Imladri public proof
Auditor-grade sample proof packet
A redacted public preview of the packet buyers inspect: who acted, what policy allowed or blocked, whether the dangerous body ran, whether source data stayed untouched, and the SHA-256 chain that ties evidence together.
Public sample uses digest-only sample metadata. Approved private packets are signed with the workspace signing key.
Agent
agent_redacted_release_control
SDK lanes
71/71
CI scan
passed
Source writes
0
Body calls
0
Auditor assertions
One packet follows the side effect.
The packet is organized around verification questions an auditor actually asks: did the action execute, which policy decided it, did production data change, and can the evidence be replayed from hashes instead of screenshots.
One constitution
The same policy revision appears on action, data, compute, CI, SDK, and MCP evidence.
Blocked before body
The prohibited payment action records bodyEntered=false and unsafeBodyCalls=0.
Source untouched
The database branch create and destroy entries both carry sourceMutationCount=0.
Hash chain intact
Each entry stores previousHash, canonicalPayloadHash, and entryHash ending at the chain root.
Hash-chained ledger
Policy to proof, in order.
00recorded
constitution.published
cd0c9c3d4c593664bb4a0158...fd91a524
01allowed
agent.action.allowed
d3fec2e5a3e524472e103e24...c423fada
02blocked
agent.action.blocked
d26b7edc30005b70a4c2762f...ee29616d
03allowed
database.branch.created
423e55e90bb69abd29b16393...9caa3129
04recorded
database.branch.destroyed
8aa0f011140eee312887297b...4149f1c3
05allowed
protected_compute.run.attested
d0fc144e5294a1cb3c462127...70645053
06recorded
packet.exported
b5046d2bab59397f4a4bece1...9f412bce
Chain root
b5046d2bab59397f4a4bece1a28c85280f94c60fbd96aaf9e1df224b9f412bcePacket digest
2c9eec2efbbe0416fc13ca727e4954433ebd7f647c86d4442611c4f449493602Action
Allowed release.deploy and blocked payment.transfer under the same constitution.
Data
Governed copy-on-write branch created, written, cleaned up, and verified with 0 source mutations.
Compute
Protected compute run records attestation, distinct artifact digest, finite output signal, and zeroized cleanup.
Packet
Auditor-redacted JSON exports the chain root, digest algorithm, redaction manifest, and verification steps.
Certification
Statuspassed
Families20
Failures0
GeneratedJun 1, 2026, 1:02 PM
Commitredacte
Integrity
ExportedJun 1, 2026, 1:10 PM
ExpiresJul 1, 2026, 1:10 PM
Redactionauditor
Digest2c9eec2efbbe0416fc13ca72...49493602
Chainb5046d2bab59397f4a4bece1...9f412bce
Redacted JSON
{
"success": true,
"exportedAt": "2026-06-01T18:10:00.000Z",
"summary": {
"constitutionPublished": true,
"constitutionVersion": "policy-2026-06-redacted",
"eventCount": 128,
"violationCount": 1,
"observedActionCount": 24,
"latestEventAt": "2026-06-01T18:04:31.000Z",
"latestViolationAt": "2026-06-01T18:02:18.000Z",
"exportReady": true
},
"proofScope": {
"description": "Redacted sample buyer packet for public preview.",
"chronological": true,
"truncation": "auditor-safe summary",
"redactionMode": "auditor",
"includes": [
"SDK adapter certification summary",
"CI scanner summary",
"Allowed runtime action",
"Blocked runtime action",
"Database source-integrity assertion",
"Protected compute attestation summary",
"SHA-256 proof signature",
"Hash-chained event ledger"
]
},
"proofSignature": {
"version": 1,
"canonicalization": "json-stable-v1",
"digestAlgorithm": "SHA-256",
"payloadDigestHex": "2c9eec2efbbe0416fc13ca727e4954433ebd7f647c86d4442611c4f449493602",
"signatureAlgorithm": null,
"signatureHex": null,
"keyId": null,
"publicKeyJwk": null,
"signedAt": "2026-06-01T18:10:00.000Z"
},
"hashChain": {
"algorithm": "SHA-256",
"canonicalization": "json-stable-v1",
"chainRoot": "b5046d2bab59397f4a4bece1a28c85280f94c60fbd96aaf9e1df224b9f412bce",
"eventCount": 7
},
"proofCompleteness": {
"status": "ready",
"note": "Redacted public sample. Live proof links use customer-specific evidence and share ids.",
"lanes": {
"sdk": {
"covered": true,
"status": "71/71 passed"
},
"hostedAdopters": {
"covered": true,
"status": "5/5 passed"
},
"mcp": {
"covered": true,
"status": "5/5 passed"
},
"ci": {
"covered": true,
"status": "GitLab + Vercel passed"
},
"data": {
"covered": true,
"status": "source untouched"
},
"compute": {
"covered": true,
"status": "attestation recorded"
}
}
},
"authoritySummary": {
"activeSubject": "agent_redacted_release_control",
"identityType": "service-agent",
"trustLevel": "production-boundary",
"delegationDepthLimit": 1,
"revokedAt": null,
"recordedAuthorityEvents": 5,
"subjects": [
"agent_redacted_release_control"
],
"ownerEmails": [
"[email protected]"
],
"maxObservedDelegationDepth": 1
},
"evidenceCounts": {
"activityTimeline": 24,
"authorityTimeline": 5,
"boundaryScans": 1,
"sdkCertifications": 1,
"lifecycleEvents": 8,
"violationTimeline": 1,
"observedActions": 24
},
"boundaryScanSummary": {
"id": "scan_redacted_gitlab_vercel",
"status": "passed",
"createdAt": "2026-06-01T18:03:11.000Z",
"scannedFiles": 42,
"findingCount": 0,
"errorCount": 0,
"warningCount": 0
},
"sdkCertificationSummary": {
"id": "sdk_cert_redacted_71_lanes",
"status": "passed",
"scope": "ci_matrix",
"target": {
"publicPreview": true
},
"createdAt": "2026-06-01T18:02:00.000Z",
"generatedAt": "2026-06-01T18:02:00.000Z",
"certificationLevel": "public-adopter-matrix",
"adopterFamilyCount": 20,
"laneCount": 71,
"passedCount": 71,
"failedCount": 0,
"skippedCount": 0,
"skippedHeavyCount": 0,
"notApplicableCount": 0,
"ci": {
"provider": "gitlab+vercel",
"commit": "redacted",
"branch": "main",
"runId": "redacted",
"runUrl": null,
"workflow": "imladri-boundary-scan",
"job": "public-proof-preview",
"pullRequest": null
}
},
"observedActions": [
{
"actionType": "release.deploy",
"status": "allowed",
"bodyEntered": true,
"evidence": "allowed action completed under policy"
},
{
"actionType": "payment.transfer",
"status": "blocked",
"bodyEntered": false,
"evidence": "blocked before function body"
}
],
"runtimeObservedEvidence": {
"prohibitedBodyCalls": 0,
"decision": "blocked",
"proofDigest": "2c9eec2efbbe0416fc13ca727e4954433ebd7f647c86d4442611c4f449493602"
},
"auditorPacket": {
"schemaVersion": "imladri.auditor-proof-packet.v1",
"packetId": "imladri-auditor-proof-sample-20260601",
"packetKind": "redacted-public-sample",
"artifactPath": "/proofs/imladri-auditor-proof-sample.json",
"artifactSha256Path": "/proofs/imladri-auditor-proof-sample.json.sha256.txt",
"packetDigestHex": "2c9eec2efbbe0416fc13ca727e4954433ebd7f647c86d4442611c4f449493602",
"chainRoot": "b5046d2bab59397f4a4bece1a28c85280f94c60fbd96aaf9e1df224b9f412bce",
"eventCount": 7,
"statement": "Redacted public sample showing how one Imladri constitution produces one auditor-readable proof chain across action, data, and protected compute boundaries.",
"sourceUntouched": true,
"sourceMutationCount": 0,
"unsafeBodyCalls": 0,
"redactionCount": 3
},
"auditorChainEntries": [
{
"index": 0,
"eventType": "constitution.published",
"boundary": "policy",
"decision": "recorded",
"occurredAt": "2026-06-01T18:00:00.000Z",
"previousHash": "0000000000000000000000000000000000000000000000000000000000000000",
"canonicalPayloadHash": "6dc96189b5cc91e385141d9c5991da7a204b927dbb55429eb075853a925d269c",
"entryHash": "cd0c9c3d4c593664bb4a01582057a01764733c5aa5987a62ff1c7c7afd91a524",
"payload": {
"constitutionVersion": "policy-2026-06-redacted",
"policyDigest": "sha256:dfaf5b8b5b40e4e575f5fd11fd682f22c78537cce97d5a352c5d821fcdf404c4",
"allowedActions": [
"release.deploy",
"db.branch.create",
"protected_compute.run"
],
"blockedActions": [
"payment.transfer",
"prod.secret.read",
"compliance.evidence.delete"
]
}
},
{
"index": 1,
"eventType": "agent.action.allowed",
"boundary": "action",
"decision": "allowed",
"occurredAt": "2026-06-01T18:01:09.000Z",
"previousHash": "cd0c9c3d4c593664bb4a01582057a01764733c5aa5987a62ff1c7c7afd91a524",
"canonicalPayloadHash": "0c8d42ee35e98b554f99c1bc2d1bc910962e4516fbdf1dfc900987712cb7edc2",
"entryHash": "d3fec2e5a3e524472e103e24df66bc402123c14fad7c2b1ad90e4e9ac423fada",
"payload": {
"agentId": "agent_redacted_release_control",
"action": "release.deploy",
"bodyEntered": true,
"policyVersion": "policy-2026-06-redacted",
"evidence": "allowed action completed under policy"
}
},
{
"index": 2,
"eventType": "agent.action.blocked",
"boundary": "action",
"decision": "blocked",
"occurredAt": "2026-06-01T18:02:18.000Z",
"previousHash": "d3fec2e5a3e524472e103e24df66bc402123c14fad7c2b1ad90e4e9ac423fada",
"canonicalPayloadHash": "0df4b063ba248ab092dbdf715488fba0630ff8cf86e8e1fe481281aec3ec151d",
"entryHash": "d26b7edc30005b70a4c2762f9a10bb95b429c161012ed32056a7be76ee29616d",
"payload": {
"agentId": "agent_redacted_release_control",
"action": "payment.transfer",
"bodyEntered": false,
"unsafeBodyCalls": 0,
"policyVersion": "policy-2026-06-redacted",
"evidence": "blocked before function body"
}
},
{
"index": 3,
"eventType": "database.branch.created",
"boundary": "data",
"decision": "allowed",
"occurredAt": "2026-06-01T18:03:02.000Z",
"previousHash": "d26b7edc30005b70a4c2762f9a10bb95b429c161012ed32056a7be76ee29616d",
"canonicalPayloadHash": "57afdfebe3d931ec5c01605bec00d472ff89148ee7262d7ef555917c14be9cb2",
"entryHash": "423e55e90bb69abd29b1639371a413ac4b7f2c1ce82216aa4965a9919caa3129",
"payload": {
"sourceRelation": "prod_ledger_redacted",
"sourceRows": "5B-row benchmark family",
"branchId": "branch_redacted_review",
"branchMode": "governed-copy-on-write",
"sourceMutationCount": 0,
"sourceUntouched": true,
"isolationChecks": [
"relation_fingerprint",
"branch_local_write",
"source_mutation_check"
]
}
},
{
"index": 4,
"eventType": "database.branch.destroyed",
"boundary": "data",
"decision": "recorded",
"occurredAt": "2026-06-01T18:03:44.000Z",
"previousHash": "423e55e90bb69abd29b1639371a413ac4b7f2c1ce82216aa4965a9919caa3129",
"canonicalPayloadHash": "d2f5ab876b93bb91a760327de66b546a0822befefa3102778f6b8615f1964c80",
"entryHash": "8aa0f011140eee312887297bbf4d9bdd9155a2f824cf34495de321864149f1c3",
"payload": {
"branchId": "branch_redacted_review",
"cleanupVerified": true,
"sourceMutationCount": 0,
"sourceUntouched": true,
"evidence": "branch-local changes removed without source writes"
}
},
{
"index": 5,
"eventType": "protected_compute.run.attested",
"boundary": "compute",
"decision": "allowed",
"occurredAt": "2026-06-01T18:04:16.000Z",
"previousHash": "8aa0f011140eee312887297bbf4d9bdd9155a2f824cf34495de321864149f1c3",
"canonicalPayloadHash": "7c392b66b375f00090c5b01ed5fb10a025caef0cf210034cb8cce39677c670bf",
"entryHash": "d0fc144e5294a1cb3c46212770fa1772301866eccf4af87346e1d71870645053",
"payload": {
"workload": "qwen_lora_redacted",
"providerClass": "h100_same_allocation_family",
"attestationVerified": true,
"adapterDigestDistinct": true,
"finiteLossObserved": true,
"zeroizedCleanup": true,
"artifactDigest": "sha256:7e424ed5de349e7608d24a70a8843641a8d4bf4fe1c7e6001f6c4651d89f87cb"
}
},
{
"index": 6,
"eventType": "packet.exported",
"boundary": "proof",
"decision": "recorded",
"occurredAt": "2026-06-01T18:10:00.000Z",
"previousHash": "d0fc144e5294a1cb3c46212770fa1772301866eccf4af87346e1d71870645053",
"canonicalPayloadHash": "24c20507f7d80f42bd5612a0e6135c98de942012781a729af20d62518f90fcdd",
"entryHash": "b5046d2bab59397f4a4bece1a28c85280f94c60fbd96aaf9e1df224b9f412bce",
"payload": {
"redactionMode": "auditor",
"canonicalization": "json-stable-v1",
"digestAlgorithm": "SHA-256",
"exportedSurfaces": [
"action",
"data",
"compute",
"ci",
"sdk",
"mcp"
]
}
}
],
"auditorAssertions": [
{
"title": "One constitution",
"body": "The same policy revision appears on action, data, compute, CI, SDK, and MCP evidence."
},
{
"title": "Blocked before body",
"body": "The prohibited payment action records bodyEntered=false and unsafeBodyCalls=0."
},
{
"title": "Source untouched",
"body": "The database branch create and destroy entries both carry sourceMutationCount=0."
},
{
"title": "Hash chain intact",
"body": "Each entry stores previousHash, canonicalPayloadHash, and entryHash ending at the chain root."
}
]
}