Proof of what an agent actually did.

A Gold Seal is a portable, signed certificate of an AI-agent session. Drop one below and this page re-checks the hash‑chain, re-derives the summary from the events so it can't lie, and verifies the issuer's Ed25519 seal — entirely on your machine. Zero trust in whoever produced it.

Drop a goldseal.json or paste the certificate below (a single JSON object)

pin the issuer public key (hex) — optional; reject any other signer

try:

SEALED

Gold Seal · goldseal@v1

—

Stamp it on the work

korg Gold Seal✓ verified

What this seal proves

The events are hash-chained intact — nothing inserted, deleted, reordered, or edited.
The summary was re-derived from those events — the file count, tools, and paths cannot lie.
The issuer signed the whole thing (claim + summary + tip + any anchors) with one Ed25519 key.
If anchored: the anchor set is sealed — it can't be stripped or forged, and points at a real chain event.

What it does not prove

When it happened — the anchor is sealed, but resolving it against public git history (the trusted-time step) is done over the network.
That the key is a real-world identity — pin a key you already trust.
That the prose claim is true — only that no one but the issuer could have written it.