Cryptographic chain-of-custody. Court-supportable records. Rekor-anchored proof. Every action your agents take, bound to a workload identity, anchored on a public transparency log, independently verifiable by anyone. AIR isn't a guardrail, a governance dashboard, or a compliance checklist. It's the forensic substrate underneath — producing signed evidence the rest of the stack can consume. Built for EU AI Act Article 72 (Aug 2, 2026). Four shipping layers, pip install ready.

AppSignal — Full-stack monitoring for errors, metrics, and logs

Full-stack monitoring for errors, metrics, and logs

Hi — Kev here, the maker.

When an AI agent does something it shouldn't — wrong tool call, prompt injection, data going somewhere it shouldn't — most teams reach for logs.

Logs aren't evidence. Evidence has to be tamper-evident, independently verifiable, and survive without you. That gap is what Project AIR fills.

The credibility hook: the OWASP Top 10 for Agentic Applications (v12.6) names the "Signed Intent Capsule" as the canonical mitigation for ASI01. We didn't invent the pattern — we shipped a production implementation of it.

How it works: every agent decision is content-hashed (BLAKE3), signed (Ed25519), chained to the previous step, and anchored on Sigstore Rekor. Anyone can verify the chain offline, years later, even without us. The capsule format is AgDR-compatible.

Four layers in v0.7:

→ Trust Anchor — Cryptographic signing + public transparency log. → Investigation — air explain walks the causal graph. "Why did the agent do that?" is one command, not a four-hour log dive. → Containment — air approve puts a verified human in the loop. The approval itself is signed evidence. → AgDR Handoff — When agents hand work to other agents, the chain of custody survives the handoff.

Why now: EU AI Act Article 72 (post-market monitoring) takes effect August 2, 2026. Most teams have a guardrail story. Few have an evidence story.

If you work on agent reliability, compliance, or AI safety — I'd love to hear what's missing.

🚀 We're live today — excited to finally have this in front of the PH community.

I'm here all day. If you're building with AI agents and have questions about the signing architecture, OWASP ASI coverage, or the EU AI Act Article 72 implications — ask anything. Nothing is off limits.