Now in private beta

The guardrails that let AI actually do things — safely.

Agents never call APIs, run commands, or spend money directly.
They go through VorLoop — every action is policy-checked,
logged immutably, and certified with cryptographic proofs.

Rust coreNoir ZKPedersen Merkle
Works with
OpenAI
Claude
OpenClaw
LangChain
CrewAI
AutoGen
AutoGPT
Any MCP agent
Any AI framework
OpenAI
Claude
OpenClaw
LangChain
CrewAI
AutoGen
AutoGPT
Any MCP agent
Any AI framework
AI Agent
VorLoop
Certified
Live Audit Chain
height 000
verifying…

The governance plane between AI and the real world

VorLoop sits between any AI agent platform and the real world. Every exec, file open, network call, MCP tool, or budget spend is evaluated against YAML policies, executed inside a sandbox, and written to a signed, hash-chained audit trail. Sessions can be instantly certified with portable Session Compliance Certificates — Merkle + Ed25519 + optional Zero-Knowledge proofs via Noir/Barretenberg.

Four layers of protection

Defense in depth for autonomous AI systems

Policy Engine

Block-list, allow-list, rate limits, human approval, and budget caps — all in simple YAML. Real-time ptrace + Docker sandbox enforcement.

Immutable Audit + Live TUI

Every action is logged to append-only JSONL with cryptographic signatures. Watch live in the Ratatui-powered terminal dashboard.

Session Compliance Certificates

One-click portable proof that an agent session was fully compliant. Verifiable by anyone in <5ms (browser Ed25519 + Merkle) or ~1s (ZK proof).

Zero-Knowledge Trust Layer

Pedersen-hash-zk circuit proves compliance without revealing any raw events. 16KB proofs, fully trustless verification.

Watch agents in real-time

The VorLoop TUI shows every action as it happens. Press K to generate a certificate.

vorloop watch --session agent-001
┌─ VorLoop TUI v0.1.0 ─ Session: agent-001 ─ Press 'K' for certificate ─┐
>
Events: 0 | Blocked: 0Hash: 00000000

Zero-knowledge proofs,zero trust required

Our Noir circuit compiles session data into a compact proof that anyone can verify without seeing the raw events. Perfect for compliance audits where you need to prove behavior without exposing sensitive data.

  • Private inputs stay private
  • Public verdict is cryptographically binding
  • Verification works offline in any browser
session_idevents[]decisions[]PedersenHashUltraHonkmerkle_rootverdict
Private InputsPLONK GatesPublic Outputs
Session Compliance Certificate
SCC-2024-------
{
"session_id": "agent-------",
"events": 142,
"blocked": 3,
"merkle_root": "0x----------------...",
"timestamp": "--------------------Z"
}
Ed25519 Signature
Verified against public key
Merkle Root
Hash chain integrity confirmed
Noir ZK Proof
Zero-knowledge verification passed

Instant verification,anywhere

Session Compliance Certificates are portable JSON files that anyone can verify without trusting VorLoop's servers. Share them with auditors, regulators, or customers as cryptographic proof of compliant behavior.

<5ms
Ed25519 + Merkle
~1s
Full ZK verify
16KB
Proof size

Who needs this?

Enterprise Security Teams
Control what AI agents can access and do
Compliance Officers
SOC 2, HIPAA, ISO 27001 audit trails
AI Liability Insurers
Cryptographic proof of agent behavior
Enterprise Customers
Verify agents never touched unauthorized resources

Cryptographically verified. No trust required.

Ready to secure your AI agents?

Join the private beta and be among the first to deploy production-ready AI safety infrastructure.