Open-source · audit-prep · MIT licensed

The compliance layer
for AI agents

Hash-chained audit trail. Scoped agent sessions. Encrypted vault. Signed audit-prep evidence packs delivered to your inbox every month — the agent-activity slice an auditor needs for a SOC2 workpaper.

Live tamper demo → Evidence pack Self-host in 5 min
haldir
01
Gate
Scoped sessions for every agent. Permissions, spend limits, and TTL enforced on every tool call.
02
Vault
Encrypted secrets agents never see. Payment authorization with per-session budget enforcement.
03
Watch
Immutable audit log. Anomaly detection. Cost tracking. The compliance layer enterprises need.
04
Proxy
Every tool call intercepted, authorized, and logged. Allow lists, rate limits, and policy enforcement before agents touch your APIs.
Two ways to run Haldir

Open-source. Self-host or use our cloud.

SELF-HOST
Run it yourself — free forever
MIT licensed. Full feature parity with hosted. Docker-compose up. Your data never leaves your perimeter. Perfect for regulated industries and air-gapped environments.
git clone github.com/ExposureGuard/haldir
cd haldir && docker compose up
Self-host guide
CLOUD
We run it — you ship
Free tier + paid plans. We handle uptime, backups, scaling. SLA and compliance certifications included. Same API, same SDKs — point your client at haldir.xyz instead of localhost.
pip install haldir
# that's it — live API, no signup
Try cloud now

Same API. Same SDKs. Same hash-chained audit. Migrate between them anytime — only DATABASE_URL changes.

Now accepting 5 design partners

Deploying AI agents in production?
Lock them down with Haldir.

30 days free. Full access to Gate, Vault, Watch, and Proxy. Direct line to the founder. In exchange: honest feedback and permission to use your logo if you love it.

Claim a pilot spot
9
MCP Tools
<200ms
Latency
AES-256-GCM
Encryption
Models

Try it. Right now.

No signup. One click. Live API.

Ship agents. Sleep at night.

Free. No credit card. Start in 30 seconds. 
pip install haldir
API Docs GitHub Smithery