nono published a blog post this week that's conceptually identical to what i built for mnemopay: an append-only merkle tree that records every action an agent makes, stored in a place the agent itself cannot reach.
the key insight: if the agent can modify its own audit log, the log is worthless.
here's how merkleaudit works:
- the agent proposes a transaction through fiscalgate
- fiscalgate approves or rejects based on policy
- both the proposal and the decision get written to the merkle chain
- each entry includes a hash of the previous entry
- the agent never gets write access to the chain
if someone later claims the agent did something it didn't do — or didn't do something it did — you can produce the full chain and verify every hash. tampering breaks the chain.
this matters for compliance. the eu ai act article 12 requires automatic recording over the lifetime of the system. if the agent can edit the log, you can't prove compliance.
nono's implementation uses cryptographic proofs to verify the record wasn't forged, edited, or truncated. that's the same guarantee mnemopay provides, but we layer it on top of agent payments.
the primitive is simple: append-only, agent-unreachable, hash-chained. if your agent moves money, this is the foundation.
Top comments (0)