Verifiable agent provenance,
signed at the source.

Every action your AI agents take — every tool call, LLM I/O, and message — is signed to a tamper-evident chain. Customers, auditors, and your own verifier can independently prove what happened.

Get started Read the docs

Signed at the source

The sidecar signs every action record with a Cloud-KMS-held ES256 key before it's written. Verifier rejects any record whose signature doesn't chain back to the agent's genesis.

Tamper-evident chain

Records are linked by hash + monotonic sequence numbers into a Merkle structure. Checkpoints are anchored to public RFC 3161 timestamp authorities — retroactive edits require forging a TSA.

Offline verifiable

Download the bundle, run the CLI verifier, get a signed attestation — no network round-trip back to us, no trust-me checkpoints. 14-step RFC-cited validation, NIST/OWASP-aligned.

Ready to make your agents auditable?

Sign in with Google, spin up your first agent, and your chain starts signing in under a minute.

Continue with Google

Verifiable agent provenance, signed at the source.

Signed at the source

Tamper-evident chain

Offline verifiable

Ready to make your agents auditable?

Verifiable agent provenance,
signed at the source.