whatisgithub

What is aegis?

mitkox/aegis — explained in plain English

Analysis updated 2026-05-18

21RustAudience · ops devopsComplexity · 4/5Setup · hard

In one sentence

A Rust tool that puts package manager operations like apt, npm, and pip behind AI review, deterministic policy checks, and a signed, audited execution plan.

Mindmap

mindmap
  root((Aegis))
    What it does
      Reviews package changes
      Signed execution plans
      Tamper evident audit log
    Tech stack
      Rust
      vLLM endpoint
      Constrained executor
    Use cases
      Gate apt upgrades
      Restrict AI shell access
      Audit package installs
    Audience
      Ops and security teams
    Setup
      Build from source
      Local AI reviewer needed

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Require sign off and an audit trail before any apt upgrade or package install runs on a server.

USE CASE 2

Prevent an AI agent with shell access from directly executing risky package changes.

USE CASE 3

Keep a tamper evident log of every package operation approved and applied on a machine.

What is it built with?

RustvLLMOllama compatible endpoints

How does it compare?

mitkox/aegisavelino/roam-tuidanilaa1/auditkit
Stars212121
LanguageRustRustRust
Setup difficultyhardeasymoderate
Complexity4/53/53/5
Audienceops devopsdeveloperops devops

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · hard Time to first run · 1h+

Requires building from source in Rust and running a local OpenAI compatible model endpoint such as vLLM.

License is not stated in the excerpt of the README.

So what is it?

Aegis is a security tool written in Rust that adds a strict approval and audit layer on top of package managers like apt on Linux, npm for JavaScript, pip for Python, Docker, Cargo for Rust, Go modules, NuGet, and VS Code extensions. The problem it addresses is that running commands like sudo apt upgrade or npm install some package is a relatively blind action, you are trusting that the packages are safe and that the operation will not cause harm. Aegis intercepts those operations and replaces them with a multi step process: analyze the intended changes, have a local AI model review the plan, run deterministic policy checks, generate a cryptographically signed execution plan, and only then allow a constrained execution daemon, running as root, to carry out the approved steps. The key design principle is zero trust, the AI model is only a reviewer and never has permission to execute anything or generate shell commands that Aegis runs. All actual policy enforcement and execution is handled by deterministic Rust code, not AI output. This prevents a compromised or hallucinating model from causing damage. Every operation is recorded in a tamper evident audit log. You would use this in security sensitive environments where you want a verifiable paper trail for every package installation or system upgrade, or where you want to prevent accidental or malicious package changes from running without review. The local AI endpoint is configurable and must be OpenAI compatible, you run your own local model, such as via vLLM. The full README is longer than what was shown.

Copy-paste prompts

Prompt 1
Explain how Aegis's signed execution plan flow works from analyzer to constrained executor.
Prompt 2
Walk me through setting up a local OpenAI compatible model endpoint for Aegis to use as a reviewer.
Prompt 3
How does Aegis's zero trust design stop a compromised AI model from causing damage?
Prompt 4
Show me how to generate and verify a plan with aegisctl for an apt upgrade.

Frequently asked questions

What is aegis?

A Rust tool that puts package manager operations like apt, npm, and pip behind AI review, deterministic policy checks, and a signed, audited execution plan.

What language is aegis written in?

Mainly Rust. The stack also includes Rust, vLLM, Ollama compatible endpoints.

What license does aegis use?

License is not stated in the excerpt of the README.

How hard is aegis to set up?

Setup difficulty is rated hard, with roughly 1h+ to a first successful run.

Who is aegis for?

Mainly ops devops.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.