Proposal: Governance & Trust Components for Haystack Pipelines

[imran-siddique]

Proposal: Governance Component for Haystack Pipelines

Problem

Haystack excels at building production RAG and agent pipelines, but lacks built-in governance primitives for:

• Policy enforcement — Cap token usage, restrict tool calls, block dangerous content patterns
• Trust-gated routing — Verify agent identity before allowing pipeline transitions
• Audit trails — Tamper-evident logging of all pipeline actions with Merkle chain hashing

What we'd contribute

A haystack-agentmesh integration package providing Haystack components:

from haystack import Pipeline
from haystack_agentmesh import GovernancePolicyChecker, TrustGate, AuditLogger

pipeline = Pipeline()
pipeline.add_component("policy_check", GovernancePolicyChecker(policy="policy.yaml"))
pipeline.add_component("trust_gate", TrustGate(min_score=0.7))
pipeline.add_component("audit", AuditLogger(merkle_chain=True))

• GovernancePolicyChecker — @component that validates actions against governance policies before execution
• TrustGate — @component that routes based on agent trust scores (pass/fail/review)
• AuditLogger — @component with tamper-evident Merkle chain logging

Context

This is backed by AgentMesh (1,600+ tests). We've shipped similar integrations merged into:

• Dify (65K stars) — Merged
• LlamaIndex (47K stars) — Merged
• Microsoft Agent-Lightning (15K stars) — Merged
• LangGraph — Published langgraph-trust on PyPI
• OpenClaw — Published on ClawHub

Happy to build this as a standalone haystack-agentmesh package following Haystack's integration patterns. Would love maintainer feedback on the approach.

[julian-risch]

Hi @imran-siddique thanks for opening this issue. A standalone haystack-agentmesh sounds good to me. Of course we can provide feedback on your approach, just let us know once you have an update.

[imran-siddique]

Thanks @julian-risch! Great to hear — we'll build it as a standalone \haystack-agentmesh\ package following Haystack's integration conventions.

Here's the plan:

1. GovernancePolicyChecker — @component\ that validates actions against YAML-defined policies before pipeline execution
2. TrustGate — @component\ for trust-scored routing (pass/review/block)
3. AuditLogger — @component\ with append-only Merkle chain logging

We'll follow the \haystack-integrations\ repo structure and include tests + docs. Will share a draft once we have the initial components wired up. Looking forward to your feedback on the approach!

[imran-siddique]

First draft is ready! Package: https://github.com/imran-siddique/agentmesh-integrations/tree/master/haystack-agentmesh -- Three Haystack @component classes, 31 tests passing: GovernancePolicyChecker (YAML policies, tool allowlist/blocklist, content patterns, token limits), TrustGate (decay-based trust scoring, pass/review/block routing), AuditLogger (SHA-256 Merkle chain, JSONL export). Would love your feedback on the component API design @julian-risch. Should we publish as haystack-agentmesh or follow a different naming convention?

[julian-risch]

haystack-agentmesh is a good name for your integration. I had a look at the code and can share some feedback:

• In the pipeline example it would make sense to extend the example by running the pipeline and showing outputs. Otherwise it might not be clear to users how to use the newly created components.
• I'd suggest to also have a TrustGatedTool similar to this because it's more straight forward for users to use
• You could extend tests to also cover the use of the new components in a pipeline with other Haystack components as an integration test
• Otherwise looks good to me. 👍

[imran-siddique]

Thanks for the detailed review @julian-risch! All four points are actionable — here's the plan:

1. Extended pipeline example — Will add a runnable example with sample input/output showing the full governance pipeline (policy check → trust gate → audit log).

2. TrustGatedTool — Great call. Will add a TrustGatedTool wrapper that's more ergonomic for users who just want to add trust scoring to individual tools without building a full pipeline. Same pattern as our LangChain integration.

3. Pipeline integration tests — Will add tests that compose GovernancePolicyChecker + TrustGate + AuditLogger with standard Haystack components (e.g., a PromptBuilder → Generator pipeline with governance gates).

Will push these updates this week and ping you for re-review. Thanks for the 👍 on the overall approach!

[imran-siddique]

Closing - project moved to microsoft/agent-governance-toolkit. Will re-submit fresh proposals from the Microsoft repo. Thank you!