Vouchq – self‑hosted trust registry that pins AI tool definitions and detects drift
Vouchq tackles the risk of AI agents loading tools whose definitions can be silently altered by snapshotting each approved definition and storing a SHA‑256 hash. It continuously rescans live definitions, runs rule‑based risk scans, and raises drift events with a tamper‑evident audit trail. Built as a Spring Boot service with PostgreSQL, it serves organizations that deploy AI agents and need governance over tool integrity. Unlike static catalogs, Vouchq provides active verification and governance, not just discovery.
View on GitHub →ma3s1r0/Vouchq