The AI Agent Governance Scorecard.

15 questions across audit, approvals, tool permissions, vendor lock-in, model portability, and prompt-injection defense. Every "no" is a gap.

Free PDF, no calls, no spam.

Six categories, fifteen questions

The same questions a security team asks before agents touch production. Score yourself before they do it for you.

Audit

Is every agent action logged in a way that's tamper-evident — or do you just have application logs you hope nobody edits?

Approvals

Can a human review and approve consequential actions before they execute, or do agents act first and explain later?

Tool permissions

Is each agent scoped to exactly the tools and data it needs, or does it inherit a service account that can touch everything?

Vendor lock-in

Do you own your agent definitions and configuration, or are they trapped in a platform you can't export from?

Model portability

Can you swap the model or provider behind an agent without a rebuild, or are you welded to one vendor's API?

Prompt-injection defense

Is there anything between untrusted input and a privileged action, or can a crafted message drive your agent?

No surprises, no drip sequence

1

An email arrives

We send the download link to the address you give us — usually within a minute. Check spam if it's not there.

2

You download the PDF

15 questions, scored. Work through it with your team in 20 minutes. Every "no" is a gap to close before your next security review.

3

An optional follow-up

If you want to talk through your score, we're around. If you don't, you won't hear from us again. No drip sequence, no sales pressure.