Score your AI agent. Red-team it. Ship it with proof.
Open-source CLI for evidence-based trust scoring, adversarial testing, and compliance.
Works with any framework. 60 seconds to your first score.
Quick Start · Web Playground · Docs · Recipes · Community · Contribute
AMC scores AI agents from what they actually do, not what their docs say they do.
npx agent-maturity-compass quickscoreOne command. No account. No API key. You get:
- A trust score — L0 (dangerous) to L5 (production-ready), based on execution evidence
- A gap analysis — exactly what's weak, what's risky, and what's missing
- Generated fixes — guardrails, config patches, CI gates, and compliance artifacts
Then you keep going: add adversarial testing, continuous monitoring, regulatory mapping, and fleet-wide governance — all from the same CLI.
- Evaluation workflows — golden datasets, imported evals, lite scoring for non-agent apps
- Business and compliance outputs — KPI correlation, leaderboards, audit binders
Works with LangChain, CrewAI, AutoGen, OpenAI Agents SDK, Claude Code, Gemini, OpenClaw, and more — with zero or near-zero integration friction.
Why should I care?
Today, many agents are evaluated by what they claim in docs, prompts, or self-reported checklists. That is structurally weak.
AMC focuses on execution-verified evidence.
| How agents are evaluated today | How AMC evaluates |
|---|---|
| Agent says "I'm safe" → Score: 100 ✅ | AMC tests the agent and inspects evidence → Real score may be 16 ❌ |
| Self-reported documentation | Execution-verified evidence |
| Keyword matching | Weighted trust evidence |
| "Trust me, bro" | Cryptographic proof chains |
That is the entire thesis: trust, but verify — with receipts.
# Install globally (or use npx below)
npm i -g agent-maturity-compass
# Score your agent
cd your-agent-project
amc quickscoreOr skip the install entirely:
npx agent-maturity-compass quickscoreWant it even faster?
amc quickscore --rapid # skip optional questions, get a score in secondsMore install methods
curl (no Node required)
curl -fsSL https://raw.githubusercontent.com/thewisecrab/AgentMaturityCompass/main/install.sh | bashHomebrew
brew tap thewisecrab/amc && brew install agent-maturity-compassDocker
docker run -it --rm ghcr.io/thewisecrab/amc-quickstart amc quickscoreFrom source
git clone https://github.com/thewisecrab/AgentMaturityCompass.git
cd AgentMaturityCompass && npm ci && npm run build && npm link| AMC | Observability platforms | Eval frameworks | Manual checklists | |
|---|---|---|---|---|
| Evidence model | Execution-verified, cryptographic proofs | Logs and metrics, no trust scoring | Test pass/fail, no maturity model | Self-reported |
| Adversarial testing | 147 attack simulations built in | Not a focus | Partial (prompt-level only) | None |
| Compliance mapping | EU AI Act, ISO 42001, NIST, SOC 2, OWASP | Not included | Not included | Manual, labor-intensive |
| Framework support | 14 adapters, zero code changes | Framework-specific agents | Framework-specific | N/A |
| Cost | Free, open source (MIT) | Per-seat/month pricing | Free to paid | Free but manual |
| Time to first result | 60 seconds | Hours to days | Minutes to hours | Days to weeks |
AMC is not an observability tool and not an eval harness. It is a trust scorecard — it tells you whether your agent is safe to ship, with cryptographic evidence, and generates the compliance artifacts to prove it.
| Dimension | Questions | What It Measures |
|---|---|---|
| Strategic Agent Operations | 16 | Mission clarity, scope adherence, cost governance, operational intelligence |
| Agent Leadership | 20 | Governance structure, EU AI Act readiness, proactive risk management, business continuity |
| Agent Culture | 94 | Feedback loops, forecast legitimacy, persona governance, UX honesty, over-compliance detection, social alignment |
| Agent Resilience | 52 | Graceful degradation, circuit breakers, memory safety, threat resistance, fact/simulation boundaries |
| Agent Skills | 53 | Tool mastery, injection defense, DLP, scenario traceability, replay safety |
| Category | Examples |
|---|---|
| Prompt Injection | System tampering, role hijacking, jailbreaks |
| Exfiltration | Secret leakage, PII exposure, data boundary violations |
| Adversarial | TAP/PAIR, Crescendo, Skeleton Key, best-of-N |
| Context Leakage | EchoLeak, cross-session bleed, memory poisoning |
| Supply Chain | Dependency attacks, MCP server poisoning, SBOM integrity |
| Behavioral | Sycophancy, self-preservation, sabotage, over-compliance |
| Sector | Packs | Key Regulations |
|---|---|---|
| 🏥 Health | 9 | HIPAA, FDA 21 CFR Part 11, EU MDR, ICH E6(R3) |
| 💰 Wealth | 5 | MiFID II, PSD2, EU DORA, MiCA, FATF |
| 🎓 Education | 5 | FERPA, COPPA, IDEA, EU AI Act Annex III |
| 🚇 Mobility | 5 | UNECE WP.29, ETSI EN 303 645, EU NIS2 |
| 💡 Technology | 5 | EU AI Act Art. 13, EU Data Act, DSA Art. 34 |
| 🌿 Environment | 6 | EU Farm-to-Fork, REACH, IEC 61850 |
| 🏛️ Governance | 5 | EU eIDAS 2.0, UNCAC, UNGPs |
Dedicated evaluation lane for simulation engines, forecast systems, and synthetic social environments. 5 scored dimensions:
| Dimension | Weight | Questions | What it evaluates |
|---|---|---|---|
| Forecast Legitimacy | 25% | AMC-6.1–6.10 | Uncertainty expression, calibration, scenario vs prediction framing |
| Boundary Integrity | 20% | AMC-6.11–6.17, 6.37–6.42 | Fact/inference/simulation separation, writeback governance |
| Synthetic Identity | 20% | AMC-6.18–6.25, 6.48–6.52 | Persona governance, real-person representation controls |
| Simulation Validity | 20% | AMC-6.30–6.36 | Mode collapse detection, population diversity, historical calibration |
| Scenario Provenance | 15% | AMC-6.26–6.29, 6.53–6.57 | End-to-end traceability, replay capability, interaction safety |
amc score simulation-lane --system-type simulation-engine # interactive
amc score simulation-lane --system-type forecast-decision-support --json # JSON output
amc score simulation-lane --system-type synthetic-social-environment --responses answers.jsonSee all modules
- Calibration gap (confidence vs reality)
- Evidence conflict detection
- Gaming resistance (adversarial score inflation)
- Sleeper agent detection (context-dependent behavior)
- Policy consistency (pass^k reliability)
- Factuality (parametric, retrieval, grounded)
- Memory integrity & poisoning resistance
- Alignment index (safety × honesty × helpfulness)
- Over-compliance detection (H-Neurons, arXiv:2512.01797)
- Monitor bypass resistance (arXiv:2503.09950)
- Trust-authorization synchronization (arXiv:2512.06914)
- MCP compliance scoring
- Identity continuity tracking
- Behavioral transparency index
- Forecast legitimacy (epistemic honesty, calibration, uncertainty)
- Fact/simulation boundary (provenance separation, writeback governance)
- Synthetic identity governance (persona labeling, real-person controls)
- Simulation validity (mode collapse, population diversity)
- Scenario provenance (traceability, replay, interaction safety)
- And 60+ more...
Agent (untrusted)
│
▼
AMC Gateway ──── transparent proxy, agent doesn't know it's being watched
│
▼
Evidence Ledger ──── Ed25519 signatures + Merkle tree proof chains
│
▼
Scoring Engine ──── evidence-weighted diagnostics, 79 scoring modules, 147 assurance packs
│
▼
AMC Studio ──── dashboard + API + CLI + reports
| Tier | Weight | How |
|---|---|---|
OBSERVED_HARDENED |
1.1× | AMC-controlled adversarial scenarios |
OBSERVED |
1.0× | Captured via gateway proxy |
ATTESTED |
0.8× | Cryptographic attestation |
SELF_REPORTED |
0.4× | Agent's own claims (capped) |
| Level | Name | Meaning |
|---|---|---|
| L0 | Absent | No safety controls |
| L1 | Initial | Some intent, nothing operational |
| L2 | Developing | Works on happy path, breaks at edges |
| L3 | Defined | Repeatable, measurable, auditable (EU AI Act minimum) |
| L4 | Managed | Proactive, risk-calibrated, cryptographic proofs |
| L5 | Optimizing | Self-correcting, continuously verified |
AMC is one trust stack with eight named product surfaces:
| Product | What it does |
|---|---|
| Score | Evidence-weighted maturity diagnostics and trust scoring |
| Shield | Adversarial assurance packs and attack simulations |
| Enforce | Policy controls, approvals, and governance workflows |
| Vault | Signatures, keys, and tamper-evident proof infrastructure |
| Watch | Traces, anomalies, monitoring, and operational drift detection |
| Fleet | Multi-agent oversight, comparison, inventory, and governance |
| Passport | Portable identity and credential artifacts for agents |
| Comply | Compliance mappings, audit binders, and governance reporting |
npx agent-maturity-compass quickscore # quick score
npx agent-maturity-compass quickscore --eu-ai-act # + EU AI Act check
npx agent-maturity-compass quickscore --share # shareable link# LangChain
amc wrap langchain -- python my_agent.py
# CrewAI
amc wrap crewai -- python crew.py
# AutoGen
amc wrap autogen -- python autogen_app.py
# OpenClaw
amc wrap openclaw-cli -- openclaw run
# Claude Code
amc wrap claude-code -- claude "analyze this code"
# Any CLI agent
amc wrap generic-cli -- python my_bot.pyamc assurance run --scope full # full assurance library
amc assurance run --pack prompt-injection # specific attack
amc assurance run --pack adversarial-robustness # TAP/PAIR/Crescendo
amc assurance run --format sarif # export for security toolsamc observe timeline # score history + evidence volume
amc observe anomalies # volatility / regressions / weirdness
amc trace list # recent agent sessions
amc trace inspect <trace-id> # inspect tool calls and trust tiersamc dataset create support-bot # create a reusable eval dataset
amc dataset add-case support-bot --prompt "..." --expected "..."
amc dataset run support-bot # run eval cases
amc eval import --format promptfoo --file results.json # import external eval results
amc lite-score # score a non-agent chatbot / LLM appamc business kpi # correlate maturity to outcomes
amc business report # stakeholder-ready business summary
amc leaderboard show # compare agents across a fleet
amc inventory scan --deep # discover agents, frameworks, model files
amc comms-check --text "Guaranteed 40% return" --domain wealthamc fix # generate guardrails + CI gate + governance docs
amc fix --target-level L4 # target a specific level
amc guide --go # detect framework → apply guardrails to config
amc guide --watch # continuous monitoring + auto-updateamc audit binder create --framework eu-ai-act # EU AI Act evidence binder
amc compliance report --framework iso-42001 # ISO 42001 report
amc domain assess --domain health # HIPAA assessment
amc domain assess --domain wealth # MiFID II / DORA# .github/workflows/amc.yml — copy this entire file
name: AMC Trust Gate
on:
pull_request:
push:
branches: [main]
jobs:
amc-score:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: thewisecrab/AgentMaturityCompass/amc-action@main
with:
agent-id: my-agent
target-level: 3
fail-on-drop: true
comment: true
upload-artifacts: true<!-- Add this to your README -->
[-green?logo=data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHZpZXdCb3g9IjAgMCAyNCAyNCI+PHBhdGggZmlsbD0iI2ZmZiIgZD0iTTEyIDJMMiA3bDEwIDUgMTAtNXptMCA5bC04LjUtNC4yNUwyIDEybDEwIDUgMTAtNXptMCA5bC04LjUtNC4yNUwyIDIxbDEwIDUgMTAtNXoiLz48L3N2Zz4=)](https://github.com/thewisecrab/AgentMaturityCompass)Result:
-green){kind=icon}
Zero code changes. One environment variable.
amc wrap <adapter> -- <your command>| Adapter | Command |
|---|---|
| LangChain | amc wrap langchain -- python app.py |
| LangGraph | amc wrap langgraph -- python graph.py |
| CrewAI | amc wrap crewai -- python crew.py |
| AutoGen | amc wrap autogen -- python autogen.py |
| OpenAI Agents SDK | amc wrap openai-agents -- python agent.py |
| LlamaIndex | amc wrap llamaindex -- python rag.py |
| Semantic Kernel | amc wrap semantic-kernel -- dotnet run |
| Claude Code | amc wrap claude-code -- claude "task" |
| Gemini | amc wrap gemini -- gemini chat |
| OpenClaw | amc wrap openclaw-cli -- openclaw run |
| OpenHands | amc wrap openhands -- openhands run |
| Python SDK | amc wrap python-amc-sdk -- python app.py |
| Generic CLI | amc wrap generic-cli -- python bot.py |
| OpenAI-compatible | amc wrap openai-compat -- node server.js |
| Framework | Coverage |
|---|---|
| EU AI Act | 12 article mappings + audit binder generation |
| ISO 42001 | Clauses 4-10 mapped to AMC dimensions |
| NIST AI RMF | Risk management framework alignment |
| SOC 2 | Trust service criteria mapping |
| OWASP LLM Top 10 | Full coverage (10/10) |
npm i -g agent-maturity-compassnpx agent-maturity-compass quickscorebrew tap thewisecrab/amc && brew install agent-maturity-compasscurl -fsSL https://raw.githubusercontent.com/thewisecrab/AgentMaturityCompass/main/install.sh | bashdocker run -it --rm ghcr.io/thewisecrab/amc-quickstart amc quickscoregit clone https://github.com/thewisecrab/AgentMaturityCompass.git
cd AgentMaturityCompass && npm ci && npm run build && npm link| Platform | Deploy |
|---|---|
| Docker Compose | cd docker && docker compose up |
| Vercel | |
| Railway |  |
The full trust stack is free and MIT licensed. The only paid surface is Industry Packs.
| Tier | What you get |
|---|---|
| Free / Open Source | Everything — Score, Shield, Enforce, Vault, Watch, Fleet, Passport, Comply, all 14 adapters, 481 CLI commands, browser playground, CI gates |
| Pro | Everything in Free + selected Industry Packs for your regulated verticals |
| Enterprise | Everything in Pro + all 40 Industry Packs + priority support + custom pack development + deployment assistance |
Industry Packs are 40 sector-specific domain packs (healthcare, finance, education, government, etc.) that require ongoing regulatory research and maintenance. The core trust stack stays free forever.
| Path | Best for | Start here |
|---|---|---|
| Browser | First-touch evaluation, demos, understanding scoring | Web Playground |
| CLI | Real agent scoring, evidence capture, shareable outputs | npx agent-maturity-compass quickscore |
| CI/CD | Release gates, score thresholds, PR comments | CI Templates |
| Enterprise | Self-hosted, managed deployment | Deployment Options |
- Solo builder / OSS maintainer → docs/SOLO_DEV_PATH.md
- Platform / engineering team → docs/PLATFORM_PATH.md
- Security / compliance → docs/SECURITY_PATH.md
More docs
- docs/INDEX.md — full documentation index
- docs/START_HERE.md — orientation guide
- docs/WHY_AMC.md — the case for AMC
- docs/USE_CASES.md — use case gallery
- docs/PERSONAS.md — role-based guides
- docs/AFTER_QUICKSCORE.md — what to do after your first score
- docs/EXAMPLES_INDEX.md — example index
- docs/RECIPES.md — extended recipes
- docs/DEPLOYMENT_OPTIONS.md — deployment options
- docs/PRODUCT_EDITIONS.md — product editions
- docs/PRICING.md — pricing details
- docs/BUYER_PACKAGES.md — buyer packages
- docs/SERVICES_AND_SUPPORT.md — services and support
- docs/COMMUNITY_SHOWCASE.md — community showcase
- docs/RELEASE_HIGHLIGHTS.md — release highlights
- docs/BENCHMARK_GALLERY.md — benchmark gallery
- docs/SPONSORING.md — sponsorship
- docs/COMMUNITY_SUPPORT.md — community and support
AMC now includes an experimental Node SEA packaging path for host-specific single-binary builds:
npm run build
npm run build:seaThe build path is wired in and produces SEA artifacts plus a manifest. Runtime verification is still experimental and host-sensitive. See docs/SINGLE_BINARY.md for the honest status and caveats.
AMC now includes a scheduled GitHub Actions workflow that validates packaged CLI installs across a small OS/Node matrix and uploads JSON artifacts for inspection:
- workflow:
.github/workflows/nightly-compatibility-matrix.yml - current matrix:
ubuntu-latest+macos-latest, Node20+22 - checks: packed install,
doctor --json,quickscore --json,lite-score --help,comms-check --help
AMC now supports lightweight workspace config presets for .amc/amc.config.yaml:
amc init --profile dev
amc quickstart --profile ci
amc config profile prodCurrent MVP behavior:
dev→ shared trust boundary, proxy env enabledci→ isolated trust boundary, proxy env enabledprod→ isolated trust boundary, proxy env disabled- explicit
--trust-boundarystill overrides the profile when you need it
AMC is MIT licensed. We welcome contributions — especially new assurance packs, domain packs, framework adapters, and scoring modules.
git clone https://github.com/thewisecrab/AgentMaturityCompass.git
cd AgentMaturityCompass && npm ci && npm test # 4,161 tests→ CONTRIBUTING.md — includes guides for writing packs, mapping research papers, and adding adapters.
- New assurance pack — model a new attack scenario (guide)
- New domain pack — add industry-specific questions (guide)
- New adapter — support another agent framework (guide)
- Research paper → module — turn arXiv findings into scoring logic (guide)
MIT — public trust infrastructure for the age of AI agents.
235 diagnostic questions · 147 assurance packs · 40 domain packs · 14 adapters · 79 scoring modules · 4,161 tests
Stop trusting. Start verifying.