Authority-Ledger
Authority Ledger
A permission state machine for AI agents with full audit trail on-chain
๐ฏ Problem
When an AI agent acts on your behalf, how do you know it had permission to do what it did?
Current AI agent systems lack:
- Transparent permission boundaries
- Auditable authority changes
- Verifiable recovery mechanisms
โจ Solution
Authority Ledger records every permission change as an on-chain event with cryptographic evidence.
Authority Levels
| Level | Name | Description |
|---|---|---|
| 3 | EXECUTE | Full autonomous execution |
| 2 | SUGGEST | Agent suggests, human confirms |
| 1 | OBSERVE | Read-only access |
| 0 | REVOKED | No permissions |
Event Types
- Decay - Passive timeout-based authority reduction
- Revoke - Active trigger-based authority withdrawal
- Recover - Evidence-based authority restoration
๐ Quick Start
# Clone the repo
git clone https://github.com/your-username/authority-ledger.git
cd authority-ledger
# Install dependencies
forge install
# Build
forge build
# Test
forge test
# Deploy
forge script script/Deploy.s.sol --rpc-url $RPC_URL --broadcast
๐ Contracts
Base Sepolia Testnet
| Contract | Address |
|---|---|
| AuthorityState | 0xe7da77beBf85a0b3BEDf46c056e7Fb4f77AC2aD8 |
| EvidenceStore | 0xe70c84F38A5dB8A5c3cF22112036dab70cad16DD |
๐ง Usage
Register an Agent
authority.registerAgent(agentAddress);
Grant Authority
authority.grantAuthority(
agentAddress,
AuthorityLevel.EXECUTE, // level
0x0, // scope (all permissions)
86400 // duration (24 hours)
);
Check Authority
(bool hasAuth, uint8 level) = authority.checkAuthority(agentAddress, AuthorityLevel.SUGGEST);
Revoke Authority
authority.revokeAuthority(
agentAddress,
RevokeReason.DRIFT_DETECTED,
evidenceId // reference to evidence
);
๐๏ธ Architecture
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Authority Ledger โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ AuthorityState.sol EvidenceStore.sol โ
โ โโโ Authority levels โโโ Evidence storage โ
โ โโโ State transitions โโโ Diversity checks โ
โ โโโ Audit logging โโโ IPFS integration โ
โ โโโ ERC-8004 integration โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
๐งช Testing
# Run all tests
forge test
# Run with gas report
forge test --gas-report
# Run specific test
forge test --match-test testGrantAuthority -vvv
All 11 tests passing โ
๐ Project Structure
authority-ledger/
โโโ contracts/
โ โโโ AuthorityState.sol
โ โโโ EvidenceStore.sol
โโโ test/
โ โโโ AuthorityState.t.sol
โโโ script/
โ โโโ Deploy.s.sol
โโโ frontend/
โ โโโ index.html
โโโ DESIGN.md
โโโ DEPLOYMENT.md
โโโ SUBMISSION.md
๐ Target Prizes
| Track | Prize |
|---|---|
| Agents With Receipts โ ERC-8004 | $4,000 |
| Private Agents, Trusted Actions | $5,750 |
| Best Use of Delegations | $3,000 |
| Synthesis Open Track | $14,059 |
๐ License
MIT
Authority Ledger โ Because every permission change deserves a receipt.