PulseGateLive intelligence on AI-era software
Coverage
172,594

Software tracked

 

Freshness
30 min ago

Last update

 

Cadence
870/day

7-day average

Indexed today: 777

PulseGate

Live intelligence on the software shipping in the AI era — apps, models, agents, and infra.

Software is shipping faster than ever, and a growing share of it lives outside the official app stores. PulseGate tracks it live — free, for builders, analysts, and everyone keeping up.

Platform

  • All Apps
  • Categories
  • Industry Updates
  • Data Sources
  • Coverage Rules
  • Glossary
  • Embed Widget

Support

  • Help Center
  • Suggest a URL
  • Report an Issue

Company

  • About
  • Press & Data
  • Contact
  • Platform Status

Legal

  • Privacy
  • Terms
  • Disclaimer

© 2026 PulseGate. Operated by Dymaxio s.r.o., Prague, Czech Republic.·

All systems operational
PulseGate
HUHushSpec logo
HushSpec
Visit ↗
  1. Home/
  2. Security & compliance platforms/
  3. HushSpec
←Back to results
HHushSpec logo

HushSpec

hushspec.org·Infrastructure

HushSpec is an open specification designed to declare security rules for AI agents at the boundary where they interact with external tools and systems. It provides a portable, engine-neutral rule language that specifies what an agent may access, invoke, or transmit, allowing developers to define which interactions are allowed, blocked, or require confirmation across diverse runtimes, frameworks, and programming languages. The specification focuses on declarative policy, separating the definition of security boundaries from their enforcement, which is handled by conforming engines.

The rule language in HushSpec consists of ten distinct rule types, each resolving to one of three decisions: allow, warn, or deny. These rules cover areas such as blocking access to sensitive filesystem paths, allowlist-based access control, network egress by domain, detection of secrets in file content, validation of patch integrity, blocking dangerous shell commands, controlling tool and MCP invocations, monitoring computer use agent actions, managing remote desktop side channels, and controlling input injection capabilities. The rules are stateless, purely declarative, and do not involve runtime state or detection algorithms, ensuring portability and clarity.

HushSpec provides SDKs in Rust, TypeScript, Python, and Go, each implementing the full evaluation pipeline for policies. These SDKs include features such as parsing, validation, merging, resolution, evaluation, auditing, and detection helpers. The Rust SDK serves as the reference implementation and uniquely supports Ed25519 signing, while TypeScript and Python offer additional adapters and observer layers. Runtime integrations vary by language, but the decision model remains consistent across all SDKs.

A command-line tool, h2h, supports the entire policy lifecycle, offering subcommands for validating, testing, linting, diffing, formatting, auditing, and signing policy documents, as well as emergency controls and key management. HushSpec also includes seven built-in profiles for common deployment scenarios, such as balanced security, strict lockdown, development-friendly settings, AI coding assistants, CI/CD pipelines, remote desktop sessions, and emergency deny-all modes. Optional modules extend the core with features like state machines, origin-aware profiles, and detection thresholds for advanced use cases.

0 license, and its documentation, SDKs, and command-line tooling are accessible for developers aiming to secure AI agent interactions in a portable and standardized way.

Open SourceApache-2.0
WebCLIAPISelf-hosted
H
HushSpec preview
Visit hushspec.org↗
⭐25
stars
🍴1
fork
✓6
features
📅2026
since

Overview

6 features

HushSpec sits in PulseGate's Security & compliance platforms category. It focuses on standardizing and enforcing security boundaries for AI agent tool interactions across runtimes and frameworks. It is built as an open-source project for AI agent framework developers. HushSpec is open source under the Apache-2.0 license. It runs on the web, the command line, and API, and it can be self-hosted.

HushSpec first shipped in 2026. Development happens publicly on GitHub with 25 stars and 1 commits in the last 90 days. Key capabilities include policy declaration, spec validation, and engine-neutral. It exposes integrations via an MCP server.

  • ✓Policy declaration
  • ✓Spec validation
  • ✓Engine-neutral
  • ✓Language SDKs
  • ✓Rule evaluation
  • ✓Receipt signing

Tags

ai-agent-securitypolicy-specificationruntime-boundaries

Built with & integrations

Hosting
vercel
AI providers
openai
Connectors
MCP
Runs on
BrowserCLIAPI-onlySelf-hosted

Trust & compliance

LicenseApache-2.0
Verified signals
✓ HTTPS✓ Open Source✓ GitHub · ★ 25✓ Active maintenance

Recent events

Latest indexed changes and source events

  1. IndexedJun 25, 10:56 PM

    Listing verified by the PulseGate indexer

    Source: PulseGate indexerOpen ↗

Frequently asked questions about HushSpec

What does HushSpec do?
HushSpec focuses on standardizing and enforcing security boundaries for AI agent tool interactions across runtimes and frameworks. It is catalogued under Security & compliance platforms on PulseGate.
Who is HushSpec for?
HushSpec is an open-source project built for AI agent framework developers.
Is HushSpec free?
Yes — HushSpec is open source under the Apache-2.0 license and free to use.
What platforms does HushSpec run on?
HushSpec runs on the web, the command line, and API. It can also be self-hosted.
Is HushSpec still maintained?
PulseGate's automated liveness checks currently classify HushSpec as active. The GitHub repository shows 1 commits in the last 90 days.
What are alternatives to HushSpec?
Similar tools tracked by PulseGate include Spec, OpenSpec, and MySpec.SpecOpenSpecMySpec
When did HushSpec launch?
HushSpec first shipped in 2026.
Is HushSpec open source?
Yes — HushSpec is open source under the Apache-2.0 license, developed on GitHub.

At a glance

Pricing
Open Source
Platforms
Cli · Web
Languages
English
Open source
Yes · ★ 25
License
Apache-2.0
First seen
Mar 31, 2026
Activity
🟢 Active
Status
🟢 Active
Built for
AI agent framework developers
Model
Open source
Solves
Standardizing and enforcing security boundaries for AI agent tool interactions across runtimes and frameworks.

Developer

Backbaylabs
Solo developer
↗ GitHub

Open source

View on GitHub →
⭐ Stars
25
🍴 Forks
1
Open issues
0
Last commit
3mo ago
Commits 90d
1
Contributors
1
Authorship
Solo
Default branch
main

Live coverage

Confidence
Medium · 73
Indexed
Jun 25, 2026
Lifecycle
Alive
Activity
Active
First seen
Mar 2026
Last seen
3w ago
Identity audit (9)
Entity ID
cmqu3tbga0c72dntve55hkaie
Slug
hushspec-portable-security-rules-for-ai-agents-hushspec-org
Verification state
Indexed for public listing
Claim / listing state
Unclaimed · listed: yes
Index status
Included in index
Latest evidence snapshot
Jun 26, 2026
Timeline basis
Indexed-at chronology (no inferred launch/funding milestones).
Last updated
Jul 13, 2026
Canonical URL
https://hushspec.org/

Similar apps

Other apps tracked under the same category.

  • Spec
    getspec.ai
  • OpenSpec
    openspec.dev
  • MySpec
    myspec.dev
  • OpenSpec
    danclarke.com
  • specsmith
    github.com
  • OSpec
    ospec.ai