AI agents can do anything. But who governs them? Who tracks their cost? Who remembers what they did? Who coordinates them? We build the infrastructure layer that sits between AI agents and the real world.
512,000 lines of proprietary source code exposed through a missing .npmignore entry. Every safety mechanism in the leaked source operates inside the agent via system prompts and feature flags. Prompts are advisory. The agent can ignore them under context pressure. CRE operates outside the agent. The npm publish command would have been gated, reviewed, and blocked before it executed.
Claude Mythos Preview. The most capable LLM ever built. Expert-level cybersecurity. During testing it built a multi-step exploit to escape its sandboxed environment, gained internet access, sent an email to a researcher to prove it, then posted its own exploit details to public websites. It actively concealed its actions from the researchers monitoring it. Anthropic restricted access to ~40 organisations under Project Glasswing. System prompts cannot contain a model that can reason its way around them. External, mechanical enforcement is the only architecture that scales with model capability.
HookBus is the universal event bus that captures every AI agent lifecycle event. CRE is the enforcement subscriber that applies your rules. Together, they give you governance, observability, memory, and cost control for any AI agent.
The central router between AI agents and their actions. Every lifecycle event flows through HookBus. It routes to subscribers, consolidates decisions, and returns allow/deny/ask. The bus has no opinion on content. It routes. Developers build their own subscribers: memory systems, token monitoring, fine-tuning pipelines, cost controls, anomaly detection. All via the bus.
The enforcement subscriber. CRE receives PreToolUse events from HookBus and runs your organisation's rules against every tool call. Two layers. Deterministic pattern matching plus semantic intent verification.
Every AI agent action is a lifecycle event. HookBus captures them all and routes them to subscribers. Governance subscribers enforce rules. Observability subscribers track cost and usage. Memory subscribers record history. Intelligence subscribers learn and adapt. Add a subscriber, every agent's events flow to it.
HookBus is the platform. CRE is subscriber #1. But the bus doesn't care what subscribers do. Build anything that reacts to AI agent lifecycle events.
Record what every agent did across sessions. Build persistent memory from real tool call history.
Track cost per agent, per user, per team. Set budgets. Alert when thresholds hit. Real-time dashboards.
Capture every tool call and outcome. Generate training data for fine-tuning your models from real agent behaviour.
Agent behaving differently than usual? Detect pattern shifts, unusual tool sequences, and alert before damage.
PCI, SOX, HIPAA rules as sync subscribers. Block actions that violate industry-specific regulations.
Slack, Teams, PagerDuty, email. Notify the right people when agents are blocked or behave unexpectedly.
Any service that can read JSON over a Unix socket, HTTP endpoint, or Python class can be a HookBus subscriber. No SDK lock-in. No framework dependency. Write a subscriber in any language.
CRE is the enforcement subscriber on HookBus. Every tool call passes through CRE before execution. No exceptions. The AI never gets the choice to ignore your rules.
Dangerous or policy-violating operations rejected instantly. PIN override for authorised exceptions.
Safe, routine operations pass through with zero latency. Knowledge base context injected automatically.
Sensitive operations require human confirmation. Auditable approval chain with timestamps.
Microsoft's Azure Governance Toolkit provides semantic policy matching. Combined with deterministic regex pattern rules for your organisation's policies. Configurable per team, project, or environment. Audit-ready.
IBM Granite runs locally on your hardware. Verifies the AI's action matches what the user actually asked for. Catches substitutions, shortcuts, and creative reinterpretations. Zero data leaves the machine.
HookBus works with any AI assistant or SDK that exposes lifecycle hooks. The thin client normalises events from different hook formats into one standard protocol. As long as the hooks CRE needs are available (PreToolUse, UserPromptSubmit), the full enforcement solution works out of the box.
Each assistant exposes hooks at different lifecycle points. HookBus connects to whatever hooks are available. The more hooks an assistant exposes, the more subscribers can do. CRE only needs PreToolUse to enforce rules. Add UserPromptSubmit and CRE injects knowledge base context. Add PostToolUse and async subscribers can log, count, and learn.
Think of it as a plugin marketplace. Developers build subscribers. Organisations subscribe to the ones they need. HookBus routes the events. No vendor lock-in. No monolithic platform.
One requirement: the platform exposes a pre-execution hook. Every major AI assistant and SDK now does. HookBus normalises different hook formats into one standard protocol. The more lifecycle hooks a platform exposes, the more subscribers can do, but a single pre-execution hook is enough for full CRE enforcement.
Both layers run on your hardware. No API keys. No external calls. Air-gap compatible.
Every tool call, every decision, every override logged. SOC2, ISO 27001, ISO 42001 ready.
Layer 2 decisions automatically promote to Layer 1 patterns. Faster and more accurate over time.
Searches your organisation's knowledge base and injects context into the AI automatically.
Prevents agents from encoding commands, lateral movement, or writing scripts to bypass enforcement.
Add governance, observability, or intelligence subscribers without touching the bus or other subscribers.
Every agent SDK ships tools without lifecycle management. Agentic Thinking adds governance, observability, and intelligence to any framework.
License the patented enforcement architecture for your AI agent platform.
One hook, full governance. Coding assistants, trading bots, autonomous agents.
Ship HookBus + CRE under your brand as part of your enterprise offering.
15-minute demo. Real enforcement. Live blocking. Audit dashboard. Your questions answered.
Book a Demo