Security●●Solid
Tamper-evident audit trail for AI coding agent activity
SHA-256 hash chains and SMT proofs make AI agent logs actually verifiable.
Big BrainSolve My Problem
gclaramunt
432d ago
Back to browse
GitHub Repository
Rootsign is an open-source tamper-evident decision and action provenance logging library for AI agents
1 starsPython
Tamper evident audit logs for LangGraph/CrewAI agents
by oabolade·Jun 17, 2026·1 point·0 comments
AI Analysis
●●●BangerBig BrainWizardrySolve My Problem
Cryptographic hash chains make agent action logs legally defensible—LangSmith and Langfuse don't do this.
Strengths
- •SHA-256 hash chain across every Action record makes any post-hoc modification detectable via verify CLI.
- •PII redaction before hashing ensures sensitive data doesn't compromise the cryptographic audit trail.
- •Human-in-the-loop checkpoints with Approval records for agent actions requiring authorization.
Weaknesses
- •Phase 1 MVP only—hosted backend and compliance dashboard are planned but not yet shipped.
- •Currently supports LangGraph and CrewAI only; other agent frameworks need custom integration.
Category
Target Audience
Developers deploying AI agents in regulated industries requiring compliance audit trails
Similar To
LangSmith · Langfuse · Arize Phoenix
Post Description
I have running into the same problems recently instrumenting my LangChain and CrewAI agent pipelines. If something goes wrong with a tool call, there was no way to way to prove what the agent did, in what order, and whether the logs have been modified. Observability platforms like LangSmith and Langfuse are great at optimizing for agent behavior, tokens and costs but they do not produce legally defensible and auditable artifacts. That's the reason why I decided to build RootSign, an SDK that instruments your CrewAI and LangGraph agents and produces cryptograhic audit logs for CrewAI and LangGraph agents.
RootSign adds a cryptographic hash chain to every tool call.
If any record is modified after the fact, "rootsign verify" detects it.
What it does: - SHA-256 hash chain across every Action record in a session - Human-in-the-loop checkpoints with Approval records for certain agent actions - PII redacted before hashing (StandardPIIConfig out of the box) - Works with LangGraph and CrewAI — AutoGen coming soon - Local first (Postgres + Timescale) — no cloud dependency
What it doesn't do (yet): compliance dashboard, cloud backend, policy engine, all on the roadmap.
Please try it out on the Github repo, contributions and feedback are always welcome.
Similar Projects
Security●●●Banger
Merkle Mountain Range audit log and execution tickets for AI agents
Merkle Mountain Range ledger proves AI agents can't retroactively fake logs—novel crypto primitive.
Big BrainZero to OneWizardry
nknutalapati
313mo ago
Security●●Solid
I built a tamper-evident audit logging service to prevent DB rewrites
Cryptographic proof audit logs can't be rewritten, even by DB admins.
Big BrainNiche Gem
ashish-barmaiya
213mo ago
Infrastructure●●Solid
Immutable – Audit logs with SHA-256
SHA-256 chained audit logs with embeddable activity feed for customer trust.
Solve My ProblemSlick
umarey
302mo ago
Infrastructure●●Solid
Air – Open-source black box for AI agents (tamper-evident audit trails)
Cryptographic audit chain for agents, but lacks observability dashboards competing tools provide.
Big BrainWizardry
shotwellj
214mo ago
Security●●Solid
Air – Open-source black box for AI agents (tamper-evident audit trails)
Instead of another observability dashboard, this project builds a provable audit trail: an OpenAI-compatible reverse proxy that vaults prompts in MinIO and links calls with an HMAC-SHA256 tamper-evident chain, plus replay tooling (replayctl) and Jaeger traces. The cryptographic audit chain and the one-line SDK wrap are clever and practical; the real operational work left to teams will be key management and storage/retention strategy.
WizardryNiche Gem
shotwellj
214mo ago