -->|Yes| OK[ Proceed]
CTQ -->|Concerns| I[Intervention]
I --> N[Nudge/Flag/Escalate/Block]- Agent: Makes decisions and takes actions
- Reflection: Governance Steward evaluates decision quality
- Intervention: Proportionate response based on concerns
ACL Tiers¶
Access Control Level (ACL) tiers determine how strictly agents are governed:
| ACL Tier | ARS (Agent Risk Score) | Use Case | Latency |
|---|---|---|---|
| ACL-0 | 0-2 | Read-only bots | ~10ms typical, <50ms max |
| ACL-1 | 3-4 | Scripted agents | ~20ms typical, <100ms max |
| ACL-2 | 5-7 | Moderate autonomy | ~50ms typical, <150ms max |
| ACL-3 | 8-10 | High autonomy | ~100ms typical, <200ms max |
| ACL-4 | 11-13 | Critical systems | ~200ms typical, <350ms max |
| ACL-5 | 14-15 | Maximum oversight | ~500ms typical, <1000ms max |
Interventions¶
Six intervention types (five primary levels: OK, Nudge, Escalate, Block, Halt, plus orthogonal Flag):
- OK - Continue without interruption
- Nudge - Gentle suggestion to reconsider
- Escalate - Request human review
- Block - Prevent this specific action
- Halt - Stop agent completely
- Flag - Log for review (can combine with any primary level)
Note: Flag is orthogonal, meaning it can be combined with any of the five primary intervention levels for audit and trust debt tracking.
Example: Customer Service Agent¶
from acgp import GovernanceSteward, CognitiveTrace
# Initialize steward for customer service agent
steward = GovernanceSteward(
blueprint_file="customer-service-v1.yaml", # (1)!
conformance_level="standard", # (2)!
)
# Agent makes a decision
trace = CognitiveTrace(
reasoning="Customer has valid complaint, offering 15% discount",
action="apply_discount",
parameters={"amount": 15, "reason": "service_recovery"}
)
# Evaluate with ACGP
result = steward.evaluate(trace)
if result.intervention == "OK":
# Apply the discount
apply_discount(15)
elif result.intervention == "NUDGE":
# Log suggestion but proceed
log_suggestion(result.message)
apply_discount(15)
elif result.intervention == "BLOCK":
# Don't apply, inform user
notify_agent(result.message)
- Blueprints define governance policies specific to your use case. Create custom blueprints with the Blueprint Schema.
- Standard conformance provides production-ready governance with governance contracts and SLAs.
ACGP vs. Alternatives¶
| Feature | Traditional IAM | Rate Limiting | Monitoring | ACGP |
|---|---|---|---|---|
| Real-time prevention | [NO] | [YES] | [NO] | [YES] |
| Behavioral analysis | [NO] | [NO] | [WARNING] | [YES] |
| Graduated response | [NO] | [NO] | [NO] | [YES] |
| Quality evaluation | [NO] | [NO] | [WARNING] | [YES] |
| Learning/adaptation | [NO] | [NO] | [NO] | [YES] |
| Compliance auditing | [WARNING] | [NO] | [YES] | [YES] |
| Framework agnostic | [YES] | [YES] | [YES] | [YES] |
Tip
Use ACGP in addition to IAM, rate limiting, and monitoring—not as a replacement. ACGP provides a behavioral governance layer that complements traditional security controls.
When to Use ACGP¶
Perfect for:¶
- Autonomous agents that make decisions without constant human oversight
- High-risk actions like financial transactions, data modifications, or external communications
- Adaptive AI that learns and changes behavior over time
- Multi-agent systems that need coordinated governance
- Compliance requirements that mandate decision audit trails
Not needed for:¶
- Simple scripted bots with hard-coded if/else logic
- Read-only agents that never take actions
- Sub-10ms latency requirements (ACGP adds 10-500ms depending on ACL tier)
- Non-cognitive systems like traditional automation
Popular Resources¶
Based on community usage:
- Getting Started - Get started in 5 minutes
- ARS Calculator - Assess your agent
- Intervention Types - Understand responses
- Troubleshooting - Fix common issues
- MCP Integration - Connect to tools
Implementation Paths¶
Choose your implementation level based on your needs:
Minimal Conformance
Minimal
Perfect for development and testing. Minimal overhead, core features only.
~2-4 hours to implement
Standard Conformance
Standard
Production-ready with full ARS framework, interventions, and audit logging.
~1-2 days to implement
Complete Conformance
Complete
Mission-critical systems with cryptographic proofs, distributed consensus, and advanced security.
~1-2 weeks to implement
Specifications¶
ACGP is defined through a series of RFC-style specifications:
- ACGP-0000: Overview - Start here for comprehensive introduction
- ACGP-1000: Core Protocol - Core concepts and architecture
- ACGP-1001: Terminology - Key terms and definitions
- ACGP-1002: Architecture - System architecture
- ACGP-1003: Messages - Message formats and protocols
- ACGP-1004: Blueprints - Reflection Blueprint specifications
- ACGP-1005: ARS-CTQ-ACL Integration Framework - Agent risk scoring and ACL tier assignment
- ACGP-1006: Registry - Component registry specifications
- ACGP-1007: Security - Security considerations
- ACGP-1008: Interoperability - Integration guidelines
- ACGP-1009: Conformance - Conformance testing
- ACGP-1010: Governance Contracts - Performance SLAs
- ACGP-1011: Implementation Profiles - Deployment profiles
- ACGP-1012: Blueprint Authoring Guide - Creating blueprints
Community¶
-
GitHub
Star the repo, report issues, contribute code
-
Discord
Join our community for help and discussions
-
Twitter
Follow for updates and announcements
-
Contributing
Help improve ACGP - all contributions welcome
Next Steps¶
-
New to ACGP?
Start with our 5-Minute Quickstart to get up and running fast.
-
Ready to implement?
Choose a conformance level and follow our step-by-step implementation guides.
-
Want to integrate?
Check our integration guides for MCP, A2A, and custom protocols.
-
Need reference docs?
Browse our comprehensive API reference and specifications.