Automated governance checks for agent code in CI #2079
Description
Strands makes agent orchestration clean and composable. One thing I've noticed missing from most agent SDKs (including this one) is a way to validate governance patterns in CI before code ships.
For regulated environments, every PR touching agent code should verify: audit logging exists, error handling wraps agent calls, kill switches are reachable, and human oversight gates are present where needed.
I've been working on a GitHub Action that does exactly this - scans Python files for agent framework imports and checks governance coverage. It's at asqav-compliance. Would love to hear if this is on the roadmap or if there's a preferred approach for compliance validation with Strands.