Show HN:Conduit–Headless browser with SHA-256 hash chain - Ed25519 audit trails

2•TaxFix•1h ago

I've been building AI agent tooling and kept running into the same problem: agents browse the web, take actions, fill out forms, scrape data -- and there's zero proof of what actually happened. Screenshots can be faked. Logs can be edited. If something goes wrong, you're left pointing fingers at a black box.

So I built Conduit. It's a headless browser (Playwright under the hood) that records every action into a SHA-256 hash chain and signs the result with Ed25519. Each action gets hashed with the previous hash, forming a tamper-evident chain. At the end of a session, you get a "proof bundle" -- a JSON file containing the full action log, the hash chain, the signature, and the public key. Anyone can independently verify the bundle without trusting the party that produced it.

The main use cases I'm targeting:

- *AI agent auditing* -- You hand an agent a browser. Later you need to prove what it did. Conduit gives you cryptographic receipts. - *Compliance automation* -- SOC 2, GDPR data subject access workflows, anything where you need evidence that a process ran correctly. - *Web scraping provenance* -- Prove that the data you collected actually came from where you say it did, at the time you say it did. - *Litigation support* -- Capture web content with a verifiable chain of custody.

It also ships as an MCP (Model Context Protocol) server, so Claude, GPT, and other LLM-based agents can use the browser natively through tool calls. The agent gets browse, click, fill, screenshot, and the proof bundle builds itself in the background.

Free, MIT-licensed, pure Python. No accounts, no API keys, no telemetry.

GitHub: https://github.com/bkauto3/Conduit

Install: `pip install conduit-browser`

Would love feedback on the proof bundle format and the MCP integration. Happy to answer questions about the cryptographic design.

Comments

etiquette•25m ago

I don't get how this AI slop would realistically work for compliance? It's not like the proof bundle has hardware-backed attestation, any malicious AI agent/person can just, y'know, forge a hash chain and sign it with their key

Ask HN: What on this "List of Unsolved Problems in Physics" Has Your Attention?

Open-source GPU virtualization and pooling for Kubernetes

Iceberg was once the biggest in the world. Now it has just weeks left

Boosting Android Performance: Introducing AutoFDO for the Kernel

On The Need For Understanding

Are we doing UX for AI the right way?

Show HN: A tool that audits healthcare ML models for safety and trust

Show HN: Bus Core 1.0.3 Local-first manufacturing system for small shops

My father left gold and cash. He left zero words for his family-I built the fix

Grammarly Is Facing a Class Action Lawsuit over Its AI 'Expert Review' Feature

Show HN: K9 Audit – Causal intent-execution audit trail for AI agents

Measure of Justice: Covering the Cerîde-I Adliye Covers (2017)

Happy Birthday YC/HN

Microsoft's 'Xbox Mode' Coming to Windows 11 PCs Next Month

Ask HN: Embedding Claude Code as infrastructure?

Show HN: I built an open harness that excels at autonomous ML research

AI should help us produce better code

DIY scanner to visualize sound waves in 3D [video]

Do AI-enabled companies need fewer people?

SmallClaw: Local-first AI agent framework built for small models

Windows 98 NVMe Driver [video]

Iran warns US tech firms could become targets as war expands

Why isn't vibe coding creating more shareware?

Divine-OS – Persistent Identity Layer for AI Agents

I-Harmonium

Show HN: s@: decentralized social networking over static sites

Experimental Type Union Type C#

PFAS pesticides contaminate nearly 40% of non-organic California produce

The Perverse, Tender Worlds of Paul Thomas Anderson

Show HN: AI-nexus – Only 2-3 rules and skills load per prompt in Claude Code