Don't trust the audit trail.
Verify it yourself.
Capsule Explorer re-verifies any agent's session right in your browser: every SHA3-256 hash recomputed, every Ed25519 signature checked, every link confirmed. No backend, no account, nothing to trust but the math.
Verify the chain.
Then break it on purpose.
Run all three checks on every capsule, then flip a single byte and watch verification fail at the exact record. This runs in your browser, the same way the real Explorer does.
This demo animates the result. The real Explorer recomputes the actual bytes with audited libraries, no shortcuts.
Three things have to be true.
Your browser proves all three.
Verification is not a vibe. It is three concrete checks, run with audited, MIT-licensed libraries, entirely on your machine.
Hash
@noble/hashesRecompute SHA3-256 over the capsule's canonical bytes and confirm it matches the stored hash. Flip one byte and the hash changes completely.
sha3_256(canonical) == stored_hashSignature
@noble/ed25519Ed25519 verify the signature over the hash hex string against the chain's published public key. No key, no valid signature.
ed25519.verify(sig, hash_hex, pubkey)Link
pure checkConfirm each capsule's previous_hash equals the prior capsule's hash and that sequence numbers are consecutive. Insert or remove one and the chain breaks.
prev_hash == prior.hash && seq+1Both libraries (@noble/hashes and @noble/ed25519) are independently audited, dependency-light, and MIT licensed. The whole verifier ships as static files.
A capsule is a capsule,
whatever produced it.
Claude Code, Cursor, Codex, and Cline all write the same hashchain format. Capsule Explorer shows every session side by side, each chain tagged with the tool that wrote it.
Three commands. Fully air-gapped.
Clone it, build the static export, and open it at localhost:4840. It reads the chains agent-capsule already wrote to your home directory.
then open http://localhost:4840
No network
Verification runs in the browser. Unplug the cable and it still works, byte for byte.
No backend
No server, no API, no account. The Explorer is static files plus your local chain databases.
Portable proof
Hand someone your chain JSON plus the public key and they can verify it with nothing but a browser.
The Explorer reads ~/.agent-capsule/chains/<tool>/*.db, the per-tool SQLite chains written by agent-capsule. Nothing else leaves your machine.
Read Every Line.
The verifier is open source under Apache 2.0. Clone it, audit the crypto, and host it yourself.
$ git clone https://github.com/quantumpipes/capsule-explorerThen npm install && npm run export && npm run dev to verify your own chains at localhost:4840.
Don't take our word for it.
Run the math yourself.
Capsule Explorer is open source. Clone it, read every line, and verify any agent's session in your browser with nothing to trust but the cryptography.