Open Source · MIT License · Built in Rust

Run AI Agents Inside Hardware-Isolated VMs

A3S is a modular Rust ecosystem for production AI agents — hardware TEE isolation, privacy-aware security, and a full agent framework in one coherent stack.

Get Started View on GitHub

Why A3S

The problems A3S solves

Most agent frameworks ignore the hard parts. A3S is built around them.

Hardware isolation by default

Every agent runs inside a MicroVM backed by AMD SEV-SNP or Intel TDX. The host cannot read agent memory. Attestation is built in, not bolted on.

Privacy-aware at every layer

SafeClaw classifies PII, tracks data taint through tool calls, detects prompt injection, and audits every interaction — before it reaches the LLM.

Production-grade performance

Lane delivers 33k–50k ops/sec priority scheduling. Box cold-starts VMs in ~200ms. Power runs local LLMs with RA-TLS attestation. All in pure Rust.

Composable, not monolithic

Use Code standalone, add Box for isolation, plug in SafeClaw for security. Every module has a trait interface — swap any piece without touching the rest.

Framework

Build agents, not boilerplate

CodeAgent Framework

Embeddable AI coding agent library — multi-session, 12 built-in tools, skills, subagents, planning, hooks, MCP.

Applications

Infrastructure that runs agents safely

BoxMicroVM Runtime

VM-isolated sandbox — OCI images, Docker CLI, WarmPool, CRI, TEE support.

PowerLLM Inference

Privacy-preserving LLM inference — OpenAI-compatible API, TEE support, multi-backend, multi-GPU, tool calling.

GatewayAPI Gateway

15 middlewares, Knative autoscaling, HCL hot-reload, TLS/ACME.

SafeClawSecurity Proxy

PII classification, taint tracking, injection detection, compliance audit (HIPAA / PCI-DSS / GDPR).

Libraries

Composable primitives

LanePriority Queue

6 built-in lanes, retry/DLQ, rate limiting, persistent storage, 33k–50k ops/sec.

EventPub/Sub

Pluggable event bus — NATS JetStream + in-memory, schema validation, AES-256-GCM encryption.

SearchMeta Search

9-engine consensus ranking — DuckDuckGo, Brave, Google, Baidu, proxy rotation.

MemoryMemory Storage

Episodic / semantic / procedural / working memory, atomic persistence, relevance decay scoring.

Quick Install

Available on crates.io, PyPI, npm, and Homebrew

Rustcargo add a3s-code-core

Pythonpip install a3s-code a3s-lane a3s-search

Node.jsnpm install @a3s-lab/code @a3s-lab/lane

Homebrewbrew tap a3s-lab/tap && brew install a3s-search a3s-power

Ready to build?

Start with the Code framework and add modules as you need them.

Read the Docs Star on GitHub