About H-Grant
As agents start to act on our behalf, they need to use credentials: API keys, access pairs, tokens, and access to data. Handing an agent the raw secret is the easy answer and the wrong one. H-Grant holds the credential and releases it only inside an owner-signed, on-chain policy. The agent acts with the capability; it never holds the key.
It is built on Hedera Consensus Service, so the record is not a private log you have to trust. Grants, revocations, and every release and refusal are anchored on a public ledger and can be replayed from a mirror node.
The H-Series
H-Grant is one of a family of building blocks for the agentic economy under XR Utilities, each focused on one concern and composable with the others.
Discovery. A capability registry where agents find MCP servers, APIs, and tool endpoints.
Execution proof. Receipts and request envelopes of what was asked and returned.
Credential gating. Capability-bound release, gated by signed policy.
Transport. Identity-addressed messaging, broadcast, and relay between agents.
What H-Grant is not
H-Grant gates credentials, not money: it holds keys, not funds. It does not do agent identity attestation, execution proof, or discovery. Those are separate concerns, some handled by the sibling products above.