Install scripts, Docker Compose files, and Helm chart for AGLedger.
AGLedger is an accountability layer for automated operations. It records what an agent or process was asked to do (mandate), what it delivered (receipt), and whether the principal accepted the result (verdict) — with a hash-chained, Ed25519-signed audit trail. AGLedger does not inspect or judge deliverable content; it records acceptance, not correctness.
This repository contains only the deployment packaging. The server image is distributed on Docker Hub and the Helm chart on OCI at oci://registry-1.docker.io/agledger/agledger-chart.
- Docker Engine 24.0 or later
- Docker Compose v2
- 4 GB RAM minimum (8 GB recommended)
- 2 CPU cores minimum (4 recommended)
- 20 GB free disk
git clone https://github.com/agledger-ai/install.git
cd install
./scripts/install.shThe API is reachable at http://localhost:3001 once startup completes. Swagger UI is at http://localhost:3001/docs.
install.sh generates cryptographic secrets locally, writes compose/.env, starts PostgreSQL, runs migrations, creates a platform API key (printed once — save it), and starts the API and worker.
Single-node deployments, evaluation, and small-to-medium workloads.
./scripts/install.shAll configuration lives in compose/.env. See compose/.env.example for the full list of variables.
Production clusters:
helm install agledger oci://registry-1.docker.io/agledger/agledger-chart \
--namespace agledger --create-namespace \
--values your-values.yamlReference values: helm/agledger/values.yaml. Or run ./scripts/helm-install.sh for a guided install that generates secrets and produces a values file.
The bundled PostgreSQL container is the default. To point at Aurora, RDS, Cloud SQL, or another managed Postgres, set DATABASE_URL in compose/.env and use --external-db:
./scripts/install.sh --external-dbRequirements:
- Direct connections only. RDS Proxy and PgBouncer (transaction mode) are incompatible — pg-boss requires
LISTEN/NOTIFY. - The migration user needs schema-creation privileges. See
compose/.env.example. - Set
DATABASE_POOL_MAXto match your database's connection limits.
install.sh --image lets you point at an internal registry. See air-gap/README.md for the full flow.
Enterprise deployments can run in Gateway or Hub mode. See compose/docker-compose.federation.yml.
./scripts/upgrade.sh <version>The upgrade script creates a backup before upgrading. Rollback with ./scripts/restore.sh <backup>.
./scripts/uninstall.shStops all containers and removes volumes. compose/.env is kept by default — pass --purge to remove it too.
./scripts/support-bundle.shCollects container logs, resource usage, redacted configuration, and database health checks into a single archive. No application data or secrets are included. Send the archive to support@agledger.ai.
Developer Edition installs send an anonymous heartbeat (version, uptime, deployment mode — no usage data, no identifiers) every 48 hours. Disable it by setting AGLEDGER_TELEMETRY=false in compose/.env. Enterprise licenses disable telemetry automatically.
The Docker image and Helm chart are signed with cosign. The public key is at cosign.pub in this repo.
# Image signature — proves the image wasn't swapped between push and pull
cosign verify --key cosign.pub agledger/agledger:<version>
# Helm chart signature — cosign takes a bare OCI reference (no oci:// prefix)
cosign verify --key cosign.pub registry-1.docker.io/agledger/agledger-chart:<version>
# SLSA L2 build provenance — cryptographic proof of the source commit and CodeBuild
# run that produced the image. The output includes the git commit, build ID, and
# start/finish timestamps.
cosign verify-attestation --key cosign.pub --type slsaprovenance1 agledger/agledger:<version>SBOM and SLSA provenance attestations are attached to each release on this repo.
AGLedger Developer Edition is free to self-host and evaluate. Enterprise licensing (federation, extended support, indemnity) is available — contact sales@agledger.ai.
This installer is proprietary software. See LICENSE.
- agledger.ai — product site
- agledger.ai/docs — documentation
- agledger.ai/trust — security, SBOM, provenance
- Docker Hub — server image