Package Metadata

Author: —
Email: Microsoft Corporation <[email protected]>
PyPI: agentmesh_mcp_trust
Python: >=3.11
Versions: 6 releases
First release: 29 Apr 2026, 23:41 UTC
Analysed: 06 Jun 2026, 11:01 UTC
Source files: 5 .py files scanned

Project Links

Documentation Homepage Issues Repository

Classifiers

Development Status :: 3 - AlphaIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Topic :: Scientific/Engineering :: Artificial IntelligenceTopic :: Security :: Cryptography

🤖 AI Analysis

Final verdict: SAFE

The package has minimal risks based on the provided analysis notes. It shows no signs of malicious activities such as network calls, shell executions, obfuscations, or credential harvesting. However, the metadata risk suggests a less experienced or new maintainer.

Low network, shell, obfuscation, and credential risks.
Sparse author details indicating potential new maintainer.

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require external communication.
Shell: No shell execution patterns detected, indicating no immediate signs of executing system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The author's details are sparse, suggesting a potentially less experienced or new maintainer.

📦 Package Quality Overall: Medium (6.6/10)

✦ High Test Suite 9.0

Test suite present — 1 test file(s) found

Test runner config found: pyproject.toml
1 test file(s) detected (e.g. test_server.py)

◈ Medium Documentation 7.0

Some documentation present

Documentation URL: "Documentation" -> https://github.com/microsoft/agent-governance-toolkit/tree/m
Detailed PyPI description (3984 chars)

○ Low Contributing Guide 2.0

No contributing guide or governance files found

No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found

◈ Medium Type Annotations 5.0

Partial type annotation coverage

11 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

14 unique contributor(s) across 100 commits in microsoft/agent-governance-toolkit
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: microsoft.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository microsoft/agent-governance-toolkit appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agentmesh_mcp_trust

Your task is to develop a small-scale, fully functional application named 'TrustVerifier' using the Python package 'agentmesh_mcp_trust'. This application will serve as a bridge between various AI agents, such as Claude and GPT, facilitating their interaction through a trust verification process. The goal of TrustVerifier is to ensure secure and reliable communication between these agents by managing their trust levels dynamically.

### Key Features:
1. **Agent Registration**: Allow new AI agents to register themselves with the system. Each agent must provide unique identification details to ensure no duplicate entries.
2. **Trust Scoring System**: Implement a scoring mechanism to evaluate the trustworthiness of each agent based on predefined criteria such as historical performance, reliability, and engagement in malicious activities.
3. **Dynamic Trust Updates**: Enable the system to update an agent's trust score in real-time based on their recent interactions or behaviors. This feature ensures that the trust levels remain current and relevant.
4. **Secure Communication Channels**: Utilize the 'agentmesh_mcp_trust' package to establish secure communication channels between trusted agents. This includes encryption of data exchanged and verification of identities before any communication occurs.
5. **User Interface**: Develop a simple yet effective user interface that allows users to monitor the trust levels of different agents and manage their interactions.

### How 'agentmesh_mcp_trust' Package is Utilized:
- **Initialization & Configuration**: Use the package to initialize the MCP server and configure it according to your application's requirements. This involves setting up necessary parameters like server address, port numbers, and security protocols.
- **Trust Management Functions**: Leverage the trust management functions provided by the package to handle agent registration, trust scoring, and dynamic updates. These functions streamline the process and ensure consistency across all operations.
- **Communication Security**: Employ the package's capabilities to secure communication between agents. This includes encrypting data, verifying identities, and ensuring that only trusted agents can communicate with each other.

By completing this project, you will not only gain hands-on experience with the 'agentmesh_mcp_trust' package but also contribute to the development of a robust and secure ecosystem for AI agents.