Now Open Source
Attestix
Verifiable identity, W3C credentials, delegation chains, and reputation scoring for every AI agent. Built to support regulatory documentation workflows.
Open source. Apache 2.0 license.
Standards and Protocols Supported
Code Examples
# Create a verifiable identity for your AI agent
# Generates a UAIT (Unique Agent Identity Token) and DID
result = await create_agent_identity(
agent_name="compliance-auditor",
capabilities=["audit", "verify", "report"],
agent_type="compliance",
version="1.0.0"
)
# Returns:
# - uait: "uait:atx:a1b2c3..."
# - did: "did:key:z6Mk..."
# - public_key: Ed25519 public key
# - agent_card: A2A-compatible agent cardUse Cases
Compliance Pipeline
Identity creation to compliance assessment to credential issuance in one flow.
[2026-02-27 09:15:22] IDENTITY
Agent identity created. UAIT assigned.
[2026-02-27 09:15:24] PROVENANCE
Training data recorded. Hash chain extended.
[2026-02-27 09:15:27] CREDENTIAL
Verifiable credential issued. Ed25519 signed.
[2026-02-27 09:15:30] COMPLIANCE
Conformity declaration generated.
[2026-02-27 09:15:33] ANCHOR
Anchored to Base L2 via EAS. Tx confirmed.
Audit Trail
Hash-chained provenance tracking from identity to blockchain anchoring.
9-Module Ecosystem
Identity, DIDs, Credentials, Delegation, Compliance, Provenance, Reputation, Blockchain, and Agent Cards.
Features
W3C Verifiable Credentials
Issue and verify Ed25519Signature2020 credentials and verifiable presentations following W3C standards.
Regulatory Compliance Tools
Risk classification, conformity assessments, and structured declaration generation for compliance workflows.
Decentralized Identity
did:key and did:web resolution with UAIT bridge connecting MCP, A2A, and DID ecosystems.
UCAN Delegation
Capability-based delegation with signed JWT tokens, permission scoping, and revocation support.
Provenance Tracking
Record training data, model lineage, and hash-chained audit trails for complete transparency.
Blockchain Anchoring
Anchor identities and credentials to Base L2 via EAS with Merkle batch support for tamper-proof records.
From the Project
Attestix provides the cryptographic identity layer that every AI agent needs. W3C Verifiable Credentials, UCAN delegation, and blockchain anchoring in a single MCP server.
Pavan Kumar Dubasi
Creator · VibeTensor
Attestix generates machine-readable, cryptographically signed declarations that can be independently verified without trusting the issuer. It is a documentation and evidence tooling system, not a compliance guarantee.
Design Principle
From the Whitepaper · Architecture Overview
47 MCP tools across 9 modules with 272+ tests and conformance benchmarks validating 5 W3C and IETF standards for verifiable agent identity.
By the Numbers
Open Source · Apache 2.0 License
Pricing
Open source, free forever.
Attestix is Apache 2.0 licensed with all 47 tools available for free. Enterprise support available for organizations with advanced compliance requirements.
Open Source
Everything you need for AI agent attestation.
- 47 MCP tools across 9 modules
- W3C Verifiable Credentials
- Regulatory compliance tools
- Decentralized identity (DID)
- UCAN delegation chains
- Blockchain anchoring (Base L2)
- Apache 2.0 license
Enterprise
For organizations with advanced compliance needs.
- All open source features
- Dedicated support and SLA
- Custom compliance profiles
- On-premises deployment
- Priority feature requests
- Security audit reports
FAQ
Community
Attestix is built in the open. Star the repo, open an issue, or contribute a module. Every contribution helps build the trust layer for AI agents.
Blog
Research Paper: Attestix Architecture
Our research paper describes the Attestix architecture for cryptographic attestation infrastructure for AI agents, covering identity, credentials, delegation, and compliance.
Getting Started with Attestix in 5 Minutes
Install Attestix, create your first agent identity, and issue a verifiable credential in under 5 minutes.
Why AI Agents Need Attestation Infrastructure
AI agents are multiplying fast, but they lack verifiable identity. Here is why attestation infrastructure is the missing trust layer.