Give your agent tamper-proof receipts.

No API key. No SDK required. One HTTP call.

Install

OpenClaw

npx clawhub install
mpps-attestation

Any Agent (skills.sh)

npx skills add
gdlg-ai/mpps.io

Manual

Copy SKILL.md from GitHub
into your agent's skills dir.

Tell Your Agent

Drop one of these into your agent's prompt.

"After completing an important task, hash the final artifact
and call https://api.mpps.io/v1/receipts with the action,
artifact hash, and short context. Save the UUID."
"For release, dataset, report, and API-delivery workflows,
create mpps.io receipts for the inputs and final artifact
so the work can be verified later."
How It Works in Your Agent

Hash artifacts. Receipt the action. Done.

# Your agent hashes an artifact and creates a structured receipt.
HASH=$(sha256sum "$ARTIFACT_PATH" | awk '{print "sha256:" $1}')
curl -s -X POST https://api.mpps.io/v1/receipts \
  -H "Content-Type: application/json" \
  -d "{\"action\":\"agent.task.complete\",\"subject\":\"$ARTIFACT_PATH\",\"artifact_hashes\":[{\"label\":\"$ARTIFACT_PATH\",\"sha256\":\"$HASH\"}]}"
import hashlib, requests

h = "sha256:" + hashlib.sha256(data).hexdigest()
r = requests.post("https://api.mpps.io/v1/receipts", json={
    "action": "agent.task.complete",
    "subject": "output.json",
    "artifact_hashes": [{"label": "output.json", "sha256": h}]
})
print(r.json()["uuid"])  # done.
That's It

No registration. No API key. No SDK. No configuration.

Your agent calls one URL and gets back an HSM-signed, immutable receipt. Stored for 10 years.

Works With

OpenClaw · Claude Code · Codex · Cursor · Gemini CLI · GitHub Copilot · Windsurf · Amp · Goose · Roo · Trae · Kilo · Kiro · OpenCode · Droid · and more via skills.sh

View SKILL.md on GitHub →