// SECTORFLOW ONE · OPEN SOURCE
We open-sourced the audit chain.
HMAC + hash-chained signed audit logs for AI agent actions — the same library that powers governance in SectorFlow One. MIT-licensed, production-grade, drop-in for your own agent infrastructure.
What it is
An HMAC-signed, hash-chained append-only audit log for AI agent actions. Each entry is signed for attribution and linked to the one before it, so any deletion or edit to history is detectable by recomputing the chain.
Why we open-sourced it
Tamper-evident audit shouldn't be a proprietary moat — it should be table stakes for anyone running agents against real systems. Putting the implementation in the open invites scrutiny, and a control you can read beats one you have to trust.
How to use it
It's a small, dependency-light library with a clean API: append signed events, then verify the chain on demand. MIT-licensed and production-grade, it drops into your own agent infrastructure without adopting the rest of our stack.
If you want this kind of governance across every agent in your org, that's what SectorFlow One is for.
