Stop AI agents from doing things you didn't ask for.
Reins watches every action your agent takes - and stops the ones you'd regret. Free and open source.
npm install -g @pegasi/reins
What it does
Three capabilities. One skill.
Enforce every action
Policy-based enforcement at runtime. Filesystem writes, shell commands, browser actions, and MCP calls evaluated against policy. Destructive patterns blocked, ambiguous ones require human approval.
reins policyScan your environment
13 high-signal security checks. Gateway binding, API key exposure, file permissions, sandbox isolation, sensitive directory access, CVE detection. Auto-fix what's safe. HTML report for your security team.
reins scanMonitor for drift
Save a baseline. Diff current state against it. Alerts when posture worsens or config changes without approval. Cron-friendly. Catch permission creep and skill tampering before they become incidents.
reins scan --monitorAgent-neutral by design
Reins governs any agent that takes actions
Write policy once. Enforce everywhere.
Anthropic and OpenAI build the horses. We build the reins.
Mapped to OWASP
Reins maps to 30 risks across three OWASP frameworks for AI agent security. Full coverage matrix documents what's addressed, partial, or on the roadmap.
MCP Top 10
Security risks for Model Context Protocol servers and tools
Agentic Top 10
Risks in autonomous multi-step agent systems
Skills Top 10
Skill-level risks in agentic runtimes
Why Reins?
In Greek myth, Athena gave Bellerophon the golden bridle — reins included — that let him guide Pegasus.
Raw power is not enough. What matters is making it controllable.
The agents are the horses. Reins is the bridle.
For enterprise teams
Reins is the open-source enforcement layer. Pegasi adds the control plane — executive dashboards, framework-mapped evidence for ISO 42001 and AIUC-1, and multi-agent coverage across your environment.
© 2026 Pegasi AI. All rights reserved.