One ambiguous prompt, one destructive command.
An AI agent can cheerfully run rm -rf, curl | sh, npm install <random> or aws s3 rm, sometimes from a single typo, sometimes from a malicious instruction buried in context the model just ingested.
DarkGuard
AI coding agent governance
Control and Governance Platform
For AI Agents.
DarkGuard is the central governance solution for the AI coding agents on your development machines. Set fleet-wide allow, deny and ask rules for every shell command Claude Code, OpenCode, Codex, Copilot and VS Code try to run, and audit every attempt, on every endpoint, in real time.
Built for the AI coding agents your engineers actually use
The Problem
Your AI coding agents can already run anything.
Claude Code, OpenCode, Codex, Copilot and VS Code don't just suggest commands anymore; they execute them. With your developer's credentials. On your endpoints. Against your repositories. The controls to govern that haven't existed yet.
Per-machine settings don't scale.
Every AI coding tool ships its own permission file, configured per-laptop, per-developer, per-tool. There's no central place to say "engineering can install npm packages, but no one in finance can run apt." So nobody does.
No fleet-wide visibility. Anywhere.
Which machines run AI agents? Which agents tried what last week? Which were blocked, which slipped through? Most security teams genuinely cannot answer these questions today; there is no inventory and no log.
When something breaks, you have nothing.
If an AI agent does the wrong thing, security teams need an audit trail to investigate against. Static policy documents don't satisfy NIS2, ISO 27001 or the EU AI Act either; regulators want runtime evidence of human oversight.
The Solution
Allow. Deny. Ask. Audited.
DarkGuard sits between your AI coding agents and your operating system. Every command they attempt is matched against the policy you set in a single console, and the verdict, plus a full audit record, lands on your security team's screen in real time.
ALLOW
Trust the safe stuff.
Read-only commands, repo navigation, test runs and your team's pre-vetted tooling clear instantly and silently. Developers feel nothing.
git status · npm test · python -m pytest
ASK
Put a human in the loop.
For commands that aren't quite blocked but warrant a glance, a package install, a system change; DarkGuard escalates to a real person before the AI proceeds.
npm install <new package> · sudo apt install …
DENY
Stop the bad ones cold.
The dangerous patterns: destructive deletes, piped curls, package poisoning attempts, never reach the shell. The agent is told no, the event is logged, the machine is fine.
rm -rf /* · curl … | sh · aws s3 rm s3://prod
Central policy, fleet-wide reach
Set rules once in the console. Every endpoint picks them up automatically. No mass SSH, no per-machine drift.
Departments, not just orgs
Engineering can have a permissive ruleset. Finance can ban every package install. Contractors can have their own posture entirely.
Package-manager aware
One rule covers every install variant. npm install, npm i, yarn, pnpm, pip, apt, brew; DarkGuard expands them for you.
Immutable audit trail
Every attempt: allowed, denied, asked, recorded with command, host, IP, service and timestamp. CSV export for SIEM ingestion is built in.
Live compliance posture
A continuously-scored 0-100 view of license health, rule coverage, agent liveness and governance, with a 12-item checklist auditors recognise.
One agent, every OS
A single lightweight agent for Windows, Linux and macOS. One-line installer. Self-updating. Revoke any endpoint in one click.
What DarkGuard does
Governance for every command your agents run.
Four capabilities, one control plane - from the instant an AI agent proposes a command to the audit trail your compliance team signs off on.
01 Real-time
See every command the instant it’s proposed
DarkGuard sits inline with Claude Code, Copilot, Codex and the rest of your toolchain. Every shell command, file write and network call is judged against your policy before it can run - in single-digit milliseconds.
- Inline verdicts - allow, ask or deny on every single action.
- Zero agent changes - drop-in, works with the tools your engineers already use.
- Full context - command, working directory, agent identity and repo, all captured.
02 Policy
Write a rule once. Enforce it everywhere.
Express intent in plain glob and regex patterns. Rules cascade from organisation to team to repository, so a single deny on destructive commands protects every project at once.
- Layered policy - org, team and repo rules merge predictably.
- Safe by default - anything unmatched falls back to “ask”.
- Instant rollout - new rules apply on the next command, no redeploy.
03 Insight
Know what your agents are doing - at a glance
Every verdict streams into a live dashboard. Spot the noisiest repositories, the most-blocked commands and unusual spikes before they ever become incidents.
- Live metrics - verdicts, agents and blocked actions in real time.
- Trends - 14-day activity, top commands and per-team breakdowns.
- Export - stream events to your SIEM or download as CSV.
0
Commands governed · today
0%
Auto-allowed
0
Blocked · today
04 Assurance
Coverage you can prove to an auditor
DarkGuard governs every major AI coding agent and keeps an immutable, time-stamped record of every decision - mapped to the frameworks your auditors already ask about.
- All major agents - one policy across your whole toolchain.
- Immutable audit log - tamper-evident and retained for as long as you need.
- Framework-aligned - EU AI Act, NIS2, ISO 27001 and SOC 2.
CCClaude CodeMonitored
GHGitHub CopilotMonitored
CXCodex CLIMonitored
OCOpenCodeMonitored
CUCursorMonitored
GMGemini CLIMonitored
EU AI Act
NIS2
ISO 27001
SOC 2
See it in action
From shadow AI to governed AI in under 30 seconds.
Watch DarkGuard intercept a Claude Code agent attempting destructive commands on a developer workstation, escalate the call to a human operator, and record the whole exchange, fleet-wide, in real time.
01 / DEPLOY
Install the agent
One-line installer. Windows, Linux, macOS. MDM-friendly.
02 / DEFINE
Set your rules
Allow, deny or ask, by command, package, organisation or department.
03 / ENFORCE
Govern every command
Every attempt your AI coding agents make is matched against policy before it runs.
04 / AUDIT
Prove it
Auditor-ready evidence on demand, centralised.
Get in touch
See DarkGuard against your own AI tools.
Tell us what your engineers run and where, and we'll set up a private demo against a representative environment. A real human from DARKDATA will reply within one business day.