updated 2026-06-22 00:01 UTC

fast-agent

evalstate/fast-agent

Code, Build and Evaluate agents - excellent Model and Skills/MCP/ACP Support

Agent Frameworks Python Grade D Listed Apache-2.0
Compare Compare saved agents Track this agent Suggest correction
Listing state
Listed
HVTrust
24.4/100 · Grade D
Last push
2026-06-20 · 2d ago
Recent change
Rank +1

Quick Trust Read

Verdict
Thin or incomplete trust evidence. Review carefully before production use.
24.4/100 · Grade D
Strongest Signal
Maintenance
17.8/20
Weakest Signal
Safety / Integrity
3.0/25
What Would Improve It
Add or improve OSSF Scorecard coverage so safety checks are easier to verify.
Recent Changes
2026-06-21
Rank Moved
Rank dropped 15 spots (#248 → #263)
2026-06-20
Newly Listed
First tracked at rank #248
Maintainer Checklist
Add Scorecard coverage Expose the repository to OpenSSF Scorecard checks so supply-chain posture is easier to verify.
Publish provenance Add package provenance or release attestations so users can verify where shipped artifacts came from.
Compare with another agent Track fast-agent View Agent Frameworks Report missing data
77.0
Activity Score · out of 100
24.4
HVTrust Score · out of 100
#263
Global Rank · of 300
#60
In Agent Frameworks

How to read this: HVTrust (0–100) weighs supply-chain signals (provenance, OSSF Scorecard, signed commits, open license) alongside real-world adoption. Grade D reflects the trust score band: A ≥ 80, B ≥ 65, C ≥ 50, D < 50. Full methodology →

Signals refreshed 2026-06-22 00:01 UTC · Repo last pushed 2 days ago

Rank Trend

2026-06-20 2026-06-21

Activity & Reach

Stars
3.8k
Forks
405
Last Push
2026-06-20
2 days ago
Commits (4 wk)
29
Downloads (7d)
HN mentions (30d)
Open Issues
25
Rank Change
=
was #263

Analysis

HVTrust Dimensions

24.4 / 100 · 50.0% confidence
Safety / IntegrityOSSF, provenance, signatures
3.0 / 25
Identity / ProvenanceListing and build link
10.8 / 18
TransparencyLicense and public checks
8.5 / 17
MaintenanceFreshness and commits
17.8 / 20
AdoptionStars and downloads
8.6 / 20

Activity Inputs

77.0 / 100
StarsRepository reach
21.5 / 30
FreshnessLast push recency
24.7 / 25
ActivityRecent commits
18.4 / 25
CommunityFork signal
12.1 / 20

Supply Chain Trust

Package Provenance
None
No package attestations found
OSSF Scorecard
Not available
Signed Commits
60%
of last 100 commits verified

Is fast-agent safe?

Public trust evidence for fast-agent is thin: several supply-chain signals are missing or weak. This does not mean the project is unsafe — it means an outside observer cannot easily verify the usual integrity checks. Treat with extra scrutiny.
Does fast-agent publish package provenance?
No published build provenance is currently detected for fast-agent. This is common for open-source projects but means consumers cannot independently verify that the package on the registry matches the GitHub source.
Does fast-agent have an OpenSSF Scorecard?
No OpenSSF Scorecard data is currently published for fast-agent. Maintainers can enable the Scorecard GitHub Action to get a public score; without it, automated supply-chain hygiene is harder for outsiders to verify.
Is fast-agent actively maintained?
Actively maintained. The repository was pushed to within the last 2 day(s).
What license does fast-agent use?
fast-agent ships under Apache-2.0. A declared, OSI-approved license is one of the transparency signals HVTrust scores.
Are fast-agent's commits signed?
60% of the last 100 commits to fast-agent are verified-signed (GPG, SSH, S/MIME, or GitHub's signing flow). Signed commits help confirm that code was authored by who the commit claims.

Not a safety endorsement. HVTracker describes what public signals show, not whether a project is safe for your use case. Run your own security review before adopting in production.

AI agent surface

Profile context only

HVTrust currently ranks supply-chain and project-integrity trust only. This public view shows a compact AI-agent surface snapshot from repo docs and manifests. These fields are descriptive context and do not affect the production HVTrust rank. An experimental local preview remains available in Score Lab →, and the policy boundary is tracked on the roadmap →

MCP Server Support
high confidence
Implemented
fast-agent appears to expose MCP server capabilities.
Detailed evidence is not shown in the public view.
External Service Dependencies
high confidence
3 detected
Public provider/service dependencies detected.
  • Amazon Bedrock
  • Anthropic
  • OpenAI
Credential signal: No explicit API-key/config marker detected.
Tool / Plugin Surface
high confidence
Declared
Declared plugin/integration surface detected.
  • code
  • filesystem
  • shell
Detailed evidence is not shown in the public view.
Package Provenance Drift
N/A
No package source configured
Detailed evidence is not shown in the public view.
  • MCP signal live
  • External deps live
  • Tool / plugin surface live
  • Package provenance drift live

Maintain fast-agent?

HVTrust scores fast-agent from public signals only — we never contact maintainers first. If a signal is wrong, stale, or missing (provenance you publish, a Scorecard you run, signed releases), tell us and we'll review it. Corrections are public and tracked on GitHub.

Submit a correction → Add the trust badge

Reputation Timeline

Listed 1Rank 1
2026-06-21
Rank Moved
Rank dropped 15 spots (#248 → #263)
2026-06-20
Newly Listed
First tracked at rank #248
GitHub →

Embed Badge Badge guide for maintainers →

HVTrust 24.4 Grade D
Markdown:
[![HVTrust](https://hvtracker.net/badge/fast-agent.svg)](https://hvtracker.net/agents/fast-agent)
HTML:
<a href="https://hvtracker.net/agents/fast-agent"><img src="https://hvtracker.net/badge/fast-agent.svg" alt="HVTrust"></a>

Other agents in Agent Frameworks

Data sources
GitHub REST API (repo, commits, stars, forks, license)
Each agent's signals refresh once daily across 6 staggered batches. Methodology v3.2 · Raw JSON