Tamper-evident audit trail for agent sessions. Hash-chained logs of workspace changes with cryptographic verification. Know exactly what changed, when, and detect if anyone altered the record. Free alert layer — upgrade to openclaw-ledger-pro for freeze, forensics, and chain restoration.
Tamper-evident audit trail for agent workspaces. Every workspace change is recorded in a hash-chained log — if anyone alters an entry, the chain breaks and you know.
Agents modify files, execute commands, install skills — and leave no verifiable record. If something goes wrong, you can't trace what happened. If logs exist, nothing proves they haven't been altered after the fact.
Need automated forensics? Upgrade to openclaw-ledger-pro for freeze, forensics, and chain restoration.
Create the ledger and snapshot current workspace state.
python3 {baseDir}/scripts/ledger.py init --workspace /path/to/workspace
Snapshot current state and log all changes since last record.
python3 {baseDir}/scripts/ledger.py record --workspace /path/to/workspace
python3 {baseDir}/scripts/ledger.py record -m "Installed new skill" --workspace /path/to/workspace
Verify the hash chain is intact — no entries tampered with.
python3 {baseDir}/scripts/ledger.py verify --workspace /path/to/workspace
Show recent ledger entries.
python3 {baseDir}/scripts/ledger.py log --workspace /path/to/workspace
python3 {baseDir}/scripts/ledger.py log -n 20 --workspace /path/to/workspace
python3 {baseDir}/scripts/ledger.py status --workspace /path/to/workspace
Each entry contains:
If any entry is modified, inserted, or deleted, the hash chain breaks and verify detects it.
0 — Clean / chain intact1 — No ledger or minor issues2 — Chain tampered / corrupt entriesPython standard library only. No pip install. No network calls. Everything runs locally.
Works with OpenClaw, Claude Code, Cursor, and any tool using the Agent Skills specification.