Rubric captures, cryptographically signs, and anchors every decision your AI systems make. Post-quantum. On a public ledger. The evidence your auditors will accept — without the manual work.
NIST FIPS 204 · SOC 2 audit in progress · 4,900+ SDK installs across organizations worldwide
Your records do not depend on Rubric staying in business, trustworthy, or online. Every attestation is mathematically verifiable by anyone, at any time, with nothing but the public key and the ledger. By design.
Every attestation is signed by a quorum of federation nodes across five jurisdictions. No single party — including Rubric — can forge, alter, or suppress a record. Compromising the system requires compromising three sovereign data centers simultaneously.
Merkle roots are written to the Hedera Consensus Service — a public, immutable distributed ledger with ten-year operational history. Your proof outlives any vendor relationship. An auditor in 2033 can verify an attestation made today, whether Rubric still exists or not.
Signed with ML-DSA-65, the NIST FIPS 204 post-quantum standard. RSA and ECDSA signatures written today will be forgeable within the record retention window. Rubric signatures will not. The proof you make now still verifies in 2040.
No vendor lock-in. No trust required. Verifiable by math.
Traditional compliance tools bolt on after the fact. Rubric embeds at the framework level — signing happens before any network call, anchoring happens transparently in the background. Zero latency impact on your pipeline. Works alongside any existing AI infrastructure or trust layer.
An ML-DSA-65 keypair is provisioned per customer at onboarding. Every AI decision is signed locally in under a millisecond — the cryptographic proof exists before any network call is made.
NIST FIPS 204 · Post-QuantumDecisions accumulate in the SDK's in-memory queue and flush to Rubric's global federation in batches. Standard flush every 5–10 seconds. High-risk decisions — credit denials, medical triage — trigger immediate flush.
Zero latency impactDecisions are batched into Merkle trees. A single HCS transaction anchors thousands of decisions. Each decision can be independently verified against the public root — without trusting Rubric.
SHA3-256 · Hedera HCSAfter anchoring, every attestation receives a Poseidon2 Merkle inclusion proof — independently verifiable against the on-chain root without Rubric's involvement. Customers hold cryptographic evidence of their record. Not a claim. A proof.
Noir · Poseidon2 · BN254Add one line at app startup. Rubric auto-detects your frameworks and patches them at the class level — OpenAI, Anthropic, LangChain, LlamaIndex, AutoGen, CrewAI, LangGraph, DSPy, Agno, Azure AI Agents, and more. Every LLM call, every agent decision, every tool use is cryptographically attested. No per-decision code. No codebase audit. Complete by construction.
instrument() injects a callback handler into LangChain's CallbackManager at startup — every LLM call, chain output, and agent finish is attested automatically.
instrument() patches Completions.create at the class level — every chat completion, sync or async, is attested automatically. No wrapper, no code changes.
Auto-instrumentation for 13 frameworks: OpenAI, Anthropic, LangChain, LlamaIndex, AutoGen, CrewAI, Haystack, Semantic Kernel, LangGraph, DSPy, Pydantic AI, OpenAI Agents SDK, and Google ADK. Zero required dependencies.
Install once via npx. Exposes 8 tools: attest, verify, get_proof, register_agent, status, framework_detect, cost_estimate, and bundle_query — works in Claude Desktop, Claude Code, Cursor, Windsurf, Continue, Zed, and any MCP-compatible host.
Same surface as the TypeScript port, native Python implementation. Built on Anthropic's official mcp Python SDK. Drop into Claude Desktop, Cursor, or any MCP-compatible host — or call programmatically from a Python agent.
Every AI decision flows into your existing security and compliance infrastructure automatically. Real-time webhooks for Splunk and Elastic. CSV exports for ServiceNow, Archer, and OneTrust. Court-admissible PDF reports on demand. One API call — your team is operational in 30 minutes.
Register a webhook once. Every AI decision arrives at your SIEM endpoint in real time, HMAC-SHA256 signed, in ECS-compatible NDJSON format. Zero polling, zero gaps.
Pull attestation data as CSV on any schedule. Maps directly to ServiceNow GRC and Archer record schemas. Filter by agent, pipeline, or date range. No transformation required.
Generate a compliance report for any time period in a single API call. SHA3-256 hash sidecar included. Suitable for regulatory submission, board reporting, and legal proceedings.
Article 12 requires high-risk AI systems to maintain tamper-evident logs of autonomous decisions. Rubric provides the complete audit trail — decision content, timestamp, cryptographic proof of integrity.
The complete, signed record of every AI agent decision is cryptographically captured and anchored. An auditor can retrieve and verify the precise details of any decision made at any point in time.
Every attestation receives an HCS sequence number and consensus timestamp from Hedera's public ledger. The timestamp cannot be altered — it's a time public record verifiable on HashScan.
ML-DSA-65 signatures bind the decision content to its timestamp. Any modification to the decision after signing produces a verification failure -- detectable by anyone, without trusting Rubric.
EU AI Act Article 12 enforcement begins August 2, 2026. High-risk AI systems — credit decisioning, medical triage, hiring, law enforcement — must maintain logging sufficient to enable post-market monitoring.
Rubric provides: tamper-evident decision logs, cryptographic integrity verification, publicly auditable anchoring, and an auditor portal for compliance officers — without access to Rubric's internal systems.
Every attestation generates a permanent, tamper-evident URL. Share it with auditors, regulators, or counterparties. No login required. No trust in Rubric required. Verifiable by anyone, forever.
This is a live attestation anchored to Hedera Consensus Service. Click to verify it independently.
Post-quantum cryptography, federation design, zero-knowledge proof architecture, and EU AI Act compliance mapping — in full technical detail.
10 sections · Includes Two Sigma SEC enforcement case analysis · March 2026
2 pages · Targeted at model risk officers and CROs · March 2026
Free tier for developers. No credit card required. Upgrade when your pipeline outgrows 1,000 attestations per month.
9 partner spots remaining. Closes August 1, 2026.
60 days free. Full Enterprise access. $2,500/mo after pilot.
Apply for a Partner Spot →autogen-rubric supports 13 frameworks today with zero required dependencies. Coming integrations ship in the order enterprises ask for them.
At billions of AI decisions per day, audit-by-replay breaks down. Rubric’s ZK layer changes the equation: every decision your AI makes is cryptographically attested the moment it happens, with a Poseidon2 inclusion proof customers hold independently. Regulators get verifiable evidence — without ever seeing your models, your data, or your strategy. Authentic by construction. Auditable without exposure.