Tier 01 — Developer · Open-Core · Free

Ship AI Governance in
Two Lines of Code.

Vantio Open Core is the free, open-source SDK + CLI that gives your AI agents governance in two lines of code. Install via npm or pip, wrap a call with shield() or invoke any agent with vantio run — zero code changes required. 10,000 events/month, free, with every event HMAC-signed and cryptographically receipted.

Get API Key — Free View on GitHub

CLIZero-line — any stack

curl -fsSL https://vantio.ai/install.sh | sh

vantio login <your-key>     # once — saved to ~/.vantio
vantio run node agent.js     # no env vars, zero code changes

SDKExplicit trace control

shield() — wrap any async agent

import { shield } from "@vantio/agent-sdk";

await shield(async () => {
  await runMyAgent();   // every LLM call is now observed
});

Python too — pip install vantio-agent-sdk, then the @shield decorator.

Get your key and the full, copy-paste quickstart in your dashboard. It prefills your real API key into vantio login, so you're reporting in under a minute.

What the SDK Does

→ HMAC-Signed Telemetry

Every event is HMAC-SHA256 signed with your API key before transmission. Events are cryptographically receipted in the Oracle ledger — independently verifiable without trusting the ledger itself.

→ AsyncLocalStorage Propagation

The VANTIO_TRACE_ID propagates through the full async call-tree via AsyncLocalStorage — no monkey-patching, no global state, no AST modifications.

→ Payload Quarantine

Zero linguistic content ever reaches the ledger. The ingest route structurally enforces a whitelist of fields (bytes_severed, pid, target_host, action_taken) — prompts and completions are architecturally excluded.

→ Non-Blocking Telemetry

Telemetry emission is fully async — the shield() interceptor adds microsecond-scale overhead on the synchronous critical path. Anonymous usage telemetry is opt-out (VANTIO_TELEMETRY_DISABLED=1 or DO_NOT_TRACK=1) and metadata only. Production-safe from day one.

→ Multi-Framework

Works with LangChain, AutoGen, CrewAI, AWS Bedrock Agents, and any raw OpenAI/Anthropic API call. Zero refactoring required.

→ SLSA Level 3 Provenance

Our build pipeline emits SLSA Level 3 provenance: npm and CLI build artifacts are attested with GitHub's build-provenance action and recorded keylessly in the Sigstore/Rekor transparency log.

Supported Frameworks

LangChainAutoGenCrewAIAWS Bedrock AgentsOpenAI APIAnthropic APIGoogle VertexLlamaIndexHaystackSemantic Kernel

Ring-3 boundary note: Ring-3 application-layer visibility does not equal Ring-0 OS-level enforcement. The Developer SDK operates entirely in user-space. It intercepts application-layer function calls and emits telemetry — it does not enforce at the kernel level. For Ring-0 kernel enforcement, see the Enterprise tier. For managed SDK-side enforcement — PII redaction, spend caps, and host blocking driven by a cloud policy — see the Pro tier.

Ship AI Governance inTwo Lines of Code.