rampart

Name: rampart
Author: peg

peg February 10, 2026

63 copies 0 downloads

Open-source firewall for AI agents. Policy engine that audits and controls what OpenClaw, Claude Code, Cursor, Codex, and any AI tool can do on your machine.

Agent Definition

<div align="center">

# 🛡️ Rampart

**A firewall for AI coding agents.**

[![Go](https://img.shields.io/badge/Go-1.24+-00ADD8?style=flat&logo=go)](https://go.dev)
[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](LICENSE)
[![CI](https://github.com/peg/rampart/actions/workflows/ci.yml/badge.svg)](https://github.com/peg/rampart/actions/workflows/ci.yml)
[![Release](https://img.shields.io/github/v/release/peg/rampart?style=flat)](https://github.com/peg/rampart/releases)
[![Docs](https://img.shields.io/badge/Docs-docs.rampart.sh-FF6392?style=flat)](https://docs.rampart.sh)

</div>

---

Claude Code's `--dangerously-skip-permissions` mode — and similar autonomous modes in Cline and Codex — give agents unrestricted shell access. Your agent can read your SSH keys, exfiltrate your `.env`, or `rm -rf /` with no guardrails.

Rampart sits between the agent and your system. Every command, file access, and network request is evaluated against your policy before it executes. Dangerous commands never run.

---

## Install

```bash
# Homebrew (macOS and Linux) — recommended
brew install peg/tap/rampart

# One-line install (no sudo required)
curl -fsSL https://rampart.sh/install | bash

# Go install (requires Go 1.24+)
go install github.com/peg/rampart/cmd/rampart@latest
```

**Windows (PowerShell):**
```powershell
irm https://rampart.sh/install.ps1 | iex
```

After installing, run `rampart quickstart` or follow the setup steps below.

---

## Quick start

Pick your agent and run one command:

```bash
# Claude Code
rampart setup claude-code

# OpenClaw
rampart setup openclaw --plugin

# Cline
rampart setup cline

# Codex CLI
rampart setup codex

# Any other agent (wraps $SHELL)
rampart wrap -- your-agent
```

That's it. Verify everything is working:

```bash
rampart doctor
```

Then watch your agent in real time:

```bash
rampart watch
```

Once running, every tool call goes through Rampart's policy engine first:

```
✅ 14:23:01  exec  "npm test"

Comments

More Agents

View all

documentation

Documentation & Onboarding Agent

Agent that generates comprehensive documentation, API references, architecture diagrams, and developer onboarding guides from existing code.

Community

debugging

Cursor Bug Triage Agent

Agent configuration for systematic bug investigation that traces issues from error logs through the codebase to root cause with suggested fixes.

Community

api

API Integration Agent

Agent for integrating third-party APIs including SDK setup, type generation, error handling, retry logic, and rate limit management.

Community

coding

Cursor Agent Mode

Cursor's built-in autonomous coding agent that can make multi-file edits, run terminal commands, search the codebase, and iteratively build features with minimal human intervention.

Cursor Team

cloud

Cursor Background Agent

Cloud-based autonomous coding agent that runs in the background on remote sandboxed environments, handling complex multi-step tasks while you continue working.

Cursor Team

composer

Cursor Composer Agent

Cursor's multi-file editing agent within Composer mode that can create, edit, and delete files across your entire project in a single conversation.

Cursor Team

rampart

Tags

Comments

More Agents

Documentation & Onboarding Agent

Cursor Bug Triage Agent

API Integration Agent

Cursor Agent Mode

Cursor Background Agent

Cursor Composer Agent