Ship AI agentsyour security teamcan prove.
OmegaEngine red-teams your agents, enforces every action, and signs a cryptographic proof — don't take our word for it. Fire a real decision on the right and verify the signature yourself.
One column ships the breach. The other ships the proof.
Each of these has happened in production. Same agent action — two fates. The only question is which side yours are on.
- Executes silently — no approval, no flag.
- Discovered three days later.
- The money is already gone.
- Intercepted before it runs.
- KYC + SOX violation scored and flagged.
- Blocked · human alerted · signed receipt.
Your guardrails check what the agent says.
We check what it does.
An agent is dangerous when it takes an action — wires money, emails data out, deletes records. We attack the tool calls, auto-generate the fix, prove it works by re-running the attack, and sign the proof. Nobody else owns both the red-team and the enforcement gate.
Measured over 50 taxonomy-grounded attacks (OWASP + MITRE ATLAS). Even a hardenedgpt-4o-mini still leaks via tool-call injection — and even gpt-4o falls to SSRF & spoofed approvals. The gap between 98% and a breach is one attack; only enforcement outside the model closes it, with a signed proof.
Text guardrails are structurally blind to this — the harm is in the tool call, not the words.
One call in. A signed verdict out.
Request queued
Decide. Defend. Prove. Govern.
The full platform behind one drop-in — four pillars of verifiable AI governance: everything to ship autonomous AI you can secure, prove, and control.
Decide
Every agent action runs through the decision kernel
- Pipeline steps
- 12
- LLM providers
- 8
- Every decision
- Signed
- Decision API
- Multi-model arbitration
- Model routing
- BYOK
- SDKs & MCP
Defend
Red-team your agents, then enforce at runtime
- Agentic corpus
- 50 attacks
- Verdicts
- Observational
- Enforcement
- Runtime
- Agent red-team
- Two-tier safety
- Adversarial fuzzer
- CI gate
- Continuous monitoring
Prove
Cryptographic, offline-verifiable evidence
- Every decision
- Ed25519 + Merkle
- Verify
- Tamper-evident
- Frameworks
- OWASP · EU AI Act
- Signed audit trail
- Agent Security Attestation
- Compliance evidence
- Tamper-evident proofs
- Proof ledger
Govern
Policy, approvals, and fleet control
- Policy packs
- Versioned
- Approvals
- HITL + dual
- Retention
- 7d → 7yr
- Policy packs
- HITL approvals
- Governance dashboard
- Compliance reports
- Agent fleet management
Plugs into everything. Replaces nothing.
OmegaEngine sits between your AI agents and their actions. One API call. Any framework. Any model. Works with what you already use.
Wrap the agent you already run.
import { OmegaMiddleware } from "@omegaengine/langchain" const chain = new LLMChain({ llm, prompt }) .pipe(OmegaMiddleware({ apiKey: "..." }))Vendor-neutral — route to any model
Governance inside your CI/CD pipeline
- omega-gate
- omega-redteam-action
- omega-security-scan
- omega-benchmark
TypeScript, Python, or raw REST
Every name maps to a shipped integration
- OpenAI
- Anthropic
- LangChain
- LangGraph
- CrewAI
- LlamaIndex
- AutoGen
- DSPy
- Haystack
- Instructor
- Langfuse
- Mistral
- Gemini
- Cohere
- Semantic Kernel
- Vercel AI
- MCP
- Cursor
- Continue
- Copilot
- VS Code
- Go
- CLI
Built to be audited.
Every decision is scored, attested, and cryptographically sealed — with a replayable trail you can verify yourself. Open source, self-hostable, no black box.
- Processing Pipeline
- 0layers
- Risk Scoring
- 0heuristics
- Model Coverage
- 0providers
- Red-team Corpus
- 0vectors
Cryptographic audit trail on every decision
Decision logs store hashes + metadata, not raw content; PII redaction via the Compliance Suite
Multi-model consensus eliminates single-LLM bias
Automated adversarial assessment on every pull request
Self-hostable in your own VPC — open-source core, fully auditable.
A trust badge you don’t have to trust.
Most trust seals are decoration — a sticker that asks for your faith. Pass the scan and you mint a mark struck from a signed attestation. Turn it over: the signature is right there. Check it yourself against the public key.
Same Ed25519 path as the live record above — check it against /.well-known/jwks.json.
No signature. No key. No reverse to turn over. You just have to trust it.
Our agents are independently scanned. Verify the mark below against the public key.
Trust is a claim. Proof is a hash.
Every safety vendor asks you to believe them. We hand you the signature and let you check the math.
Don’t trust this page. Audit it.
Every signature on this page traces to one published key, anchored in a public, signed transparency log (RFC 6962). The instrument below runs the audit live, in your browser — and only stamps VALID if the real fetches actually pass.
Free to scan. Pay to prove.
Scan your agent for free. Buy a signed attestation when you need to prove it's safe — or subscribe for continuous governance. Not tokens, not seats; you pay for judgment.
Self-assessed, auditor-ready evidence that unblocks an enterprise security review — mapped to OWASP LLM Top 10, MITRE ATLAS, EU AI Act Art. 15 & NIST AI RMF. Cryptographically signed, offline-verifiable.
Developer
1,000 decisions/mo
Includes
- 1,000 decisions/month
- Agent red-team CI gate
- Fix-proof + 1 protected agent
- Full safety system
- Webhooks
- 30-day log retention
Pro
Popular5,000 decisions/mo
Includes
- 5,000 decisions/month
- 9 processing steps
- Governance dashboard
- Posture dashboard
- CI/CD quick-scan
- 90-day retention
Business
25,000 decisions/mo
Includes
- 25,000 decisions/month
- All 12 processing steps
- Auto-remediation
- Ensemble (3 models)
- All model tiers
- 365-day retention
Enterprise
Unlimited decisions/mo
Includes
- Unlimited decisions
- All 12 processing steps
- Multi-model arbitration
- Enterprise SLA
- Custom integrations
- Unlimited retention
Everything you need to know before getting started.
Every time your AI agent calls our /v2/judge endpoint, that's one decision. Each decision runs through up to 12 processing steps — safety classification, risk scoring, policy enforcement, adversarial detection, cryptographic proof, and more. You're not paying for tokens or compute. You're paying for judgment.
The policy, safety, and proof steps add only light overhead — in a real decision most of the time is the LLM call itself, which depends on the model you route to. We return per-stage timing on every response, so you can measure latency for your own workload instead of trusting a marketing number.
Yes. Upgrade or downgrade instantly from your dashboard. When upgrading, you'll be pro-rated for the remainder of your billing cycle. When downgrading, your current tier stays active until the cycle ends. No lock-ins, no penalties.
You'll receive alerts at 80% and 95% usage. Decisions continue processing — we never block your agents in production. Overages are billed at a transparent per-decision rate visible in your dashboard before they occur.
Yes. The Free tier gives you 100 decisions per month with 5 processing steps — enough to integrate OmegaEngine, run real scenarios, and evaluate the platform before committing. No credit card required.
Cancel anytime — your plan stays active until the end of the billing period, no lock-in. Beyond that, fees are non-refundable except as required by law, per our Terms of Service (/terms).
We're an early-stage product and don't yet hold formal certifications like SOC 2 or HIPAA. What's built today: a tamper-evident, cryptographically signed audit trail on every decision (each with a unique Halo ID), PII redaction via the Compliance Suite scanner, configurable audit-log retention that scales with your plan (up to unlimited on the top tier), and an open-source, self-hostable core you can run in your own environment. If you need a specific certification, talk to us about your requirements and timeline.
Never. Our DPA commits in writing, for every tier, that your inputs, outputs, and decision payloads are never used to train or fine-tune models. Only aggregated reliability telemetry (latency, error rates) is used to run the service.
Fail-closed by design: if the system fails, actions are blocked — never silently approved. Circuit breakers route around unhealthy model providers, and live availability is published on our status page.
It's signed, offline-verifiable red-team evidence mapped to OWASP, MITRE ATLAS, NIST AI RMF, and EU AI Act Art. 15 — your auditor can re-verify every finding without trusting us. It is not a certification or audit; it's point-in-time evidence for your governance process.
Create a free account at /signup, then go to Dashboard → API Keys and generate one. Pass it as the x-api-key header on every request. No credit card required for the free tier.
Yes — OmegaEngine is BYOK-only on every plan. You pay model providers (OpenAI, Anthropic, Google, Mistral, Groq, DeepSeek, Meta) directly with your own key, and one-off scan keys are never stored. We run the governance (risk scoring, policy, attestation) and never resell or mark up inference.
Only agents and systems you own or are explicitly authorized to test, per our Acceptable Use Policy (/aup). During scans, tool calls are recorded, never executed — no real side effect can fire.
Yes. The core is Apache-2.0 open source: clone the repo, configure your env, docker compose up. Same API as the hosted service, on your infrastructure.
support@omegaengine.ai (we target a 2-business-day response, prioritized for paid plans), GitHub Discussions for community, security@omegaengine.ai for vulnerabilities — triaged ahead of everything else.
Still have questions?
Ship AI your enterprise can trust.
Free tier includes 100 decisions. Full platform access. No credit card. Production-ready in 5 minutes.
$npm install @omegaengine/sdk