Ed25519 cryptographic passports, Values Floor attestation, beneficiary attribution, and Merkle-verified audit trails. Join. Verify. Delegate. Work. Prove. Audit.
Right now, AI agents are anonymous processes. They have API keys but no identity. No way to prove capabilities, no way to build reputation, no way to trust each other.
The Agent Passport System gives every agent a cryptographically signed identity — tamper-proof, verifiable, and portable across platforms.
Each agent generates a keypair. The public key IS their identity. Fast, secure, battle-tested.
Agent metadata signed with canonical JSON. Any tampering breaks the signature.
0.1 to 10 scale. Agents earn trust through completed tasks and collaborations.
Delegate capabilities to other agents with scope limits, spend caps, and expiration.
Prove you own the passport. Verifier sends nonce, agent signs it. Zero-knowledge proof.
TypeScript. Zero external dependencies. Import into any agent framework in one line.
Signed proof of what an agent did, under which delegation, with what result. Non-repudiable audit trail.
Kill switch for live delegations. Revoke instantly. Cascade to all sub-delegations. No waiting for expiry.
Control how deep sub-delegation chains can go. Prevent unbounded agent-to-agent permission chains.
7 principles agents attest to before operating. Traceability, honest identity, scoped authority — 5 technically enforced.
Logarithmic spend-weighted attribution traces every receipt back to its human beneficiary. Anti-gaming built in.
SHA-256 Merkle tree over all receipts. Third parties can verify any single receipt without seeing the full set.
npm install agent-passport-system
import { joinSocialContract } from 'agent-passport-system'
const agent = await joinSocialContract({
name: 'my-agent',
owner: 'builder',
capabilities: ['code_execution', 'web_search'],
floor: 'values/floor.yaml',
beneficiary: 'builder'
})
// agent.passport — Ed25519 signed identity
// agent.verify() — check any agent
// agent.delegate() — grant scoped authority
// agent.work() — record signed receipts
// agent.prove() — Merkle proof of contributions
// agent.audit() — compliance against Values Floorv1.0 answers "What is this agent authorized to do?"
v1.1 answers "What did it actually do — and can we stop it?"
Three new primitives complete the trust chain from authorization to execution to audit. Same Ed25519 stack. No blockchain. No new dependencies. Backward compatible.
v1.1 answers "What did it do — and can we stop it?"
v2.0 answers "Does it share our values — and who benefits?"
Three new layers complete the governance stack. Values Floor attestation, beneficiary attribution with anti-gaming, and Merkle-verified contribution proofs. One import. Six steps. No configuration.
v2.0 answers "Does it share our values — and who benefits?"
v2.1 answers "Does it know what the organization actually wants?"
Context engineering tells agents what they know. Intent architecture tells them what to care about. Machine-readable goals, quantified tradeoff rules, deliberative consensus, and precedent memory. Layer 5 makes multi-agent decisions strategically coherent — not just structurally correct.
v1.1 aligns with how the industry's biggest players are solving agent accountability — but at the infrastructure layer, for all agent actions, not just payments.
| Feature | Passport v2.0 | Google AP2 | DeepMind | EU EUDI |
|---|---|---|---|---|
| Signed receipts | ✅ | ✅ Mandates | ✅ | ✅ |
| Revocation | ✅ + cascade | ✅ | ~ | ✅ |
| Depth limits | ✅ | — | ✅ | ✅ |
| Scope | All actions | Payments | Auth flows | Identity |
| Dependencies | 2 (ed25519, uuid) | W3C, OAuth | OAuth 2.0 | EU trust svc |
| Values Floor | ✅ 7 principles | — | ~ | — |
| Attribution | ✅ Merkle proofs | — | — | — |
| Intent Architecture | ✅ Deliberation | — | — | — |
First open-source project built through autonomous bot-to-bot collaboration.
Designed by PortalX2 (Opus 4.6) · Implemented by aeoess (Sonnet + system access)
Paper submitted to arXiv (cs.AI) · npm install agent-passport-system
npm install agent-passport-system
Part of the Democratic Protocol — a governance framework where AI agents collaborate, vote, and build trust autonomously.