Package Metadata

Author: —
Email: Microsoft Corporation <[email protected]>
PyPI: agent_os_kernel
Python: >=3.9
Versions: 21 releases
First release: 26 Jan 2026, 20:39 UTC
Analysed: 06 Jun 2026, 07:55 UTC
Source files: 76 .py files scanned

Project Links

Bug Tracker Documentation Homepage Repository

Classifiers

Development Status :: 4 - BetaIntended Audience :: DevelopersIntended Audience :: Science/ResearchLicense :: OSI Approved :: MIT LicenseOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.9

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits signs of potential obfuscation aimed at hiding code logic, which raises concerns about its true intentions. However, the lack of credential harvesting activities suggests it may not be outright malicious.

obfuscation risk of 4 out of 10
low credential risk

Per-check LLM notes

Obfuscation: The obfuscation pattern suggests an attempt to hide code logic through mathematical operations and AST manipulation, which could be used for malicious purposes but might also serve legitimate needs like protecting proprietary algorithms.
Credentials: No clear patterns of credential harvesting were detected, reducing the likelihood of malicious intent in this area.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 6.0

Found 4 network call pattern(s)

try: request = urllib.request.Request(self.url, method=self.method, headers=self.headers)
lf.headers) with urllib.request.urlopen(request, timeout=self.timeout) as response:
RL.''' return requests.get(url, timeout=timeout).text Advanced usage with vers
) async with aiohttp.ClientSession(timeout=timeout) as session: async with session.

⚠ Code Obfuscation score 8.0

Found 4 obfuscation pattern(s)

matical operations with: - No eval() or exec() usage - Expression parsing with allowed operatio
. Features: - No eval()/exec() - uses safe expression parser - Whitelisted ope
erations. No eval()/compile() — walks the AST tree and computes results
- Date arithmetic - No eval() or exec() Example: ```python dt =

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: microsoft.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository microsoft/agent-governance-toolkit appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agent_os_kernel

Create a mini-application called 'TrustworthyBot' using the Python package 'agent_os_kernel'. This application will serve as a platform for managing multiple autonomous AI agents within a secure and trust-based environment. Each agent will have unique roles and capabilities, governed by the rules defined in the 'agent_os_kernel' package. Here’s a detailed plan on how to implement this mini-app:

1. **Setup**: Begin by installing the 'agent_os_kernel' package and setting up your development environment with Python.
2. **Agent Creation**: Define different types of agents (e.g., Data Analyst, Security Monitor, User Interface Manager). Each agent type should have specific attributes and methods reflecting its role.
3. **Kernel Initialization**: Initialize the kernel using 'agent_os_kernel', specifying the initial set of agents and their permissions within the system.
4. **Trust Exchange Mechanism**: Implement a mechanism where agents can request and grant trust to each other based on predefined criteria or interactions. Use Nexus Trust Exchange principles provided by 'agent_os_kernel'.
5. **Task Assignment**: Develop a feature that allows the system to assign tasks to agents based on their capabilities and the current trust level among them.
6. **Monitoring & Logging**: Ensure there is a logging system to monitor the activities and interactions between agents, which can be reviewed for auditing purposes.
7. **User Interface**: Create a simple user interface that allows users to interact with the system, view agent statuses, and manage trust levels manually if needed.
8. **Testing & Validation**: Test the system thoroughly to ensure all functionalities work as expected, especially focusing on the security and integrity of the trust exchange process.

By the end of this project, you'll have a fully functional mini-app showcasing the capabilities of 'agent_os_kernel' in managing a network of autonomous AI agents securely and efficiently.