Agent Control Specification (ACS)

Strengths

• Framework-agnostic: ships with adapters for LangChain, OpenAI Agents SDK, Anthropic SDK, AutoGen, CrewAI, Semantic Kernel, and MCP tools out of the box
• Portable policy-as-a-file: governance rules bundle with the agent and travel across environments, no per-deploy rewrites
• Multi-checkpoint enforcement: intercepts agent behavior before input, before tool calls, after tool results, and before final output
• Separates concerns cleanly — devs own agent logic, security/compliance teams own policy files, no code entanglement
• MIT-licensed with formal RFC 2119 specs and 992+ conformance tests backing the implementation

Weaknesses

• Public Preview only — Microsoft's own repo warns current profiles shouldn't yet be treated as hard security boundaries
• Adoption depends on the broader ecosystem embracing the standard; fragmentation risk if competitors ship competing specs
• Still early: policy-per-framework adapter behavior varies, and retrofitting onto existing large agent surfaces is genuinely painful

Best for

Enterprise dev and platform teams building production AI agents who need auditable, portable guardrails without baking governance logic into application code.

Pricing

Free (MIT open-source)

Fully open-source; installable via pip and npm. No paid tiers.