SHA-256 Hash Chain
Each event hash includes previous hash, sequence number, and payload to create a tamper-evident chain.
EctoClaw
Release Feature Matrix
This page lists current capabilities shipped in v0.1.0 across ledger integrity, policy controls, integrations, APIs, observability, and developer tooling.
Cryptographic Core
Ed25519 Event Signatures
Session events are signed for integrity and non-repudiation checks during audits.
Merkle Trees and Proofs
Generate Merkle roots and verify inclusion proofs without exposing full event history.
Policy and Guardrails
Allow and Deny Rules
Restrict or permit channels, skills, and plugins through TOML policy definitions.
Message Filters
Apply regex-based actions to block, redact, or flag sensitive content patterns.
Step Limits and Approval Gates
Apply execution caps and explicit approval triggers for sensitive operations.
Server and API
Session Lifecycle APIs
Create, list, seal, and verify sessions through REST endpoints.
Event Ingestion and Reporting
Append typed agent events and generate JSON or HTML audit reports.
SSE Streaming and Metrics
Watch real-time events and query aggregate ledger and security metrics.
Integration Surface
OpenClaw Plugin
Automatic hook-based capture for messaging, skills, tools, plugins, memory, and model events.
TypeScript SDK
Programmatic client for sessions, events, policies, verification, reports, and compliance bundles.
CLI Tooling
Use commands for serving, status checks, session listing, verification, and report generation.
Developer and Release Tooling
- Node.js ESM package with typed exports for root, SDK, and plugin modules.
- Cross-platform demo script plus Bash demo variant.
- Build/test/typecheck pipeline and publish dry-run support.
- Static website pages for landing, features, and setup guidance.