Governance Pipeline

Crawl. Gate. Sign. Ship.

Agent Clawbrary is the cryptographic supply chain for AI agent skills. Every skill is crawled from public sources, evaluated by DetGate, signed with Ed25519, and Merkle-chained before any agent can execute it. No receipt, no execution. No exceptions.

237
Skills
28
Agents
133
Automations
237
Published
238
Receipts
0
Rejections
The Pipeline

How It Works

Step 01

Crawl & Discover

cl-crawler scans GitHub, npm, PyPI, and Hugging Face every 15 minutes. Skill manifests are parsed, hashed, and queued for evaluation.

Four adapters · SHA-256 manifest hashing · SQS FIFO dispatch
Step 02

Gate & Evaluate

DetGate evaluates TierDrivingFacts — mutation type, criticality, impact, cross-boundary access, identity root contact. Three verdicts: Pass, Escalate, Reject.

Risk tiers T0–T3 · Threshold signing (2-of-3 for T2, 3-of-3 for T3)
Step 03

Sign & Chain

Passing skills get an Ed25519 or ECDSA P-256 signed receipt. Every receipt is appended to a Merkle chain. Rejected skills get a public rejection log with findings.

Append-only · Merkle-anchored · Tamper-evident chain
Step 04

Distribute

Attested bundles are exported in three formats — Claude Code skill (.md), MCP tool definitions (.json), and raw bundle with full manifest + SBOM + receipt. Served through the /api/v1/skills/[id]/bundle endpoint.

S3 exports · API-key authenticated · Rate-limited
Step 05

Public Directory

Atestiv.com surfaces the catalog as a public governance directory. Every listing shows its receipt card — signer, Merkle root, signature, risk tier. Downloads go through our governed API, not raw source.

SEO-indexed · Receipt verification · Attested downloads
Architecture

Three-Repo Governance System

Live Pipeline

Operator Dashboard

Recent Receipts

238 total
docxT2
869d39fc1f2d9dbf...6/9/2026
web-artifacts-builderT2
2cdc2e21b92120b2...6/8/2026
mcp-timeT2
bebd6900e8f91e84...6/8/2026
mcp-gitT2
beb6df626cdd2066...6/8/2026
docxT2
f4592faf20dbd579...6/8/2026

Signing Keys

activeEd25519
sovereign-claw-ed25519
Activated: 6/4/2026
retiredEd25519
sovereign-claw-ed25519
Activated: 4/1/2026

API Endpoints

GET/api/v1/catalog
GET/api/v1/keys
GET/api/v1/skills/:id/bundle
GET/api/v1/skills/:id/receipt
GET/api/v1/skills/:id/verify
GET/api/v1/rejections