Security●●●Banger
Tamper evident audit logs for LangGraph/CrewAI agents
Cryptographic hash chains make agent action logs legally defensible—LangSmith and Langfuse don't do this.
Big BrainWizardrySolve My Problem
oabolade
101d ago
Back to browse
GitHub Repository
Rootsign is an open-source tamper-evident decision and action provenance logging library for AI agents
1 starsPython
Tamper-evident audit logs for LangChain/Crew AI agents
by oabolade·Jun 18, 2026·2 points·0 comments
AI Analysis
●●SolidNiche GemBig Brain
Cryptographic hash chains make AI agent logs legally defensible when LangSmith can't.
Strengths
- •SHA-256 hash chain across actions detects any post-hoc tampering with rootsign verify CLI
- •PII redaction before hashing prevents sensitive data from entering the audit trail
- •Human-in-the-loop checkpoints with Approval records for compliance workflows
Weaknesses
- •Only supports LangGraph and CrewAI, missing broader agent framework coverage
- •Hosted backend and compliance dashboard still planned, not shipping today
Category
Target Audience
AI engineers building production agents in regulated industries
Similar To
LangSmith · Langfuse · Helicone
Post Description
I have been running into the same problems recently instrumenting my LangChain and CrewAI agent pipelines. If something goes wrong with a tool call, there was no way to way to prove what the agent did, in what order, and whether the logs have been modified. Observability platforms like LangSmith and Langfuse are great at optimizing for agent behavior, tokens and costs but they do not produce legally defensible and auditable artifacts. That's the reason why I decided to build RootSign, an SDK that instruments your CrewAI and LangGraph agents and produces cryptographic audit logs for CrewAI and LangGraph agents. RootSign adds a cryptographic hash chain to every tool call. If any record is modified after the fact, "rootsign verify" detects it.
What it does:
- SHA-256 hash chain across every Action record in a session - Human-in-the-loop checkpoints with Approval records for certain agent actions - PII redacted before hashing (StandardPIIConfig out of the box) - Works with LangGraph and CrewAI — AutoGen coming soon - Local first (Postgres + Timescale) — no cloud dependency
What it doesn't do (yet): compliance dashboard, cloud backend, policy engine, all on the roadmap.
Please try it out on the Github repo, contributions and feedback are always welcome.
Similar Projects
Security●●Solid
Tamper-evident audit trail for AI coding agent activity
SHA-256 hash chains and SMT proofs make AI agent logs actually verifiable.
Big BrainSolve My Problem
gclaramunt
443d ago
Security●●●Banger
Merkle Mountain Range audit log and execution tickets for AI agents
Merkle Mountain Range ledger proves AI agents can't retroactively fake logs—novel crypto primitive.
Big BrainZero to OneWizardry
nknutalapati
313mo ago
Security●●Solid
I built a tamper-evident audit logging service to prevent DB rewrites
Cryptographic proof audit logs can't be rewritten, even by DB admins.
Big BrainNiche Gem
ashish-barmaiya
213mo ago
Infrastructure●●Solid
Immutable – Audit logs with SHA-256
SHA-256 chained audit logs with embeddable activity feed for customer trust.
Solve My ProblemSlick
umarey
302mo ago
Infrastructure●●Solid
Air – Open-source black box for AI agents (tamper-evident audit trails)
Cryptographic audit chain for agents, but lacks observability dashboards competing tools provide.
Big BrainWizardry
shotwellj
214mo ago