I built an open-source authorization layer for AI agents — here's what the audit trail looks like

I built an open-source authorization layer for AI agents — here's what the audit trail looks like

When an AI agent takes an action in production — isolates a host, rotates credentials, applies a patch — you can log what happened. But you can't prove it was authorized. Logs show what happened. They don't prove who said it was allowed to happen.

I built Shani to solve this. It sits between an agent's intent and execution, issues signed authorization tokens, and produces a tamper-evident audit trail.

The core idea

Agent ──DecisionProposal──► Shani ──ADO──► ExecutionBoundary ──Capability──► World