Persistent identity infrastructure

Your agent dies every session. Its identity doesn't have to.

Give your agent a permanent address, credentials, audit trail, and namespace — everything it needs to operate across sessions.

Start FreeTry it in 5 minutes

Verify any agent → Paste a DID or AAT to see the full attestation chain.

Watch the substrate live → Real-time SCITT receipts, trust histogram, signed by AgentLair.

Clone-and-run examples → Three repos: BCC, x402-on-Base, audit-chain dispute resolution.

Permanent address

@agentlair.dev email that survives session restarts.

Permanent credentials

Zero-knowledge vault. Not env vars.

Permanent record

Every action signed, chained, provable.

Permanent namespace

Isolated pods. One per client.

Permanent reputation

Behavioral trust scores across sessions. Observable, not declarative.

terminal
$ curl -X POST https://agentlair.dev/v1/register \
  -H "Content-Type: application/json" \
  -d '{"name": "my-agent"}'

{
  "api_key": "al_live_k7x9m2p4...",
  "account_id": "acc_7kX9mP2qR4wL",
  "email_address": "my-agent@agentlair.dev",
  "tier": "free"
}
SEE IT IN ACTION

Trust earned, not claimed

Every tool call, credential read, and escalation feeds the trust engine. Scores come from the audit trail — not from what an agent says about itself.

Healthy agent

productivity-agent

78
/ 100
senior

↑ Improving

1,240 observations

Consistency82
Restraint75
Transparency76

Regular sessions, appropriate escalations, minimal credential access.

Suspicious agent

exfil-agent

23
/ 100
intern

↓ Declining

89 observations

Consistency31
Restraint8
Transparency41

10 vault reads per session, 3 rate-limit hits, zero escalations.

New agent

new-agent

30
/ 100
intern

→ Stable

12 observations

Consistency50
Restraint50
Transparency50

Insufficient history — trust builds with each verified action.

Browse live agent scores →
FIVE PILLARS OF PERSISTENT IDENTITY

Identity that outlasts the session

Agents are stateless by default. AgentLair gives each agent a durable identity layer — address, credentials, record, namespace, and reputation — that persists regardless of where or how often the agent runs.

Permanent address

"Your agent wanted an email. CAPTCHA said no."

Claim @agentlair.dev addresses. Send and receive email via REST API — no SMTP, no CAPTCHA, no browser required. Drafts, threading, and webhooks included.

Permanent credentials

"Your secrets shouldn't live in env vars."

Zero-knowledge credential storage. Your agent encrypts locally, we store opaque blobs. Versioned, recoverable, edge-deployed. Survives container restarts. Agents without persistent credentials fall back to browser automation. Reflex benchmarked the cost: 551k tokens and 17 minutes vs 12k tokens and 20 seconds — same task, same model. The 45x gap isn't a model problem. It's a credential problem.

Permanent record

"Every action signed, chained, provable."

Log every tool call, LLM invocation, and decision to a persistent, queryable audit trail. EdDSA-signed entries — tamper-evident by construction. Verify any attestation receipt in your browser.

Permanent namespace

"Isolated environments that persist."

Multi-tenant isolation via pods. Each pod gets its own API key, email, vault, and audit trail — fully sandboxed per client, persistent across sessions.

Permanent reputation

"Behavioral trust across sessions."

Trust scores computed from observed behavior — consistency, transparency, topic diversity, and activity volume. Four tiers from untrusted to verified. Query via API to gate permissions or surface agent credibility.

ACCOUNTABILITY LAYER

Cloudflare + Stripe solved the transaction layer. AgentLair solves the accountability layer.

Cloudflare and Stripe just demonstrated agents that create accounts, register domains, and deploy infrastructure autonomously — no human in the dashboard. Stripe caps what the agent can spend. HN asked the follow-on question Stripe can't answer: who is accountable when the agent registers a trademarked domain, exposes a user credential, or exceeds its mandate in ways that never touch the credit card? Transaction authorization handles financial risk. Accountability handles everything else — and in an agent-mediated world, everything else is most of it. AgentLair closes that gap. Every agent operating through AgentLair carries a cryptographic identity tethered to a named human owner. Every action is signed, chained, and attributable. Stripe hands the agent a spending limit. AgentLair hands the human a chain of custody.

LAYERSOLVED BYWHAT IT HANDLES
TransactionStripeDid the agent have financial authorization? Was the spend within limits?
ExecutionCloudflareDid the agent successfully provision the infrastructure?
AccountabilityAgentLairWho is legally and cryptographically responsible for every action taken, financial or not?
HOW WE'RE DIFFERENT

vs AgentMail

They give you a permanent address.

We give you a permanent identity.

vs Keycard

Ephemeral credentials per session.

Persistent vault that survives restarts.

vs Enterprise IAM

Corporate infra, SSO required.

Internet-native, no org required.

ANALYST CONTEXT

Agents are scaling faster than governance

The adoption-governance gap is not a prediction — it's already measured. Enterprises are deploying agents without the behavioral visibility to know what those agents are actually doing.

74%

of enterprises expect to use AI agents by 2027

n=3,235 across 24 countries

21%

have mature governance in place for those agents

The other 79% are running blind.

Deloitte State of AI in the Enterprise, Jan 2026
FORRESTER

Forrester AEGIS Framework (Aug 2025)

Forrester's enterprise security framework for agentic AI names "least agency" as a core principle — constraining what agents can do based on observed behavior, not claimed intent. Six domains. Thirty-nine controls. The governance layer most enterprises are still missing.

Read the framework ↗
ALREADY IN PRODUCTION

Shipped in the wild

Two open-source agent frameworks have already integrated AgentLair in production — JWKS identity verification and behavioral telemetry running on real agent workloads.

Shipped v3.2.0TypeScript · MCP

task-orchestrator

by jpicklyk

MCP-based workflow automation for Claude agents. Added JWKS ActorVerifier pointing to AgentLair as the reference identity provider — every audited action now verifies agent identity against AgentLair's trust store.

Merged PR #38Gleam · BEAM

springdrift

by seamus-brady

Gleam/BEAM agent platform. Integrated behavioral telemetry via fire-and-forget POSTs — every gate event builds a persistent audit record on AgentLair, compounding the agent's trust score over time.

3 packages on npm

@agentlair/sdk

v0.4.2

Agent identity & trust API

npm i @agentlair/sdk

@agentlair/mcp

v1.2.0

MCP server — trust queries in one command

npx @agentlair/mcp@latest

@agentlair/vault-crypto

v0.1.0

Zero-knowledge credential encryption

npm i @agentlair/vault-crypto

Simple, transparent pricing

Start free. Identity verification from day one. Report behavioral events to build compounding trust scores as your agent fleet grows.

Free

$0/month
Identity verification for individual agents
3 agents
1,000 verifications/month
500 behavioral events/day
7-day event history
AAT issuance (Ed25519 JWT)
JWKS endpoint (.well-known/jwks.json)
Basic agent profile page
Community support (GitHub Issues)
Get Started

Starter

$29/month
Audit trail, email, and vault for production agents
25 agents
50,000 verifications/month
Ed25519-signed hash-chained audit trail
1-year audit log retention
Agent email (@agentlair.dev)
Encrypted credential vault
10 pods (sub-identities)
Webhook notifications
5,000 behavioral events/day
30-day event history + aggregation
Trust level: senior achievable
Email support

Pro

$149/month
Cross-org behavioral trust scoring — the moat
200 agents
500,000 verifications/month
50,000 behavioral events/day
90-day event history + ZK-ready Merkle roots
Trust level: principal achievable
Cross-org behavioral trust scoring
ATF compliance engine
Trust API (10K queries/month)
x402 payment integration
W3C VC issuance
Priority support

Enterprise

Custom
Govern your agent fleet at scale
Unlimited agents
Custom event volume + retention
ZK-proof behavioral attestations
Custom trust policies
SSO/SAML
EU data residency
99.9% uptime SLA
Dedicated support
Contact Us

Got Questions?

If you can't find what you're looking for, get in touch.

Platform

Email & Identity

Technical

Agentic Commerce & Payments