AgentGuard(TM) Spend SDK - Alpha License
Copyright (c) 2026 Dunecrest Ventures Inc.

1. SCOPE.
This software, including all files under packages/agentguard-spend-python/agentguard_spend/, is
licensed by Dunecrest Ventures Inc. ("Licensor") subject to the following
thresholds:

  (a) Evaluation Use. Internal evaluation, prototyping, and non-commercial
      development at any call volume.

  (b) Free Production Threshold. Production deployments processing 10,000
      or fewer enforcement calls per calendar month, in aggregate across
      all instances operated by the licensee, are permitted under this
      License without additional fee.

  (c) Commercial License Required. Production deployments processing more
      than 10,000 enforcement calls per calendar month, deployments
      operated for the benefit of third parties as a service, redistribution,
      sublicensing, public hosting, and republication each require a
      separate commercial license agreement with Licensor.

Commercial-license inquiries: invest@agentguard.run

2. NO PATENT LICENSE GRANTED.
Nothing in this License grants, expressly or by implication, any patent license
to any patent, patent application, or other intellectual property right of
Licensor. All patent rights are expressly reserved. The patent applications
identified in Section 7 are not licensed by this License.

3. SEPARATE GRANT FOR DEMONSTRATION ASSETS.
The following assets, and ONLY these assets, are released under the Apache
License, Version 2.0, the text of which is reproduced or available at
https://www.apache.org/licenses/LICENSE-2.0:

  - The test vectors under packages/agentguard-spend-python/test_vectors/
  - The documentation examples under packages/agentguard-spend-python/examples/
  - The contents of packages/agentguard-spend-python/README.md

The source code under packages/agentguard-spend-python/agentguard_spend/ is NOT included in this
Apache License 2.0 grant. The Python type definitions, policy engine,
decision log, store implementation, cost table, and wrapper code under
agentguard_spend/ are licensed only under the alpha evaluation terms of
Section 1 above.

4. WARRANTY DISCLAIMER.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT. IN NO EVENT SHALL
DUNECREST VENTURES INC. BE LIABLE FOR ANY CLAIM, DAMAGES, OR OTHER LIABILITY
ARISING FROM, OUT OF, OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
DEALINGS IN THE SOFTWARE.

5. SUCCESSORS AND ASSIGNS.
This License binds and benefits the parties' respective successors and assigns.
In the event of an asset sale, merger, change of control, or other transfer of
the Licensor's rights in this software, all rights and obligations under this
License inure to the benefit of and are binding upon Licensor's successor or
assignee. Outstanding evaluation grants survive change-of-control, but the
successor or assignee may, upon thirty (30) days' written notice, terminate
ongoing evaluation grants in favor of a commercial-license requirement.

6. TERMINATION.
Licensor may terminate this License with thirty (30) days' written notice for
any reason or no reason. Upon termination, Licensee shall cease all use of the
software under agentguard_spend/ and shall destroy all copies in Licensee's possession.

7. PATENT NOTICE (35 U.S.C. § 287).
Protected by U.S. patent-pending technology, including the following
provisional patent applications filed with the United States Patent and
Trademark Office:

  - Application No. 63/983,615 (filed February 15, 2026)
  - Application No. 63/983,621 (filed February 15, 2026)
  - Application No. 63/983,843 (filed February 16, 2026)
  - Application No. 63/984,626 (filed February 17, 2026)
  - Application No. 64/071,781 (filed May 21, 2026)
  - Application No. 64/071,789 (filed May 21, 2026)

Additional patents pending. All patent rights expressly reserved per
Section 2 above.

AgentGuard(TM) is a trademark of Dunecrest Ventures Inc. (USPTO Serial
No. 99462472, pending). MerchantGuard(TM) is a trademark of Dunecrest
Ventures Inc. (USPTO Serial No. 99051215, pending).

For commercial licensing: invest@agentguard.run

FUNCTIONAL-USE DISCLAIMER ADDENDUM

DISCLAIMER: All terminology and labels used in AgentGuard’s materials are descriptive of
software functionality only, not legal definitions or guarantees of compliance. For example, the
terms “receipt,” “audit log,” “evidence,” “audit trail,” and “attestation” refer solely to
cryptographically-signed records produced by AgentGuard’s software. These terms do not mean
that any record is legally binding evidence, certified by any authority, or equivalent to records
maintained by banks, auditors, or courts. Similarly, references to “signed,” “verified,” or “attested”
pertain to digital signature processes, not to notarization or governmental attestation. Any use of
the word “compliance,” “compliant,” “outcome,” or “settlement” describes the software’s features in
a non-regulatory sense. In particular, “capability tier” is merely an internal category of agent
permission levels, and does not correspond to any government or industry regulatory classification.
Likewise, any statement that an operation “settles” or an outcome is “settled” refers only to the
software’s final state, not to any legal settlement. No AgentGuard tool or document should be
interpreted as providing legal, financial, or regulatory advice, or as a certified compliance
certificate. AgentGuard is not a law firm or auditor and does not guarantee adherence to laws or
standards. All use of AgentGuard software is at the user’s risk, and users must ensure
independently that their use of AI agents complies with all applicable laws and
regulations.* (CONTINUED IN NEXT PARAGRAPH)
Throughout this documentation, package metadata, CLI banners, and related materials, any word
drawn from compliance or legal contexts (such as “audit,” “evidence,” “settlement,” “credit,” “debt,”
“market,” “liquidity,” “maturity,” or similar) is used only in a functional, descriptive sense. For
instance, “audit log” simply means a sequence of recorded events; it does not imply an official
financial or regulatory audit. The phrase “satisfies” is used to indicate that one software condition
meets a programmed check (e.g. satisfying a budget cap), and is not intended to suggest that any
legal requirement has been fulfilled. Under no circumstances should AgentGuard’s terminology be
taken to indicate that our software is executing regulated financial or legal processes.*
No term in our code, documentation, or marketing is meant to designate or characterize any
AgentGuard feature as a service subject to banking, securities, derivatives, insurance, real estate, or
other regulated activities. For example, “trade,” “trading,” “liquidity,” “maturity,” and similar terms
(if ever used) describe algorithmic budget or token flows, not financial transactions. AgentGuard
does not act as a broker-dealer, clearinghouse, insurance issuer, or government agency. References
to “market” or “liquidation” are metaphorical descriptions of how the software handles tokens or
budgets. No AgentGuard action should be construed as offering financial services or operating a
regulated marketplace.*
Likewise, words like “offer,” “obligation,” “credit,” “debt,” “payment,” or “settle” in our text refer only
to hypothetical or illustrative actions of a user’s AI agent or simulated transaction flows. They do
not mean that AgentGuard is engaging in any money-handling, offering financial instruments, or
guaranteeing any settlement of obligations. If AgentGuard generates an invoice or cost-of-service
figure, it is purely illustrative of resource usage, not a binding financial bill. The term “maker/taker”
(if used in examples) is purely a naming convention and has no relation to exchange regulation.

The software’s “payment execution” tier is only a capability checkbox, not an actual payment
processor. AgentGuard does not transmit money or credit.*
Finally, any references to “certify,” “verify,” or “attest” should be read in context of cryptography and
computing. For example, when we say a receipt is “signed” or “verified,” we mean via public-key
cryptography. AgentGuard does not claim that receipts are admissible legal evidence by default.
Users remain responsible for any legal implications of presenting AgentGuard logs or receipts in
regulatory audits or court. This disclaimer is intended to ensure AgentGuard’s terms (in this
README, license, package descriptions, CLI banner, customer agreements, and /llms.txt) make clear
we provide a technical audit tool only. The functionality is delivered “as-is” with no implied
regulatory endorsement.
