What does this release signal mean?

Microsoft published microsoft/agent-governance-toolkit v4.0.0 (microsoft/agent-governance-toolkit). This release signal is evidence of what shipped, changed, or was packaged for users. High-signal details: New version of agent governance toolkit · v4.0.0 Repository: microsoft/agent-governance-toolkit Tag: v4.0.0 Published: 2026-06-01T21:03:58Z Prerelease: no Release notes: Agent Governance Toolkit v4.0.0 **Ship.... onlylabs links this event to 1 captured evidence page and 6 related release signals.

Microsoft Release: microsoft/agent-governance-toolkit v4.0.0

Captured source

source ↗

GitHub/github.com/microsoft/agent-governance-toolkit

microsoft/agent-governance-toolkit v4.0.0

Source ↗

published Jun 1, 2026seen 3dcaptured 9hhttp 200method plain

v4.0.0

Repository: microsoft/agent-governance-toolkit

Tag: v4.0.0

Published: 2026-06-01T21:03:58Z

Prerelease: no

Release notes:

Agent Governance Toolkit v4.0.0

Ship agents to production without losing sleep -- now with consolidated packages, TEE key management, and Entra JWT verification across the mesh.

Highlights

Python Package Consolidation (Breaking)

45 Python packages consolidated into 5 clean distributions:

| Distribution | What is included | |---|---| | agent-governance-toolkit-core | Policy engine, capability model, audit, MCP gateway, identity, trust scoring | | agent-governance-toolkit-runtime | Privilege rings, saga orchestration, termination control | | agent-governance-toolkit-sre | SLOs, error budgets, chaos engineering, circuit breakers | | agent-governance-toolkit-cli | agt CLI, OWASP verification, integrity checks, policy linting | | agent-governance-toolkit[full] | Meta-package installing all of the above |

Old package names (agent-os-kernel, agentmesh-platform, etc.) remain as stub redirects for migration.

New Capabilities

TEE keystore abstraction (ADR 0010): async key management with TEEKeyHandle, SoftwareKeyHandle, and attested key store adapters
Entra-signed JWT verification for mesh-relay WebSocket connections and mesh-registry agent verification
Wire-protocol-aware policy evaluation for SQL and Kubernetes across TypeScript, Rust, Go, and .NET
Credential injection and offload across all four SDK languages
Expanded credential redaction across C#, Python, TypeScript, and Rust
Sandbox subprocess code scanner and OpenShell shell interception
LangGraph v1.0 governance adapter with stale-auth fingerprinting
New CLI governance packages: OpenCode, Antigravity CLI, Claude Code
AGT test replay engine for policy regression testing

Security (15+ fixes)

Closed authorization bypasses in stateless kernel and execute API
Proof-of-possession enforcement on registry endpoints
Trust boundary hardening: POP, capability grant auth, signing-oracle, unknown-DID auto-trust
JWKS/revocation trust-fetch hardening and URL allowlist matching
In-process sandbox hardening against stdlib escape paths
Mute-agent: 11 red-team regression tests
setuptools minimum raised to 78.1.1 for CVE fix

Documentation

README rewrite, docs site refresh, architecture diagrams
ADR-0026 (Foundry AI Gateway PDP), ADR-0028 (AGT Studio), ADR-0029 (policy distribution)
NSA MCP compliance mapping, zh-TW translations
60+ tutorial improvements

Install

ash pip install agent-governance-toolkit[full]

Full changelog: CHANGELOG.md

Notability

notability 5.0/10

New version of agent governance toolkit