One command.
Every AI tool under control.
Identity. Governance. Compliance. Audit. Forensics. AIBOM. Install the full Custodex pipeline across Claude Code, Cursor, Gemini CLI, and OpenCode with a single command. No SDK changes. Just run npx custodex.
Every major AI coding tool.
Full pipeline. Zero config.
Claude Code
MANDATORYFull lifecycle coverage — identity, policy enforcement, compliance checks, audit trails, and AIBOM generation. Deep runtime integration.
Cursor
MANDATORYNative integration with failClosed support. Agent identification, action governance, auto-compliance, and forensic tracing built in.
Gemini CLI
MANDATORYSession-level identity tracking, real-time policy enforcement, compliance attestation, and immutable audit logging per action.
OpenCode
MANDATORYTypeScript-native integration. Identity verification, governance policies, compliance automation, and AI Bill of Materials — all automatic.
Six layers.
One install.
Identification
Unique agent identity, session fingerprints, and cryptographic certificates for every AI tool.
Governance
Policy enforcement on every action — file writes, shell commands, MCP calls, and subagent spawning.
Auto Compliance
Automated framework assessments against Singapore MGF, EU AI Act, SOC 2, and custom standards.
Audit Trailing
Hash-chained immutable audit logs for every decision and action, tamper-proof by design.
Forensics
Decision traces, agent lineage, prompt reconstruction, and full causal chain analysis.
Automated AIBOM
Real-time AI Bill of Materials generation — models, tools, data sources, and dependencies tracked.
What Custodex covers,
across every tool.
| Capability | Claude Code | Cursor | Gemini CLI | OpenCode |
|---|---|---|---|---|
| Agent Identity | ||||
| Session Fingerprint | ||||
| File Write Control | ||||
| Shell Gating | ||||
| MCP Tool Control | ||||
| Subagent Tracking | — | — | ||
| Auto Compliance | ||||
| Policy Attestation | — | |||
| Immutable Audit Log | ||||
| Decision Traces | — | — | ||
| Agent Lineage | — | — | ||
| Automated AIBOM |
Three steps to
full-stack AI control.
Install
npx custodex --api-key cus_your_key_hereAutomatic Detection + Configuration
Custodex detects your installed AI tools and activates the full pipeline for each one — identity assignment, governance policies, compliance frameworks, audit logging, and AIBOM generation. Global config means every project, every session.
Full Pipeline Active
Every action is identity-verified, policy-checked, compliance-validated, and audit-logged in real time. Denied actions are blocked instantly. Decision traces provide full forensic lineage. AIBOM updates automatically.
Agent: Writing to .env file...
→ Identity: agent-7f3a verified (session #2841)
→ Governance: DENIED — Policy "secret-protection"
→ Compliance: EU AI Act Art. 14 — logged
→ Audit: hash-chained to block #9402
→ AIBOM: entry updatedRuntime + SDK.
Layered control.
Custodex manages the full lifecycle automatically — identity, governance, compliance, audit, and AIBOM. For custom agents and application-level control, pair with our SDK.
from custodex import Custodex, governed
custodex = Custodex(api_key="cus_xxx")
@governed(scope="crm:write")
async def update_customer(customer_id: str, data: dict):
return await crm.update(customer_id, data)import { Custodex } from 'custodex';
const custodex = new Custodex({ apiKey: 'cus_xxx' });
const result = await custodex.govern(
{ action: 'db.write', scope: 'database:write' },
() => db.query('UPDATE users SET ...')
);Ready to take control of
your AI agents?
One command activates identity, governance, compliance, audit, forensics, and AIBOM across every AI tool you use. No code changes required.