{"slug": "dapr-1-18-introduces-verifiable-execution-bringing-cryptographic-trust-to-ai-and", "title": "Dapr 1.18 Introduces Verifiable Execution, Bringing Cryptographic Trust to AI Agents and Workflows", "summary": "Diagrid released Dapr 1.18 with Verifiable Execution, adding cryptographic trust and tamper-evident records for distributed applications and AI agents. The update introduces Workflow History Signing, Propagation, and Attestation to address provenance and accountability challenges in AI-driven workflows.", "body_md": "[Diagrid](https://www.diagrid.io/) has announced the release of [Dapr 1.18](https://www.diagrid.io/blog/dapr-1-18-release-highlights), introducing what it calls [Verifiable Execution](https://nexart.io/comparisons/audit-trails-vs-verifiable-execution), a new set of capabilities designed to bring cryptographic trust, provenance, and tamper-evident execution records to distributed applications and AI agents. The update, one of the most significant since [Dapr 1.10](https://www.infoq.com/news/2023/03/dapr-version-one-ten-released/), introduces Workflow History Signing, Workflow History Propagation, and Workflow Attestation, enabling organizations to verify how workflows were executed, which identities performed actions, and whether execution histories have been altered. The release is available immediately as an open-source update to Dapr and through Diagrid's managed [Catalyst Cloud platform](https://www.diagrid.io/catalyst).\n\nThe announcement addresses one of the most pressing challenges emerging in the age of agentic AI: trust. While distributed systems have become increasingly resilient over the last decade, and AI agents are now capable of carrying out complex, long-running tasks, proving how those tasks were executed has remained difficult. Dapr 1.18 aims to close that gap by introducing cryptographic chains of custody that span workflows, services, and AI agents, giving organizations a verifiable record of execution that can be independently validated.\n\nHistorically, [workflow engines](https://nhimg.org/glossary/workflow-history/) and distributed systems have focused primarily on [durability](http://durability) and [fault tolerance](https://www.vmware.com/topics/fault-tolerance). Modern workflows can survive infrastructure failures, recover from crashes, and retry failed operations automatically. However, questions around provenance and accountability have become increasingly important as AI systems begin making business-critical decisions.\n\nWhen an AI agent approves a financial transaction, accesses sensitive information, invokes another agent, or executes a long-running workflow, organizations increasingly need answers to questions such as: Who initiated the action? Has the execution history been altered? Can downstream systems trust the results? And can auditors verify the chain of events independently?\n\nWorkflow History Signing allows workflow execution histories to be cryptographically signed using identities based on the open SPIFFE standard, creating tamper-evident records that can be independently verified. Workflow History Propagation extends execution lineage across services, workflows, and application boundaries, allowing downstream systems to understand where requests originated and what prior actions influenced them. Finally, Workflow Attestation enables workflows and activities to receive trusted execution context, allowing policies and compliance checks to make decisions based on verified provenance.\n\nTogether, these capabilities create what Diagrid describes as Verifiable Execution, a model in which the history of a workflow becomes as trustworthy and auditable as the data it produces.\n\nThe release reflects a broader shift occurring across the software industry. Over the last several years, technologies such as software signing, software bills of materials (SBOMs), and artifact attestations have become foundational elements of software supply chain security. Organizations increasingly expect to know where software came from, how it was built, and whether it has been tampered with.\n\nAs AI systems become more autonomous, organizations are facing growing demands for explainability, regulatory compliance, and operational accountability. In regulated industries such as healthcare and financial services, proving how an AI-driven decision was made may become as important as the decision itself. Dapr 1.18 extends supply chain security concepts beyond software artifacts and into runtime execution, allowing workflows and AI agents to produce verifiable evidence of what happened, who performed an action, and whether the execution history remains intact.\n\nThe [Jobs API](https://docs.dapr.io/reference/api/jobs_api/), which enables scheduling of future and recurring work, has now graduated to stable status after undergoing extensive performance testing and is considered production-ready. Component and Configuration Hot Reloading is now generally available, enabling organizations to update configurations without restarting applications or interrupting running workloads.\n\nThe release also introduces improvements to the Actor runtime model. Applications can now establish a single [bidirectional gRPC stream](https://grpc.io/docs/what-is-grpc/core-concepts/) to receive callbacks from the [Dapr sidecar,](https://docs.dapr.io/concepts/dapr-services/sidecar/) eliminating the need to expose inbound server ports and reducing networking complexity and attack surface.\n\nAt the infrastructure level, Dapr 1.18 adds IPv6 and dual-stack networking support, alongside [RFC 7230](https://datatracker.ietf.org/doc/html/rfc7230)-compliant handling of hop-by-hop HTTP headers during service invocation, improving interoperability and networking security in modern environments.\n\nThe timing of the release aligns with growing industry efforts to define the infrastructure required for trustworthy AI systems. Organizations including Microsoft, the[ Agentic AI Foundation (AAIF)](https://aaif.io/), and the [Cloud Native Computing Foundation (CNCF)](https://www.cncf.io/) have increasingly focused on governance, interoperability, identity, and provenance as foundational requirements for agent-based AI systems.\n\nWith Dapr 1.18, Diagrid is betting that the next phase of cloud-native computing will not simply be about durable execution; it will be about verifiable execution, where trust, provenance, and cryptographic accountability become built-in features of the platforms powering AI and distributed applications.", "url": "https://wpnews.pro/news/dapr-1-18-introduces-verifiable-execution-bringing-cryptographic-trust-to-ai-and", "canonical_source": "https://www.infoq.com/news/2026/06/dapr-1-18-cryptographic-ai/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=global", "published_at": "2026-06-26 12:00:00+00:00", "updated_at": "2026-06-26 12:13:26.879499+00:00", "lang": "en", "topics": ["ai-agents", "ai-safety", "ai-ethics", "ai-policy", "ai-infrastructure"], "entities": ["Diagrid", "Dapr", "Catalyst Cloud", "SPIFFE"], "alternates": {"html": "https://wpnews.pro/news/dapr-1-18-introduces-verifiable-execution-bringing-cryptographic-trust-to-ai-and", "markdown": "https://wpnews.pro/news/dapr-1-18-introduces-verifiable-execution-bringing-cryptographic-trust-to-ai-and.md", "text": "https://wpnews.pro/news/dapr-1-18-introduces-verifiable-execution-bringing-cryptographic-trust-to-ai-and.txt", "jsonld": "https://wpnews.pro/news/dapr-1-18-introduces-verifiable-execution-bringing-cryptographic-trust-to-ai-and.jsonld"}}