ADR-Ledger: Agent Governance Protocol
The Problemβ
AI agents are making consequential decisions β about code architecture, system configuration, resource allocation β with increasing autonomy.
But we have no verifiable way to answer:
- Who authorized this agent to act?
- What rules was it following when it decided?
- Why was this specific decision made?
- Can I verify all of this without trusting anyone?
The Thesisβ
We need institutional infrastructure for autonomous agents β the equivalent of constitutions, courts, and auditors β built on substrate that no single party controls.
Principlesβ
From d/acc (Vitalik Buterin)β
"Build technology that is structurally more favorable to defense than offense."
Our agents operate in sandboxes. Fail-closed by default. Power is distributed through quadratic mechanisms. Identity is soulbound β earned, not bought.
From Sovereign Computing (Radicle)β
"Your code, your rules, your infrastructure."
Policies live in Radicle, not GitHub. No one can censor a governance proposal. Forks are legitimate dissent. Everything works local-first.
Synthesisβ
"Verifiable institutions for autonomous agents, built on infrastructure nobody controls alone."
Architectureβ
- NixOS: Declarative, reproducible, atomic enforcement
- OPA/Rego: Policy-as-code, deterministic evaluation
- Radicle: Sovereign, p2p policy versioning
- Algorand: Immutable audit trail, atomic multi-party approval
Every decision an agent makes is:
- Evaluated against peer-reviewed policies (Radicle β OPA)
- Enforced at the OS level (NixOS)
- Recorded immutably (Algorand)
- Reproducibly verifiable (by anyone, forever)