« All posts

Makoto Blocks False Claims by Claude Code AI Agents

Makoto is an integrity hook for Claude Code that checks agent claims like passed tests or commits against real tool-call logs and blocks mismatches.

Makoto is a Show HN project built as an integrity hook for Claude Code that cross-checks what the AI agent claims to have done against its own recorded tool-call history. When the agent says it ran tests, made a commit, or verified a certificate, makoto compares that statement against the actual log; if the action is missing or a verification was quietly disabled, it blocks the tool call (via exit code 2) or the end-of-turn response and hands back a one-line correction to retry against.

The tool runs pre-checks across five families: weakened verifiers (loose comparators instead of equality, exit-code masking, hollowed-out test bodies), fabricated evidence (nonexistent citations, fake commit SHAs, invented AI-authorship trailers), disabled security checks (TLS certificate verification, JWT signature checks, SSH host-key validation), self-defense against being muted, and violations of declared plan/contract order that create illusory progress.

At the end of each turn, 14 separate gates check closing claims — like 'done', 'all tests pass', or 'added three tests' — against the actual tool-call ledger, alongside a few advisory-only checks and statistical 'canon' fingerprints ported from prior research work.

As coding agents gain more autonomy, a layer that verifies whether an agent's words match its actions gives engineers an auditable trust mechanism instead of blind faith in agent output — a meaningful safeguard especially in security-sensitive codebases.

» SourceHashnode #8