Assay is an open-source policy-as-code enforcement and evidence tool designed for MCP (Model Context Protocol) AI agent/security workflows. It acts as a deterministic, fail-closed gate between agents and tools, enforcing what tools can do, generating offline-verifiable audit evidence for every action, and maintaining transparency on decision-making. Assay is built for developers, security engineers, and teams needing robust, reviewable security and audit trails for agent/tool calls in CI and production environments, with kernel-level enforcement on Linux and no hosted backend required.
Visit Assay's official website for product details and getting started.
Comprehensive guides and API references for using Assay.
Community support and troubleshooting for Assay users.
Guidelines for contributing to the Assay project and collaborating with developers.