Govrixaioss
Govrix -AI Agent Governance Platform
Install / Use
/learn @Govrix-AI/GovrixaiossREADME
🎯 What is Govrix AI OSS?
Govrix AI OSS is a transparent reverse proxy that sits between your AI agents and their APIs (OpenAI, Anthropic, etc.). It captures every request and response — without touching your agent code.
One env var. Zero code changes. Full visibility.
export OPENAI_BASE_URL=http://localhost:4000/proxy/openai/v1
# That's it. Your agents keep working exactly as before.
Now every AI call is automatically logged, costed, scanned for PII, and attributed to the agent that made it.
┌─────────────────┐ ┌────────────────────┐ ┌───────────────────┐
│ │ │ 🛡️ Govrix AI OSS │ │ │
│ Your Agents │ ────► │ (:4000) │ ────► │ OpenAI / Claude │
│ │ └────────┬───────────┘ │ │
└─────────────────┘ │ └───────────────────┘
▼
┌────────────────┐
│ PostgreSQL │
│ & Dashboard │
└────────────────┘
🌟 Why Govrix?
- Zero Friction — No SDKs to install. Just change one environment variable (
OPENAI_BASE_URL). - Complete Autonomy — Agents are auto-discovered. No manual registration required.
- Audit-Ready — Cryptographically hashes every event in a Merkle chain for tamper evidence.
- Privacy First — Scans and flags 5 types of PII locally. Your data never leaves your infrastructure.
✨ Core Features
| Feature | What it does | | -------------------------------- | ------------------------------------------------------------------------------------- | | 🔍 Agent Auto-Discovery | Every agent is automatically detected and catalogued — no manual registration, no SDK | | 📋 Full Event Logging | Every request/response captured with model, tokens, cost, latency, and tool calls | | 💰 Cost Attribution | Track AI spend by agent, model, and time period — no more surprise bills | | 🔐 PII Detection | Flags emails, phone numbers, SSNs, credit cards, and IPs in agent traffic | | 🔗 Tamper-Evident Audit Trail | SHA-256 Merkle hash chain proves event ordering and integrity | | 📊 Real-Time Dashboard | Overview, agents, events, costs, budgets, projects, and compliance reports | | 📡 Streaming Support | Full SSE and chunked transfer support with minimal latency overhead | | ⚙️ Policy Engine | YAML-based rules to allow, block, or alert on agent behaviors |
<details> <summary><b>View deep-dive capabilities</b></summary> <br/>- Agent Identity & Tracking: Tracks source IP, active status, error counts, and last models used.
- Tamper Evidence Fields:
session_id,timestamp,lineage_hash, andcompliance_tagare mandatory on every request. - Streaming Pipeline: Tees SSE streams with under 5ms (p99) latency overhead using a Rust
hyperhot-path. - Async Write Buffer: Fire-and-forget channel batches writes to TimescaleDB every 100ms so I/O never blocks agent traffic.
- Reporting: Generates artifacts ready for SOC 2, HIPAA, EU AI Act, and FINRA auditors.
Supported protocols: OpenAI · Anthropic · MCP · A2A · Custom HTTP
<br/>🚀 Quick Start
Requires: Docker & Docker Compose v2
Option A: One-Line Install
# Linux / macOS
curl -sSL https://raw.githubusercontent.com/Govrix-AI/govrixaioss/main/install.sh | bash
# Windows (PowerShell as Admin)
iwr -useb https://raw.githubusercontent.com/Govrix-AI/govrixaioss/main/install.ps1 | iex
Option B: Pre-built Docker Images (no Rust toolchain needed)
Images are published to GitHub Container Registry on every push to main:
# Pull the proxy
docker pull ghcr.io/govrix-ai/govrix-ai-oss:latest
# Pull the dashboard
docker pull ghcr.io/govrix-ai/govrix-ai-oss-dashboard:latest
Both images are multi-platform (linux/amd64 + linux/arm64). Then start everything with:
git clone https://github.com/Govrix-AI/govrixaioss.git
cd govrixaioss
docker compose -f docker/docker-compose.yml up -d
Option C: Clone & Build from Source
git clone https://github.com/Govrix-AI/govrixaioss.git
cd govrixaioss
docker compose -f docker/docker-compose.yml up -d
What starts
| Service | Port | Purpose |
| --------------- | ------ | ------------------------------ |
| Proxy | 4000 | Route your agents here |
| REST API | 4001 | Dashboard reads data from here |
| Dashboard | 3000 | Web UI — open in browser |
| TimescaleDB | 5432 | Event storage (PostgreSQL 16) |
🔌 Add Govrix to Your Existing Agent Setup (Step-by-Step)
Govrix AI OSS works as a transparent reverse proxy. You change one line in your existing code — the API base URL — and every request flows through Govrix for logging, cost tracking, and compliance. Your agent code, prompts, and logic stay exactly the same.
How it works: Instead of your agent calling
api.openai.comdirectly, it callslocalhost:4000(Govrix). Govrix logs the request and forwards it to the real API. The response comes back through Govrix and is returned to your agent unchanged.
Step 1 — Make sure Govrix AI OSS is running
# If you haven't started it yet:
docker compose -f docker/docker-compose.yml up -d
# Verify all services are up:
curl http://localhost:4001/health # → {"status":"ok"}
curl http://localhost:4001/ready # → {"status":"ready"}
You should see all 4 services running (Proxy on :4000, API on :4001, Dashboard on :3000, TimescaleDB on :5432).
Step 2 — Change ONE line in your agent code
Pick your framework below. Each example shows the exact line you need to change.
<details open> <summary><b>🐍 Python — OpenAI SDK</b></summary>❌ BEFORE (direct to OpenAI):
from openai import OpenAI
client = OpenAI(api_key="sk-...")
response = client.chat.completions.create(
model="gpt-4",
messages=[{"role": "user", "content": "Hello"}]
)
✅ AFTER (through Govrix AI OSS):
from openai import OpenAI
client = OpenAI(
api_key="sk-...", # ← keep your real key
base_url="http://localhost:4000/proxy/openai/v1", # ← ADD THIS LINE
default_headers={"x-govrix-ai-oss-agent-id": "my-agent-name"} # ← OPTION
