Skip to main content
toolsSource-backedReview first Safety Privacy
Microsoft logo

Microsoft AutoGen

Open-source framework for building multi-agent AI applications, conversations, workflows, and autonomous systems.

by Microsoft·added 2026-04-27·
HarnessCLI
Review first review before installing

Open the source and read safety notes before installing.

Citation facts

Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.

Source URLs
https://microsoft.github.io/autogen/stable/, https://github.com/microsoft/autogen, https://microsoft.github.io/autogen/
Brand
Microsoft
Brand domain
microsoft.github.io
Brand asset source
brandfetch
Safety notes
AutoGen runs multi-agent workflows that can execute code and call external tools autonomously; sandbox execution and review agent actions before granting tool or system access.
Privacy notes
AutoGen agents send prompts, code, and tool outputs to the configured LLM provider(s); review what data your agents transmit and each provider's data-handling and retention terms.
Author
Microsoft
Claim status
unclaimed
Last verified
2026-04-27

Safety notes

  • AutoGen runs multi-agent workflows that can execute code and call external tools autonomously; sandbox execution and review agent actions before granting tool or system access.

Privacy notes

  • AutoGen agents send prompts, code, and tool outputs to the configured LLM provider(s); review what data your agents transmit and each provider's data-handling and retention terms.

Schema details

Install type
copy
Troubleshooting
No
Source repository stats
Scope
Source repo
Tool listing metadata
Pricing
open-source
Disclosure
editorial
Application category
DeveloperApplication
Operating system
macOS, Windows, Linux
Full copyable content
## Editorial notes

AutoGen is a useful reference for multi-agent application patterns, especially where conversation loops and coordination matter.

## Disclosure

Editorial listing. No paid placement or affiliate link is used.

About this resource

Editorial notes

AutoGen is a useful reference for multi-agent application patterns, especially where conversation loops and coordination matter.

Disclosure

Editorial listing. No paid placement or affiliate link is used.

Source citations

Add this badge to your README

Show that Microsoft AutoGen is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.

Listed on HeyClaude
[![Listed on HeyClaude](https://heyclau.de/badge/tools/microsoft-autogen.svg)](https://heyclau.de/entry/tools/microsoft-autogen)

How it compares

Microsoft AutoGen side by side with 2 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.

Field

Open-source framework for building multi-agent AI applications, conversations, workflows, and autonomous systems.

Open dossier

Agent orchestration framework for building stateful, controllable, multi-step LLM and agent workflows.

Open dossier

Open-source Python AgentOS and multi-agent framework, evolved from AutoGen, for building conversable agents, group chats, swarms, human-in-the-loop workflows, tool use, RAG, code execution, and provider-backed agent systems.

Open dossier
Trust
Install riskReview firstReview firstReview first
Notes Safety Privacy Safety · Privacy Safety Privacy
BrandMicrosoft logoMicrosoftLangGraph logoLangGraphAG2 Agent Framework logoAG2 Agent Framework
Categorytoolstoolstools
Sourcesource-backedsource-backedsource-backed
AuthorMicrosoftLangChainAG2
Added2026-04-272026-04-272026-06-18
Platforms
CLI
CLI
CLI
Source repo
Safety notesAutoGen runs multi-agent workflows that can execute code and call external tools autonomously; sandbox execution and review agent actions before granting tool or system access.— missingAG2 agents can converse, call tools, execute code, use retrieval systems, run browser workflows, and coordinate group chats; require explicit permissions and approval gates for high-impact actions. The upstream install docs and examples commonly involve provider credentials; keep API keys, config files, notebooks, and `.env` files out of commits and support tickets. Code execution, Docker, Jupyter, browser-use, and RAG extras can touch local files, network services, notebooks, databases, and external websites; scope them tightly before granting agent access. Multi-agent conversations can continue through nested chats, swarms, group chats, and custom reply handlers; define termination, escalation, retry, and human takeover behavior. Track the release roadmap before upgrading because deprecations and the v1.0 transition can change which APIs should be used for new work.
Privacy notesAutoGen agents send prompts, code, and tool outputs to the configured LLM provider(s); review what data your agents transmit and each provider's data-handling and retention terms.LangGraph sends prompts and graph state to your configured model provider (including Claude); persisted state and checkpoints can contain message and tool-call data.Prompts, messages, tool arguments, tool outputs, code snippets, notebook state, retrieved documents, vector-store contents, provider responses, traces, and execution logs may contain sensitive user or workspace data. Do not expose secrets, API keys, private file paths, customer records, internal documents, database rows, or raw exceptions through agent messages, logs, notebooks, screenshots, or public examples. Provider extras and retrieval integrations can route data through OpenAI, Anthropic, Google, AWS, local model servers, databases, vector stores, browser automation, or other third-party services. If AG2 is used for code execution or browser automation, define which files, domains, credentials, downloads, screenshots, and logs can be read or retained.
Prerequisites— none listed— none listed
  • Python 3.10 or newer and a Python environment managed with pip, uv, or another package manager.
  • Model provider credentials for the selected provider extra, such as OpenAI, Anthropic, Gemini, Bedrock, Mistral, Ollama, Groq, xAI, or another supported route.
  • A secrets strategy for provider keys, AG2 config files, `.env` files, notebooks, and example `OAI_CONFIG_LIST`-style credentials.
  • A reviewed execution boundary for code execution, Docker, Jupyter, browser-use, RAG, retrieval, database, and external tool extras.
Install
pip install 'ag2[openai]'
Config
Citations
ClaimUnclaimedUnclaimedUnclaimed

Related guides

Signals

Loading live community signals…

More like this, weekly

A short, calm digest of reviewed Claude resources. Unsubscribe any time.