AI agent compliance scanner for your CI/CD pipeline

We lint code. We run tests. We scan for vulnerabilities. But most teams shipping AI agents don't check whether those agents follow any governance rules. I built a GitHub Action that does exactly that. It scans your Python files on every PR and tells you what's missing - audit trails, kill switches, human oversight. Takes 30 seconds to set up. The workflow Add this file to .github/workflows/ai-governance.yml: name: AI Agent Governance on: [pull_request] jobs: compliance: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: jagmarques/asqav-compliance@v1 with: github-token: ${{ secrets.GITHUB_TOKEN }} That's the whole thing. No config files, no tokens to generate, no dashboard to sign up for. What it does When a PR is opened, the action scans every Python file that imports an AI agent framework. It looks for 10 frameworks out of the box - LangChain, OpenAI, Anthropic, CrewAI, AutoGen, LlamaIndex, Haystack, Semantic Kernel, Google GenAI, and Smol Agents. For each file, it che