Capframe – capability tokens and policy enforcement for AI agent tool calls
Capframe has released version 0.2.0, focusing on capability tokens and policy enforcement for AI agents. The tool includes three Rust modules that enhance security by mapping tool surfaces, binding authority, and guarding tool calls. It is designed to comply with major security frameworks and is available as an open-source solution.
- ▪Capframe provides a structured approach to securing AI agent tool calls through discovery, authority binding, and enforcement.
- ▪The tool is compliant with OWASP, NIST, and MITRE frameworks, ensuring audit-ready artifacts.
- ▪Capframe is open-source and offers a hosted version for teams needing advanced features.
Opening excerpt (first ~120 words) tap to expand
v0.2.0 releasedAI agent securityCapability securityfor AI agents.Three Rust modules for AI agents that call tools. Find what they touch. Bind their authority. Guard every call. MCP-native. Audit-mapped to OWASP LLM, NIST AI RMF, MITRE ATLAS. MIT licensed.Install Capframe→ Star on GitHub$curl -fsSL capframe.ai/install | sh~/agents — capframe install$ capframe install → mcp-recon ✓ mcp-recon v0.0.4 sha256 ok · 1.2 MB → capnagent ✓ capnagent v0.7.6 sha256 ok · 1.2 MB → mcp-guard ✓ mcp-guard v0.5.4 sha256 ok · 19.9 MB Verify with: capframe doctor Add to PATH: ~/.capframe/bin§ 01The pipelineFour stages. One binary. No LLM in the decision path.01DiscoveryFindMap the tool surface.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Capframe.