Audit-Grade Evidence for AI Agents — In Your Cluster
Your FFIEC, SOC 2, HIPAA, or FedRAMP auditor will ask what your AI agents did, who authorized it, and where the evidence lives. Hexr puts signed, control-mapped evidence rows into your own Postgres — per process, per agent call, any framework. Nothing leaves your VPC.
Per-Process
SPIFFE Identity
Customer-Owned
Evidence in Your Postgres
Auditor-Mapped
SOC 2 · HIPAA · IL5 Controls
Like Iru for audit maps · Like CrowdStrike for per-process attestation · Like Datadog for OTel spans. Built for the auditor, not the SRE.
Built on Open Standards
Live Demos — Real Clusters, Real Evidence
EKS (Acme) and AKS (Globex) are running right now. Pick a scenario.
Built for the Auditor and the Engineer
FFIEC, SOC 2, HIPAA, FedRAMP IL5 — every capability maps to a control your auditor recognises. Identity flows into policy, policy fires OPA, OPA writes a signed evidence row, evidence rows produce the PDF.
One SDK. Two Routes.
The Hexr SDK is the universal entry point — source-available under HSAL v1, the same decorators on every framework and every runtime. Then pick how your data plane reaches the Hexr Control Plane: cloud-connected (Hybrid) or fully offline (Air-Gapped).
The Honest Comparison
Against the two most distribution-rich agent-governance platforms. Hexr is not a replacement for AgentCore or Agent 365 — it's the per-process evidence layer regulated buyers need that neither hyperscaler can ship from their own cloud.
| Dimension | AWS AgentCore | MS Agent 365 | Hexr |
|---|---|---|---|
| Runs on any K8s (EKS / GKE / AKS / on-prem) | AWS only | Microsoft cloud only | |
| Air-gapped deploy (FedRAMP High / IL5) | |||
| Per-process host attestation (SPIFFE + hostPID) | Pod-level only | Device / endpoint | Per process |
| Catches forked / unattested binary | |||
| Sub-agent SPIFFE identity | |||
| Evidence stays in customer VPC | Sent to AWS | Sent to Microsoft | |
| Auditor-mapped (SOC 2 / HIPAA / NIST / OWASP ASI) | Generic CloudTrail | Generic admin logs | |
| BYO Root CA (Vault PKI) | |||
| Framework-agnostic instrumentation | SDK contract | Per-vendor SDC integration | Below the framework |
| A2A mTLS between agents | |||
| Open standards (SPIFFE, OPA, OTel) | Proprietary | Proprietary |
AgentCore on EKS, ADK on GKE, or Copilot Studio on Microsoft 365? Keep them. Hexr installs in the same cluster (or as a customer-hosted evidence-api alongside a managed runtime) and produces the auditor-mapped, per-process evidence trail none of them can.