Agents change faster than audits. Ancilis discovers what agents can do, classifies the data they touch, activates the right controls, and continuously proves compliance. Trust your agents in production.

• Updated Jun 12, 2026
• Python

AI-native OSS PM tool in CLI. Purpose-built for regulated software — auto-generates RTM, SCA, OSCAL, HMAC-signed audit packages from plain files in your repo. SOC 2 / ISO 27001 / NYDFS / GDPR ready. Free.

• Updated Jun 7, 2026
• JavaScript

NIST SP 800-53 Rev 5 control mapping for AI agent decision evidence artifacts

• Updated Jun 1, 2026

ISO 27001 ISMS / GRC SaaS portfolio with NIST CSF + SOC 2 mapping: risks, SoA, audits, CAPA, management review, evidence index.

• Updated Mar 3, 2026
• Python

Definitive field guide to enterprise AI agents. Anchored on LangGraph (18 of 18 named customer-disclosed enterprise deployments); surveys 27 frameworks at depth. For PMs, SEs, SCs, FDEs, devs, architects, CISOs. Three Parts — Foundations, Patterns, Production — architecture, identity, governance, audit-evidence, deployment. CC BY-SA 4.0.

• Updated May 29, 2026
• Python

Walkthrough demo for the execution-evidence path in the Digital Biosphere Architecture.

• Updated Jun 13, 2026
• Python

Verifiable audit evidence export package with JSON, HTML, PDF, signed history, and independent verification.

• Updated May 7, 2026
• Python

DevSecOps and governance automation portfolio for controlled, auditable and regulated IT delivery.

• Updated Jun 12, 2026

Stage344: Verified GitHub Artifact Layer for GitHub Actions run evidence, artifact download preparation, SHA256 binding, and independent verification.

• Updated Jun 11, 2026
• HTML

Stage338: Behavior Decision Engine for expected-vs-actual behavior verification.

• Updated Jun 4, 2026
• HTML

Stage343: Verified External Anchor Layer with independent verification report for checkpoint, OTS, Sigstore, GPG, and GitHub Actions anchor intent.

• Updated Jun 7, 2026
• HTML

A technical data governance engineering lab showing how metadata, lineage, data quality, access controls, and stewardship workflows can be embedded into a cloud-style analytics platform.

• Updated May 18, 2026
• Python

PR gate for evidence-bundle manifest breaking changes — diffs HEAD vs base.sha via evidence-bundle-diff, posts PR comment, fails on item-hash/item-removal/signature changes. Fourth in the per-protocol diff Action quintet.

• Updated Jun 11, 2026
• TypeScript

REMEDA Stage329: submit-ready AI security audit artifacts built on Stage328 evidence match verification.

• Updated May 19, 2026
• Python

REMEDA Stage327: structured reproduction evidence schema for AI vulnerability verification, target matching, SHA256 integrity binding, and third-party audit verification.

• Updated May 12, 2026
• Python

Simple GRC project showing an access review with findings, exceptions, and remediation steps.

• Updated May 16, 2026
• Python

Execution-session integrity verification for AI vulnerability evidence and audit workflows.

• Updated May 26, 2026
• Python

Public overview of the Ninobyte AI Security & Governance Lab: defensive AWS AI security, audit evidence, and GRC proof packs.

• Updated May 26, 2026

Stage340: Unified Verification Session Manifest binding Stage339 QSP decisions into verifiable session records.

• Updated Jun 4, 2026
• HTML

Quality Evidence Graph is a QA runtime that connects requirements, code changes, risks, test layers, evidence artifacts, and release gates into a reproducible graph for risk-based test placement and Go/No-Go decisions. - Quality Evidence Graph は、要求・コード差分・リスク・テストレイヤー・証跡 artifact・リリースゲートを単一のグラフに接続し、リスクベースのテスト配置と Go/No-Go 判断を再現可能にする QA Runtime です。

• Updated Jun 3, 2026
• TypeScript