Skip to content

Add asqav governance integration#439

Open
jagmarques wants to merge 3 commits intodeepset-ai:mainfrom
jagmarques:add-asqav-governance-integration
Open

Add asqav governance integration#439
jagmarques wants to merge 3 commits intodeepset-ai:mainfrom
jagmarques:add-asqav-governance-integration

Conversation

@jagmarques
Copy link
Copy Markdown

@jagmarques jagmarques commented Apr 8, 2026
edited
Loading

Summary

Adds asqav as a governance and audit trail integration for Haystack pipelines.

  • Introduces AsqavComponent, a native Haystack @component that signs data flowing through pipelines with ML-DSA-65 post-quantum signatures via the asqav API
  • Fail-open design - signing failures are logged but never break the pipeline
  • Each signed action returns a signature_id linking to the tamper-evident audit record

Checklist

  • Follows the draft-integration.md frontmatter format exactly
  • layout, name, description, authors, pypi, repo, type, report_issue, version, toc all present
  • At least one of pypi or repo is included (both are)
  • Code examples use the real SDK API (AsqavComponent, asqav.init(), Agent-based signing)
  • Type is Monitoring Tool matching the governance/observability category
  • No logo file added yet - happy to add one if maintainers want it

Links

@jagmarques jagmarques requested a review from a team as a code owner April 8, 2026 08:23
@jagmarques
Fix hallucinated API methods in asqav integration docs
5b096c1 
Replace non-existent asqav.wrap(), asqav.get_logs(), asqav.export_logs(),
and AsqavPipeline with the real API: AsqavComponent from
asqav.extras.haystack, asqav.init(), and Agent-based signing.

Install command corrected to pip install asqav[haystack].
Removed fabricated features (policy enforcement, CSV/JSON export, offline
storage) and documented the actual component interface and fail-open
behavior.
@jagmarques
Copy link
Copy Markdown
Author

jagmarques commented Apr 14, 2026

Just checking if this is ready for review. Happy to address any feedback.

bilgeyucel
bilgeyucel requested changes Apr 15, 2026
View reviewed changes
Comment thread integrations/asqav.md Outdated

## Overview

Asqav is an AI governance SDK that provides cryptographically signed audit trails for AI agent actions. The Haystack integration adds an `AsqavComponent` that you drop into any pipeline to sign data flowing through it with ML-DSA-65 post-quantum signatures.
Copy link
Copy Markdown
Contributor

@bilgeyucel bilgeyucel Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can you add more information here? Why should people use Asqav?

Comment thread integrations/asqav.md Outdated
Comment on lines +59 to +60
pipe.add_component("prompt_builder", PromptBuilder(template=prompt_template))
pipe.add_component("llm", OpenAIGenerator())
Copy link
Copy Markdown
Contributor

@bilgeyucel bilgeyucel Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you change this component code with OpenAIChatGenerator and ChatPromptBuilder?

@jagmarques
Copy link
Copy Markdown
Author

jagmarques commented Apr 15, 2026

Updated both. Expanded the overview with the governance use case and compliance context. Swapped to OpenAIChatGenerator and ChatPromptBuilder.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bilgeyucel bilgeyucel bilgeyucel requested changes

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jagmarques @bilgeyucel