Skip to main content

Proof-chain registry for AI agents — backed by Walrus for persistent, portable, verifiable memory

Project description

verity

How do you trust what an AI agent built?

verity is a proof-chain registry for AI agents — record what was built, what was claimed, what tests ran, and what they proved. Every chain is published to Walrus as an immutable blob. Any agent, on any machine, can pull it back and verify it.

CI Coverage PyPI version Python 3.11+ License: MIT PyPI Downloads


The model

feature → claim → test → evidence → release
                                       │
                              verity push ──► Walrus blob ID (immutable)
                              verity pull ◄── restore anywhere, any agent
  • feature — a capability being shipped
  • claim — a testable statement about the feature
  • test — the mechanism that exercises the claim
  • evidence — the pass/fail signal the test produced
  • release — a named snapshot; push() publishes it to Walrus

Built for the Sui Overflow hackathon, Walrus track.


Install

pip install walrus-verity

# With MemWal semantic recall
pip install "walrus-verity[memwal]"

# With Ed25519 signing support
pip install "walrus-verity[sign]"

Quick start

The fastest path — one command records the full claim/test/evidence chain:

verity init --repo-id repo:my-project
verity track feat:auth tests/test_auth.py --title "Login succeeds"
verity validate
verity release 1.0.0
verity push          # → blob: AbCdEfGh…

Or build the chain manually for full control:

# Phase 1 — add entities with neutral statuses
verity add feature  feat:auth "User authentication"
verity add claim    clm:auth.t1 "Login succeeds"  --feature feat:auth
verity add test     tst:auth.unit "Unit test"      --claim clm:auth.t1 --path tests/test_auth.py
verity add evidence evd:auth.ci "CI run"           --test tst:auth.unit --artifact artifacts/ci.json

# Phase 2 — promote statuses once the chain is fully linked
verity add evidence evd:auth.ci "CI run" --test tst:auth.unit --artifact artifacts/ci.json --status passed
verity validate      # → OK
verity release 1.0.0
verity push          # → blob: AbCdEfGh…

# Any agent, any machine, any future session:
verity pull AbCdEfGh…

Why neutral statuses first? verity validates after every add. Setting --status verified on a claim before its test exists will fail. Build the full chain first, then promote statuses.


Multi-agent trust

Agent A builds and signs. Agent B verifies before building on top.

# Agent A
verity push                                          # → blob_a
verity keygen --key ~/.verity/signing.key            # generate keypair once
verity sign --key ~/.verity/signing.key              # attest blob_a
verity push                                          # → blob_b (carries the attestation)

# Agent B — receives blob_b + pubkey
verity verify blob_b --pubkey-b64 <pubkey>
# blob: blob_b   repo: repo:my-project
# features 4  claims 5 (5 verified)
# chain valid ✓
# signature valid ✓   attests: blob_a…  signer: <pubkey>…

AI coding assistant integration

Skill installer — teaches your AI assistant the verity model, CLI, and API:

verity install-skill                    # Claude Code (global CLAUDE.md)
verity install-skill --tool cursor      # Cursor → .cursorrules
verity install-skill --tool windsurf    # Windsurf → .windsurfrules
verity install-skill --tool codex       # OpenAI Codex → AGENTS.md
verity install-skill --tool aider       # Aider → CONVENTIONS.md

MCP server — expose all verity tools natively to any MCP-compatible editor:

pip install "walrus-verity[mcp]"

Add to your claude_mcp_config.json (or equivalent):

{
  "mcpServers": {
    "verity": {
      "command": "verity-mcp",
      "env": {
        "WALRUS_PUBLISHER_URL": "https://publisher.walrus-testnet.walrus.space",
        "WALRUS_AGGREGATOR_URL": "https://aggregator.walrus-testnet.walrus.space"
      }
    }
  }
}
MCP tool Description
verity_init Create verity.json
verity_add_feature / claim / test / evidence Add chain entities
verity_set_status Promote status after chain is wired
verity_set_status_batch Promote multiple entities atomically in one call
verity_validate Validate the full chain
verity_release Fail-closed release
verity_push / pull Walrus push and pull
verity_log Push history
verity_status Entity counts + validation summary
verity_diff Diff two Walrus blob snapshots
verity_export Export to SARIF, JUnit, or SPDX
verity_sign Sign the latest push with an Ed25519 key
verity_verify Fetch blob, validate chain, check signature
verity_recall Natural language query against MemWal

Export and interop

verity export --format sarif    # SARIF 2.1.0 — security findings dashboards
verity export --format junit    # JUnit XML  — CI test result viewers
verity export --format spdx     # SPDX 2.3   — software bill of materials

Recall

Push with MemWal to register semantic memories alongside the Walrus blob:

verity push --backend memwal

verity recall "what features have we built"
verity recall "what claims are verified"
verity recall "what was the latest release"

Documentation

Topic
CLI Reference All commands with flags and examples
MCP Server verity-mcp: expose verity tools to any MCP-compatible editor
Python API VeritySession, low-level functions, custom backends
Schema Reference verity.json fields, ID prefixes, status values, validation rules
Walrus Setup Testnet, mainnet, custom endpoints
MemWal Setup Env vars, delegate keys, namespace isolation
Multi-Agent Patterns Handoff pattern, audit trail, dry-run

Acknowledgements

The proof-chain model (feature → claim → test → evidence → release) is directly inspired by the ssot-registry project, licensed under Apache 2.0. verity adapts that model for AI agents and Walrus-backed persistence.


Contributing

See CONTRIBUTING.md.

License

MIT. See LICENSE.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

walrus_verity-0.3.7.tar.gz (451.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

walrus_verity-0.3.7-py3-none-any.whl (36.6 kB view details)

Uploaded Python 3

File details

Details for the file walrus_verity-0.3.7.tar.gz.

File metadata

  • Download URL: walrus_verity-0.3.7.tar.gz
  • Upload date:
  • Size: 451.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for walrus_verity-0.3.7.tar.gz
Algorithm Hash digest
SHA256 498c963cc4421b5cd2cb9e5d9587fbf3e3059b61382ea372504b48f5f53ee2f8
MD5 d9f5a67c695119b91534416dbe555223
BLAKE2b-256 d2e6530c76770ae345fcdbe0088ad419ba5699a6d266218a7a5a726b6e18861b

See more details on using hashes here.

Provenance

The following attestation bundles were made for walrus_verity-0.3.7.tar.gz:

Publisher: publish.yml on vantage-ola/verity

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file walrus_verity-0.3.7-py3-none-any.whl.

File metadata

  • Download URL: walrus_verity-0.3.7-py3-none-any.whl
  • Upload date:
  • Size: 36.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for walrus_verity-0.3.7-py3-none-any.whl
Algorithm Hash digest
SHA256 feb7ec286d24d784723972e9dacad24db98cddfcd9939d81c35e75d745556821
MD5 63c371b935227f3098ff57a8690de76d
BLAKE2b-256 f270513b114d0193fd7dcc9eca5dda93a82486ce1496708eba282a1d3dc701ad

See more details on using hashes here.

Provenance

The following attestation bundles were made for walrus_verity-0.3.7-py3-none-any.whl:

Publisher: publish.yml on vantage-ola/verity

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page