RFC: Cryptographic receipts for Trigger.dev task execution

## Problem

Trigger.dev executes background tasks and jobs that can be triggered by AI agents. When agents trigger production jobs, there is no cryptographic evidence of what triggered the job, what policy governed the execution, and that the audit trail hasn't been tampered with.

## Proposal

Add optional Ed25519 receipt signing for task execution. Each task trigger and completion would produce a signed receipt capturing: trigger source, task name, input/output hashes, policy evaluation, and a cryptographic signature.

## Reference

[protect-mcp](https://github.com/scopeblind/scopeblind-gateway) (MIT, npm v0.5.3) implements this for MCP tool calls. Receipt format: [IETF Internet-Draft](https://datatracker.ietf.org/doc/draft-farley-acta-signed-receipts/).

Happy to discuss and contribute.


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

RFC: Cryptographic receipts for Trigger.dev task execution #3329

Problem

Proposal

Reference

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

RFC: Cryptographic receipts for Trigger.dev task execution #3329

Description

Problem

Proposal

Reference

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions