DEV Community: Himanshu Tripathi The latest articles on DEV Community by Himanshu Tripathi (@himanshu_tripathi_d1939ab). https://dev.to/himanshu_tripathi_d1939ab https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3935542%2F13bf3d97-edf3-42c3-ac17-cdc739665acc.png DEV Community: Himanshu Tripathi https://dev.to/himanshu_tripathi_d1939ab en Identity for ai agents Himanshu Tripathi Wed, 03 Jun 2026 08:43:05 +0000 https://dev.to/himanshu_tripathi_d1939ab/identity-for-ai-agents-5c2 https://dev.to/himanshu_tripathi_d1939ab/identity-for-ai-agents-5c2 <h1> How to Add an Audit Trail to Your AI Agent in 3 Lines of Code </h1> <p>If you're building with AI agents — whether using LangChain, Claude, GPT-4, AutoGen, or CrewAI — you've probably asked yourself at some point: <em>what exactly did my agent do?</em></p> <p>The honest answer for most developers right now is: <strong>nothing. No record. No proof. No way to know.</strong></p> <p>This post covers why that's a problem, what it costs you in practice, and how to fix it in under 5 minutes.</p> <h2> The Problem: AI Agents Run Blind </h2> <p>When a traditional application makes a database write or an API call, you have logs. You know what happened, when, and why.</p> <p>AI agents are different. They reason, decide, and act — often across multiple steps, multiple tools, and multiple external services. But most agent frameworks give you:</p> <ul> <li>Console output (disappears when the process ends)</li> <li>LLM token logs (shows inputs/outputs, not decisions)</li> <li>Nothing at all</li> </ul> <p>This creates three real problems:</p> <p><strong>1. Runaway costs</strong><br> An agent stuck in a retry loop at 2am has nothing stopping it from making 10,000 API calls before anyone notices. Without a spending limit enforced at the action level, your bill arrives before your alert does.</p> <p><strong>2. No legal defensibility</strong><br> If an agent sends an unauthorized email, makes a purchase it shouldn't have, or accesses data outside its scope — you have no cryptographic proof of what it was authorized to do. The EU AI Act (enforcement: August 2026) explicitly requires high-risk AI systems to maintain logs of decisions. "The LLM decided" is not a compliance strategy.</p> <p><strong>3. No debugging</strong><br> When an agent behaves unexpectedly in production, the first question is always: what did it actually decide to do, and why? Without a permanent audit trail, you're guessing.</p> <h2> What a Proper Audit Trail Looks Like </h2> <p>A proper audit trail for an AI agent should answer these questions for every action:</p> <ul> <li> <strong>What</strong> action was attempted (type, target domain, amount)</li> <li> <strong>What verdict</strong> was returned (approved, blocked, escalated)</li> <li> <strong>Why</strong> the verdict was given (which policy rule fired)</li> <li> <strong>When</strong> it happened (tamper-proof timestamp)</li> <li> <strong>Who</strong> authorized it (cryptographic signature)</li> </ul> <p>This is exactly what AIVIL provides.</p> <h2> Adding an Audit Trail in 3 Lines </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>aivil </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">AIVIL</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">aivil</span><span class="dl">'</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">aivil</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">AIVIL</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">AIVIL_API_KEY</span> <span class="p">})</span> <span class="c1">// Step 1: Create your agent once</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">agent</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">aivil</span><span class="p">.</span><span class="nf">getOrCreate</span><span class="p">({</span> <span class="na">name</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Procurement Agent</span><span class="dl">"</span><span class="p">,</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Procurement Specialist</span><span class="dl">"</span><span class="p">,</span> <span class="na">owner</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Acme Corp</span><span class="dl">"</span><span class="p">,</span> <span class="na">jurisdiction</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Delaware_USA</span><span class="dl">"</span><span class="p">,</span> <span class="na">policy</span><span class="p">:</span> <span class="p">{</span> <span class="na">spending_limit</span><span class="p">:</span> <span class="mi">100</span><span class="p">,</span> <span class="c1">// blocks purchases over $100</span> <span class="na">requires_human_signoff_over</span><span class="p">:</span> <span class="mi">50</span><span class="p">,</span> <span class="c1">// escalates above $50</span> <span class="na">blocked_topics</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">gambling</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">adult</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">illegal</span><span class="dl">"</span><span class="p">],</span> <span class="na">allowed_topics</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">vendors</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">pricing</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">procurement</span><span class="dl">"</span><span class="p">],</span> <span class="p">}</span> <span class="p">})</span> <span class="c1">// Step 2: Audit before every action</span> <span class="kd">const</span> <span class="nx">verdict</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">aivil</span><span class="p">.</span><span class="nf">audit</span><span class="p">(</span><span class="nx">agent</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">purchase</span><span class="dl">"</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="mi">30</span><span class="p">,</span> <span class="na">domain</span><span class="p">:</span> <span class="dl">"</span><span class="s2">openai.com</span><span class="dl">"</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Buy API credits for data processing</span><span class="dl">"</span> <span class="p">})</span> <span class="c1">// Step 3: Act on the verdict</span> <span class="k">if </span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">APPROVED</span><span class="dl">"</span><span class="p">)</span> <span class="nf">executeAction</span><span class="p">()</span> <span class="k">if </span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">ESCALATE</span><span class="dl">"</span><span class="p">)</span> <span class="nf">notifyHuman</span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">reason</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">BLOCKED</span><span class="dl">"</span><span class="p">)</span> <span class="nf">logAndStop</span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">reason</span><span class="p">)</span> </code></pre> </div> <p>That's it. Every decision is now:</p> <ul> <li>Logged permanently to a tamper-proof audit trail</li> <li>HMAC-signed with a server secret</li> <li>Visible in real time on a live dashboard</li> <li>Defensible in a compliance audit</li> </ul> <h2> Try It Without Signing Up </h2> <p>You can try AIVIL right now with no account:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">aivil</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">AIVIL</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="dl">"</span><span class="s2">aivil_demo</span><span class="dl">"</span> <span class="p">})</span> <span class="kd">const</span> <span class="nx">verdict</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">aivil</span><span class="p">.</span><span class="nf">audit</span><span class="p">(</span><span class="dl">"</span><span class="s2">AGT-DEMO001</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">purchase</span><span class="dl">"</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="mi">200</span><span class="p">,</span> <span class="na">domain</span><span class="p">:</span> <span class="dl">"</span><span class="s2">casino.gambling</span><span class="dl">"</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Buy credits</span><span class="dl">"</span> <span class="p">})</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">status</span><span class="p">)</span> <span class="c1">// BLOCKED</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">reason</span><span class="p">)</span> <span class="c1">// Domain "casino.gambling" is restricted by policy.</span> </code></pre> </div> <p>The demo key runs against a real policy engine. No credit card, no signup, no friction.</p> <h2> What Happens When an Action is Blocked </h2> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"status"</span><span class="p">:</span><span class="w"> </span><span class="s2">"BLOCKED"</span><span class="p">,</span><span class="w"> </span><span class="nl">"reason"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Domain </span><span class="se">\"</span><span class="s2">casino.gambling</span><span class="se">\"</span><span class="s2"> is restricted by policy."</span><span class="p">,</span><span class="w"> </span><span class="nl">"flags"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"RESTRICTED_DOMAIN"</span><span class="p">],</span><span class="w"> </span><span class="nl">"trust_score"</span><span class="p">:</span><span class="w"> </span><span class="mi">68</span><span class="p">,</span><span class="w"> </span><span class="nl">"agent_registry"</span><span class="p">:</span><span class="w"> </span><span class="s2">"https://aivildev.com/agent/AGT-DEMO001"</span><span class="p">,</span><span class="w"> </span><span class="nl">"signature"</span><span class="p">:</span><span class="w"> </span><span class="s2">"b2c3d4e5f6a1..."</span><span class="p">,</span><span class="w"> </span><span class="nl">"audit_id"</span><span class="p">:</span><span class="w"> </span><span class="s2">"bb6461a3-2f17-4fcf-a4cc-9f77e5756b5c"</span><span class="p">,</span><span class="w"> </span><span class="nl">"timestamp"</span><span class="p">:</span><span class="w"> </span><span class="s2">"2026-06-03T10:24:06.000Z"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Every verdict includes:</p> <ul> <li> <strong>flags</strong> — exactly which policy rule fired</li> <li> <strong>trust_score</strong> — the agent's running behavior score</li> <li> <strong>signature</strong> — HMAC-SHA256 proof the verdict was issued by your server</li> <li> <strong>audit_id</strong> — permanent reference for compliance queries</li> <li> <strong>agent_registry</strong> — public URL anyone can visit to verify the agent</li> </ul> <h2> Integrating With Your Existing Agent Framework </h2> <h3> LangChain </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Before executing any tool</span> <span class="kd">const</span> <span class="nx">verdict</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">aivil</span><span class="p">.</span><span class="nf">audit</span><span class="p">(</span><span class="nx">agent</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="nx">tool</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="nx">tool</span><span class="p">.</span><span class="nx">args</span><span class="p">.</span><span class="nx">amount</span> <span class="o">||</span> <span class="mi">0</span><span class="p">,</span> <span class="na">domain</span><span class="p">:</span> <span class="nx">tool</span><span class="p">.</span><span class="nx">args</span><span class="p">.</span><span class="nx">url</span> <span class="p">?</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="nx">tool</span><span class="p">.</span><span class="nx">args</span><span class="p">.</span><span class="nx">url</span><span class="p">).</span><span class="nx">hostname</span> <span class="p">:</span> <span class="dl">""</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="nx">tool</span><span class="p">.</span><span class="nx">args</span><span class="p">.</span><span class="nx">query</span> <span class="o">||</span> <span class="nx">tool</span><span class="p">.</span><span class="nx">description</span> <span class="p">})</span> <span class="k">if </span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">status</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">APPROVED</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`AIVIL blocked: </span><span class="p">${</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">reason</span><span class="p">}</span><span class="s2">`</span><span class="p">)</span> <span class="p">}</span> <span class="c1">// Safe to execute</span> <span class="k">return</span> <span class="k">await</span> <span class="nx">tool</span><span class="p">.</span><span class="nf">execute</span><span class="p">(</span><span class="nx">tool</span><span class="p">.</span><span class="nx">args</span><span class="p">)</span> </code></pre> </div> <h3> OpenAI Function Calling </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">toolCall</span> <span class="o">=</span> <span class="nx">response</span><span class="p">.</span><span class="nx">choices</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">message</span><span class="p">.</span><span class="nx">tool_calls</span><span class="p">?.[</span><span class="mi">0</span><span class="p">]</span> <span class="k">if </span><span class="p">(</span><span class="nx">toolCall</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">verdict</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">aivil</span><span class="p">.</span><span class="nf">audit</span><span class="p">(</span><span class="nx">agent</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="kd">function</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">.</span><span class="kd">function</span><span class="p">.</span><span class="nx">arguments</span><span class="p">).</span><span class="nx">amount</span> <span class="o">||</span> <span class="mi">0</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="kd">function</span><span class="p">.</span><span class="nx">arguments</span> <span class="p">})</span> <span class="k">if </span><span class="p">(</span><span class="nx">verdict</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">APPROVED</span><span class="dl">"</span><span class="p">)</span> <span class="nf">executeTool</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">)</span> <span class="k">else</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">AIVIL blocked:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">verdict</span><span class="p">.</span><span class="nx">reason</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <h3> Claude MCP (Zero Code) </h3> <p>Add one line to your Claude Desktop config:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"mcpServers"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"aivil"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"url"</span><span class="p">:</span><span class="w"> </span><span class="s2">"https://mcp.aivildev.com/mcp"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Claude will automatically audit every action before executing. No code changes required.</p> <h2> EU AI Act Compliance </h2> <p>The EU AI Act's high-risk AI obligations take effect <strong>August 2026</strong>. Article 12 explicitly requires:</p> <blockquote> <p><em>"Logging capabilities to ensure traceability of the AI system's output"</em></p> </blockquote> <p>AIVIL's cryptographic audit trail — HMAC-signed, immutable, permanently stored — directly addresses this requirement. Every audit decision includes a verifiable signature that proves:</p> <ol> <li>The agent was authorized to act</li> <li>The action was within its defined policy</li> <li>The decision was made at a specific timestamp</li> <li>The record has not been altered since</li> </ol> <p>For teams building agents that touch financial data, personal data, or automated decision-making — this is not optional after August 2026.</p> <h2> What AIVIL Doesn't Do </h2> <p>To be clear about scope:</p> <ul> <li>AIVIL does not replace your LLM — it wraps your agent's actions</li> <li>AIVIL does not guarantee your agent behaves correctly — it enforces the policy you define</li> <li>AIVIL is not a silver bullet — it's a compliance and observability layer</li> </ul> <p>You are still responsible for defining sensible policies. AIVIL enforces them.</p> <h2> Getting Started </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>aivil </code></pre> </div> <p>Free plan: 5 agents, 1,000 audits/month, no credit card.</p> <ul> <li> <strong>Dashboard:</strong> <a href="https://aivildev.com/app" rel="noopener noreferrer">aivildev.com/app</a> </li> <li> <strong>Docs:</strong> <a href="https://aivildev.com/docs" rel="noopener noreferrer">aivildev.com/docs</a> </li> <li> <strong>GitHub:</strong> <a href="https://github.com/scalatest01/AIVIL" rel="noopener noreferrer">github.com/scalatest01/AIVIL</a> </li> <li> <strong>MCP Server:</strong> mcp.aivildev.com/mcp</li> </ul> <h2> Summary </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Without AIVIL</th> <th>With AIVIL</th> </tr> </thead> <tbody> <tr> <td>No record of agent decisions</td> <td>Every decision logged permanently</td> </tr> <tr> <td>No spending controls</td> <td>Hard limits enforced per action</td> </tr> <tr> <td>No legal defensibility</td> <td>Cryptographic proof of authorization</td> </tr> <tr> <td>Debugging by guessing</td> <td>Full audit trail with flags and reasons</td> </tr> <tr> <td>EU AI Act liability</td> <td>Compliant audit trail from day one</td> </tr> </tbody> </table></div> <p>If you're building AI agents that interact with real systems — APIs, databases, emails, purchases — add an audit trail before you need one.</p> <p>It takes 3 lines of code. It's free. And it might save you from a very expensive conversation later.</p> <p><em>AIVIL is open source under AGPL-3.0. Try it at <a href="https://aivildev.com" rel="noopener noreferrer">aivildev.com</a> or install directly with <code>npm install aivil</code>.</em></p> agents ai monitoring tutorial AIVIL is live Himanshu Tripathi Sun, 17 May 2026 08:29:27 +0000 https://dev.to/himanshu_tripathi_d1939ab/aivil-is-live-45cn https://dev.to/himanshu_tripathi_d1939ab/aivil-is-live-45cn <p>AIVIL just launched on Product Hunt 🚀</p> <p>The civil registry for AI agents.<br> Every agent deserves an identity.<br> Every action deserves accountability.</p> <p>Support us 👇<br> producthunt.com/posts/aivil</p> <p>aivil-lake.vercel.app</p> <h1> AIVIL #ProductHunt #aiagents #buildinpublic </h1> AIVIL REGISTRY FOR AI AGENTS Himanshu Tripathi Sat, 16 May 2026 21:52:41 +0000 https://dev.to/himanshu_tripathi_d1939ab/aivil-registry-for-ai-agents-21am https://dev.to/himanshu_tripathi_d1939ab/aivil-registry-for-ai-agents-21am <p>Hello DEV I have something to show you guys stay connected AIVIL is coming tomorrow 9am CEST.</p>