whatisgithub

What is adrian?

secureagentics/adrian — explained in plain English

Analysis updated 2026-05-18

46PythonAudience · developerComplexity · 4/5LicenseSetup · hard

In one sentence

A monitoring and control system that watches AI agents' actions and reasoning to catch and block dangerous behavior.

Mindmap

mindmap
  root((Adrian))
    What it does
      Monitors agent actions
      Analyzes reasoning trace
      Blocks risky tool calls
    Tech stack
      Python
      Go
      LangChain
      Docker
    Use cases
      Detect prompt injection
      Audit agent behavior
      Block unsafe actions
    Audience
      Developers
      Ops devops
    Deployment
      Cloud dashboard
      Self hosted with GPU

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Monitor a LangChain or LangGraph agent in real time for suspicious tool calls

USE CASE 2

Detect prompt injection attempts hidden in content the agent reads

USE CASE 3

Run in audit-only mode to review agent behavior without interfering

USE CASE 4

Block dangerous actions automatically once thresholds are set in block mode

What is it built with?

PythonGoLangChainDocker

How does it compare?

secureagentics/adrianbetta-tech/harness-sddluciobaiocchi/heard
Stars464646
LanguagePythonPythonPython
Setup difficultyhardeasyhard
Complexity4/52/54/5
Audiencedeveloperdeveloperresearcher

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · hard Time to first run · 1h+

Self-hosted version requires Docker plus an NVIDIA GPU for the bundled classifier.

Apache 2.0 license: use freely for any purpose, including commercial use, as long as you keep the copyright notice and license.

So what is it?

Adrian is an open-source security monitoring and control system for AI agents, software programs that can take actions autonomously, like browsing the web, calling APIs, or running code. The problem it solves is that AI agents can be manipulated through "prompt injection" (tricking the agent via malicious content it reads), can start behaving in ways that violate their intended purpose, or can make dangerous tool calls. Adrian watches the agent in real time and can block suspicious actions before they happen. What makes Adrian different from simpler monitoring tools is that it analyses not just what the agent does, the tool calls and outputs, but also why it is doing it by examining the agent's reasoning trace. According to the readme, combining behaviour and reasoning analysis improves detection accuracy compared to looking at actions alone. You integrate Adrian into a LangChain or LangGraph agent (two popular Python frameworks for building AI agents) with two lines of Python code. Events are sent to a dashboard where you can review them, classified by severity. You can run in audit-only mode to observe without interfering, or in block mode to halt suspicious actions. The stack can be used through a managed cloud dashboard or self-hosted entirely on your own server using Docker. The self-hosted version runs a Go backend, a web dashboard, and a local AI model for classification. It requires an NVIDIA GPU for the bundled classifier to run at reasonable speed. The project is written in Python for the SDK and is licensed under Apache 2.0.

Copy-paste prompts

Prompt 1
How do I integrate Adrian into my LangChain agent with just a couple lines of code?
Prompt 2
Explain how Adrian analyzes an agent's reasoning trace, not just its actions.
Prompt 3
What is the difference between Adrian's audit-only mode and block mode?
Prompt 4
What do I need to self-host Adrian, including the GPU requirement?

Frequently asked questions

What is adrian?

A monitoring and control system that watches AI agents' actions and reasoning to catch and block dangerous behavior.

What language is adrian written in?

Mainly Python. The stack also includes Python, Go, LangChain.

What license does adrian use?

Apache 2.0 license: use freely for any purpose, including commercial use, as long as you keep the copyright notice and license.

How hard is adrian to set up?

Setup difficulty is rated hard, with roughly 1h+ to a first successful run.

Who is adrian for?

Mainly developer.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.