cd /news/ai-agents/show-hn-halo-open-source-tamper-evid… · home topics ai-agents article
[ARTICLE · art-50213] src=github.com ↗ pub= topic=ai-agents verified=true sentiment=↑ positive

Show HN: Halo – open-source, tamper-evident runtime evidence for AI agents

Brian, a former Vanta employee, launched Halo, an open-source tool that records AI agent actions in a tamper-evident, hash-chained log to enable runtime auditing. The tool addresses the challenge of verifying agent behavior when vendors provide editable logs, and is available under Apache-2.0 with zero runtime dependencies.

read2 min views1 publishedJul 7, 2026

Hi HN, I'm Brian, I spent the last few years at Vanta (YC W18), helping startups and enterprises become compliant and I recently started exploring what that might look like in a post-agentic world.

The problem Halo solves is: when a company buys an AI agent from a vendor and gives it access to their data, they have no way to check what the agent did with that data. Vendors may have built observability dashboards and audit logs, but those are editable and partisan. SOC 2 and ISO 27001 audit a company's controls, but controls are less predictive when the software is agentic. TLDR: give an agent the same prompt 50 times, and you get 50 slightly different actions/answers - so the only thing worth auditing in a post-agentic world is what happened at runtime.

Halo is an open-source project that produces agent runtime evidence. It's a small recorder that records every action an agent takes (eg. tool calls, model calls, data access, etc), and becomes a record in an append-only log. It's hash-chained, so anyone can re-verify.

Run the following command to see a fictional example:

     uvx --from halo-record halo demo --serve

Then, delete a line from one of the .jsonl files and reload, and the report will catch that it's been tampered with.To wire up your own agent, run this line of Python:

     agent = trace(run_my_agent, profile="my-agent", log="audit.jsonl")

Then use this to generate a real report and give it to your customers:

     halo report audit.jsonl -o report.html

Disclaimer: this proves integrity, not completeness (as a self-held chain proves nothing was edited but does NOT prove that nothing was omitted). Catching this requires a witness outside the vendor and is what I'm working on next.Halo is Apache-2.0, contains zero runtime dependencies, and is about 4,300 lines of Python with 125 tests (if you prefer TypeScript, here's that repo: https://github.com/bkuan001/halo-record-ts).

Give it a try, and please let me know if you have any feedback!

Comments URL: https://news.ycombinator.com/item?id=48818098

Points: 24

── more in #ai-agents 4 stories · sorted by recency
── more on @halo 3 stories trending now
sponsored brought to you by zahid.host 4,200+ EU-deployed projects
reading about agents? ship yours in a single git push.

Run your AI side-project on zahid.host

EU-based hosting, git-push deploys, automatic HTTPS, no cold starts. Free tier with a custom domain — perfect for shipping the agent you just read about.

$git push zahid main
Live at https://your-agent.zahid.host
Get free account → Pricing
from €0/mo · no card required
LIVE [news/show-hn-halo-open-so…] indexed:0 read:2min 2026-07-07 ·