agent-passport-system

Enforcement and accountability layer for AI agents. Bring your own identity (did:key, did:web, SPIFFE, OAuth, did:aps). Gateway enforcement boundary, monotonic narrowing, cascade revocation, spending controls, data lifecycle, observation governance (telemetry scopes, derivation rights, behavioral memory). Use when agents need scoped delegation, trust scoring, constraint enforcement, or cryptographic audit trails. 103 modules, 132 MCP tools, 2535 tests. 8 framework adapters: Stripe, Composio, IBAC/Cedar, LangChain, CrewAI, MCP, A2A, Gonka.

3,891 stars

byopenclaw

View on GitHub Installation ↓

Best use case

agent-passport-system is best used when you need a repeatable AI agent workflow instead of a one-off prompt.

Teams using agent-passport-system should expect a more consistent output, faster repeated execution, less prompt rewriting.

When to use this skill

You want a reusable workflow that can be run more than once with consistent structure.

When not to use this skill

You only need a quick one-off answer and do not need a reusable workflow.
You cannot install or maintain the underlying files, dependencies, or repository context.

Installation

Claude Code / Cursor / Codex

$curl -o ~/.claude/skills/agent-passport-system/SKILL.md --create-dirs "https://raw.githubusercontent.com/openclaw/skills/main/skills/aeoess/agent-passport-system/SKILL.md"

Manual Installation

Download SKILL.md from GitHub
Place it in .claude/skills/agent-passport-system/SKILL.md inside your project
Restart your AI agent — it will auto-discover the skill

How agent-passport-system Compares

Feature / Agent	agent-passport-system	Standard Approach
Platform Support	Not specified	Limited / Varies
Context Awareness	High	Baseline
Installation Complexity	Unknown	N/A

Frequently Asked Questions

What does this skill do?

Where can I find the source code?

You can find the source code on GitHub using the link provided at the top of the page.

Related Guides

Best AI Skills for Claude

Explore the best AI skills for Claude and Claude Code across coding, research, workflow automation, documentation, and agent operations.

AI Agents for Coding

Browse AI agent skills for coding, debugging, testing, refactoring, code review, and developer workflows across Claude, Cursor, and Codex.

AI Agents for Marketing

Discover AI agents for marketing workflows, from SEO and content production to campaign research, outreach, and analytics.

SKILL.md Source

# Agent Passport System

## When to use this skill

- Agent needs cryptographic identity (Ed25519 passport)
- Delegate authority between agents with scope, spend limits, depth controls
- Revoke access — one call kills all downstream delegations
- Run agent commerce with 4-gate checkout (passport, delegation, merchant, spend)
- Coordinate multi-agent tasks (assign, evidence, review, deliver)
- Track data contributions with Merkle proofs
- Encrypt agent-to-agent communication (E2E, forward secrecy)
- Score agent trust (Bayesian reputation, passport grades 0-3)
- Enforce values compliance (8 principles, graduated enforcement)
- Found institutions with charters, offices, approval policies

## Install

```bash
npm install agent-passport-system        # SDK (103 modules)
npm install agent-passport-system-mcp    # MCP server (132 tools)
```

Remote MCP (zero install): `https://mcp.aeoess.com/sse`

## Core workflow

### 1. Create identity → returns passport + keypair

```bash
npx agent-passport join --name my-agent --owner alice
```

Output: `.passport/agent.json` with Ed25519 keypair, signed passport, values attestation. Treat like an SSH key.

### 2. Delegate authority → returns signed delegation

```bash
npx agent-passport delegate --to <publicKey> --scope web_search,commerce --limit 500 --depth 1 --hours 24
```

Output: signed delegation with scope, spend limit, max depth, expiry. Authority can only narrow at each transfer.

### 3. Record work → returns signed receipt

```bash
npx agent-passport work --scope web_search --type research --result success --summary "Found 3 sources"
```

Output: Ed25519-signed receipt traceable to a human through the delegation chain.

### 4. Prove contributions → returns Merkle proof

```bash
npx agent-passport prove --beneficiary alice
```

Output: Merkle root + inclusion proofs. 100K receipts provable with ~17 hashes.

## MCP tools (132 total)

Setup: `npx agent-passport-system-mcp setup` (auto-configures Claude Desktop + Cursor)

**Identity & trust (12 tools):**
generate_keys, identify, issue_passport, verify_issuer, verify_passport, create_principal, endorse_agent, get_passport_grade, list_issuance_records, get_behavioral_sequence, verify_endorsement, revoke_endorsement

**Delegation & revocation (5):**
create_delegation, verify_delegation, revoke_delegation, sub_delegate, create_v2_delegation

**Commerce & wallets (4):**
commerce_preflight, get_commerce_spend, request_human_approval, create_checkout

**Coordination (11):**
create_task_brief, assign_agent, accept_assignment, submit_evidence, review_evidence, handoff_evidence, get_evidence, submit_deliverable, complete_task, get_my_role, get_task_detail

**Communication (7):**
send_message, check_messages, broadcast, list_agents, post_agora_message, register_agora_agent, register_agora_public

**Governance & policy (12):**
load_values_floor, attest_to_floor, create_intent, evaluate_intent, create_policy_context, create_agent_context, execute_with_context, create_charter, sign_charter, verify_charter, create_approval_request, add_approval_signature

**Data attribution (10):**
register_data_source, create_access_receipt, create_derivation_receipt, create_decision_lineage_receipt, record_training_use, check_data_access, check_purpose_permitted, check_retention_expired, query_contributions, generate_compliance_report

**Intent Network (5):**
publish_intent_card, remove_intent_card, search_matches, request_intro, respond_to_intro

## Framework adapters (8)

One-function governance for every major agent framework. Each wraps tool/task execution with APS delegation checks and Ed25519-signed receipts.

```typescript
import {
  governLangChainTool,              // LangChain/LangGraph
  governCrewTask,                   // CrewAI
  governMCPToolCall,                // Any MCP server
  governIBACIntent,                 // IBAC (Cedar/OPA)
  passportToA2ACard,                // A2A Agent Cards
} from 'agent-passport-system'

// Also available as standalone packages:
// npm install @aeoess/stripe-governance
// npm install @aeoess/composio-governance
```

| Adapter | Function | What it wraps |
|---------|----------|--------------|
| LangChain | `governLangChainTool()` | BaseTool.invoke() |
| CrewAI | `governCrewTask()` | Crew task execution |
| MCP | `governMCPToolCall()` | Any MCP tool call |
| IBAC/Cedar | `governIBACIntent()` | Cedar/OPA policy tuples |
| A2A | `passportToA2ACard()` | Agent Card ↔ passport bridge |
| Stripe | `governMPPPayment()` | Stripe agent payments |
| Composio | `governComposioAction()` | 250+ tool integrations |
| Gonka | `governGonkaInference()` | Decentralized GPU compute |

## Programmatic API

```typescript
import {
  joinSocialContract,   // → { passport, keyPair, attestation }
  createDelegation,     // → signed Delegation
  processToolCall,      // → { permitted, constraintResults, receipt }
  cascadeRevoke,        // → { revoked: string[], receipts }
  computePassportGrade, // → 0 | 1 | 2 | 3
  createIssuanceContext, // → IssuanceContext with evidence + assessment
} from 'agent-passport-system'
```

## Passport grades (attestation architecture)

| Grade | Meaning | Trust signal |
|-------|---------|-------------|
| 0 | Bare Ed25519 keypair | Unverified |
| 1 | Issuer countersigned | AEOESS processed |
| 2 | Runtime-bound + challenge-response | Infrastructure-attested |
| 3 | Runtime + verified human principal | Full chain of trust |

Grade travels with the passport. Any consumer reads it without understanding scoring internals.

## Key facts

- **103 modules** (71 core + 32 v2 constitutional)
- **2,497 tests** including 50 adversarial attack scenarios
- **132 MCP tools** with role-scoped profiles
- **Policy eval <2ms**, 403 ops/sec, 15 constraint dimensions
- **Zero heavy dependencies** — Node.js crypto + uuid only
- **Apache-2.0** license

## Links

- npm: https://www.npmjs.com/package/agent-passport-system
- MCP: https://www.npmjs.com/package/agent-passport-system-mcp
- PyPI: https://pypi.org/project/agent-passport-system/
- GitHub: https://github.com/aeoess/agent-passport-system
- Docs: https://aeoess.com/llms-full.txt
- Paper: https://doi.org/10.5281/zenodo.18749779

Related Skills

filesystem

3891

from openclaw/skills

Advanced filesystem operations for listing files, searching content, batch processing, and directory analysis. Supports recursive search, file type filtering, size analysis, and batch operations like copy/move/delete. Use when you need to: list directory contents, search for files by name or content, analyze directory structures, perform batch file operations, or analyze file sizes and distribution.

General Utilities

Productivity Operating System

3891

from openclaw/skills

You are a personal productivity architect. Your job: help the user design, execute, and optimize their daily system so they consistently ship high-impact work while protecting energy and avoiding burnout.

Workflow & Productivity

Presentation Mastery — Complete Slide Design & Delivery System

3891

from openclaw/skills

You are a Presentation Architect. You help build presentations that persuade, inform, and move people to action. You cover the full lifecycle: audience analysis → narrative structure → slide design → delivery coaching → post-presentation follow-up.

Content & Documentation

OpenClaw Mastery — The Complete Agent Engineering & Operations System

3891

from openclaw/skills

> Built by AfrexAI — the team that runs 9+ production agents 24/7 on OpenClaw.

DevOps & Infrastructure

n8n Workflow Mastery — Complete Automation Engineering System

3891

from openclaw/skills

You are an expert n8n workflow architect. You design, build, debug, optimize, and scale n8n automations following production-grade methodology. Every workflow you create is complete, functional, and follows the patterns in this guide.

Workflow & Productivity

ML & AI Engineering System

3891

from openclaw/skills

Complete methodology for building, deploying, and operating production ML/AI systems — from experiment to scale.

MCP Engineering — Complete Model Context Protocol System

3891

from openclaw/skills

Build, integrate, secure, and scale MCP servers and clients. From first server to production multi-tool architecture.

AI Infrastructure & Integrations

Legacy System Modernization Engine

3891

from openclaw/skills

Complete methodology for assessing, planning, and executing legacy system modernization — from monolith decomposition to cloud migration. Works for any tech stack, any scale.

DevOps & Infrastructure

Knowledge Management System

3891

from openclaw/skills

> Turn tribal knowledge into searchable, maintained organizational intelligence. Stop losing expertise when people leave.

Decision Engine — Complete Decision-Making System

3891

from openclaw/skills

You are an expert decision architect. Help users make better decisions using structured frameworks, reduce cognitive bias, and build organizational decision-making muscle. Every recommendation must be specific, actionable, and tied to the user's actual context.

Workflow & Productivity

Client Success & Revenue Expansion — The Complete Retention Operating System

3891

from openclaw/skills

Turn clients into long-term revenue engines. This isn't advice — it's a complete operating system with scoring models, templates, playbooks, and automation patterns that work for any B2B or B2C subscription business.

Customer Success & Retention

system-architect

3891

from openclaw/skills

Acts as a Senior System Architect to design robust, scalable, and maintainable software architectures. Enforces industry standards (PEP 8 for Python, ESLint for JS/TS), modular design, and security best practices. Use this skill when the user wants to start a new project, refactor an existing one, or discusses high-level system design.

Software Design & Architecture