swt3-ai 0.1.0 → 0.4.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5d0fccd511c062ef3aeb265204f455b20a3685cc857581b03406dd6b50a37e6c
-  data.tar.gz: 4a1decd09b9e82eb356584e5c9d1dc9c3345320b92fc262c1ae57a416a1fb7e6
+  metadata.gz: 3c33738eca6af0da5f3b341aca0c44f10d97f646a0aed85bd57901081c2bc6f9
+  data.tar.gz: 26e63c59eb176fc1d7cdfda26eed9841c1fa8e242a97915885a3396f26c43099
 SHA512:
-  metadata.gz: 7c16261aeef18fad1107209bf72165411f532a56a79ade17997ece091e90e4ee97ef8dd0f6f3d9b13ff486e01b44819676c05116ae124d7688d5f34235be0b81
-  data.tar.gz: 0d448aff4b3346b38989dac543fc8ef9e7d055100fb2b8ea17b446890533b30281f687f06ee94af90a1000006a85e0f759e9224c72df4ae10b68175badafc8ab
+  metadata.gz: c8472c6b851815fd18a8a0f8f1b896b4fd8e727b4a9d4fcc12629beca30294aba4f5b7c95b912d6c5274da0123777bab811fa6723b066b041d228caeae7b292c
+  data.tar.gz: f7eda3a4fbeea3e9c58f36cb298f65da87c37bc4798add45af5ac28a81f68776383ee97597a0efb2ed3880aa379976184c0e857dbdb30ccc468cff5897dd6b97

data/README.md

@@ -0,0 +1,86 @@
+Witness your AI. Prove it followed the rules. Cryptographic accountability for every inference, tool call, and resource access.
+
+[![Gem Version](https://img.shields.io/gem/v/swt3-ai)](https://rubygems.org/gems/swt3-ai)
+[![License](https://img.shields.io/badge/license-Apache%202.0-blue.svg)](https://github.com/tenova-labs/swt3-ai/blob/main/LICENSE)
+
+# swt3-ai
+
+**SWT3 AI Witness SDK for Ruby** (coming soon): tamper-proof evidence that your AI is doing what you say it does. Every inference hashed. Every tool call recorded. Every resource access checked against scope. No prompts or responses ever leave your infrastructure.
+
+The EU AI Act takes effect **August 2, 2026**. When regulators ask "prove your AI followed the rules," you need more than logs. You need cryptographic proof.
+
+## Status
+
+This package reserves the `swt3-ai` namespace on RubyGems. The full Ruby SDK is under development.
+
+Production SDKs are available today for Python and TypeScript:
+
+```bash
+# Python
+pip install swt3-ai
+python -m swt3_ai.demo
+
+# TypeScript
+npm install @tenova/swt3-ai
+npx swt3-demo
+```
+
+Both run the full pipeline locally with no API keys: hash, extract, clear, anchor, verify.
+
+## What SWT3 Does
+
+When your AI makes a call, the SDK:
+
+1. **Hashes** the prompt and response locally using SHA-256 (raw text never leaves your machine)
+2. **Extracts** numeric factors: model version, latency, token count, guardrail status
+3. **Clears** sensitive metadata based on your clearing level (you control what goes on the wire)
+4. **Anchors** the factors into a cryptographic fingerprint anyone can independently verify
+5. **Returns** your original response completely untouched
+
+The result: an immutable record that your AI ran the right model, with the right guardrails, within the right boundaries. Without the auditor ever seeing the data.
+
+## Regulatory Coverage
+
+The SWT3 AI Witnessing Profile maps to:
+
+- **EU AI Act**: Articles 9, 10, 12, 13, 14, 53, 72
+- **NIST AI RMF**: GOVERN, MAP, MEASURE, MANAGE functions
+- **ISO 42001**: Annex A AI management controls
+- **NIST 800-53**: SI-7 (integrity), AU-2/AU-3 (audit), AC controls
+- **SR 11-7**: Model risk management (financial services)
+
+## Verify Any Anchor From Your Terminal
+
+```bash
+echo -n "WITNESS:DEMO_TENANT:AI-INF.1:1:1:0:1774800000000" | sha256sum | cut -c1-12
+# Produces a 12-character fingerprint. Compare it to the anchor. If it matches, the anchor is real.
+```
+
+No SDK needed. Works on any machine, any language.
+
+## Cross-Language Parity
+
+All SWT3 SDKs produce identical fingerprints from the same inputs. A unified audit trail across your entire stack, verified by shared test vectors at build time.
+
+| Layer | Language | Package |
+|-------|----------|---------|
+| Backend services | Python | [swt3-ai](https://pypi.org/project/swt3-ai/) |
+| API routes / Edge | TypeScript | [@tenova/swt3-ai](https://www.npmjs.com/package/@tenova/swt3-ai) |
+| Protocol reference | TypeScript | [@tenova/libswt3](https://www.npmjs.com/package/@tenova/libswt3) |
+| Web apps (Rails) | Ruby | swt3-ai (this package, coming soon) |
+
+## Links
+
+- **Website**: [tenova.io](https://tenova.io)
+- **Protocol Spec**: [SWT3-SPEC-v1.0](https://github.com/tenova-labs/swt3-ai)
+- **Live Demo**: [sovereign.tenova.io/audit/axm_audit_demo_eu_ai_act_public](https://sovereign.tenova.io/audit/axm_audit_demo_eu_ai_act_public)
+
+## Privacy
+
+Your prompts and responses **never leave your infrastructure**. The SDK computes SHA-256 hashes locally and transmits only irreversible hashes and numeric factors. At Clearing Level 3, even the model name is hashed. The witness endpoint is a blind registrar: it stores cryptographic proofs, not your data.
+
+---
+
+*SWT3: Sovereign Witness Traceability. We don't run your models. We witness them.*
+
+SWT3 and Sovereign Witness Traceability are trademarks of Tenable Nova LLC. Patent pending. Apache 2.0 licensed.

data/lib/swt3_ai/fingerprint.rb

@@ -0,0 +1,43 @@
+require "openssl"
+
+module Swt3Ai
+  module Fingerprint
+    # Mint an SWT3 fingerprint from the canonical formula.
+    #
+    # Returns the first 12 hex characters of:
+    #   SHA-256("WITNESS:{tenant}:{proc}:{fa}:{fb}:{fc}:{ts_ms}")
+    #
+    # This formula is locked and must produce identical output across
+    # all SWT3 SDK implementations (Python, TypeScript, Rust, C#, Ruby).
+    def self.mint_fingerprint(tenant_id, procedure_id, factor_a, factor_b, factor_c, timestamp_ms)
+      input = "WITNESS:#{tenant_id}:#{procedure_id}:#{num_str(factor_a)}:#{num_str(factor_b)}:#{num_str(factor_c)}:#{timestamp_ms}"
+      sha256_hex(input, 12)
+    end
+
+    # Compute a truncated SHA-256 hash. Default length is 16 hex characters.
+    def self.sha256_truncated(data, length = 16)
+      sha256_hex(data, length)
+    end
+
+    # Compute SHA-256 and return the first N hex characters.
+    def self.sha256_hex(data, length = 64)
+      digest = OpenSSL::Digest::SHA256.hexdigest(data.to_s)
+      digest[0, [length, 64].min]
+    end
+
+    # Get the current timestamp in milliseconds and epoch seconds.
+    def self.timestamp_ms
+      ms = (Time.now.to_f * 1000).to_i
+      epoch = ms / 1000
+      [ms, epoch]
+    end
+
+    # Format a numeric factor as a string matching the canonical formula.
+    # Integer-valued floats are formatted without decimals: 1.0 -> "1"
+    def self.num_str(v)
+      v == v.to_i ? v.to_i.to_s : v.to_s
+    end
+
+    private_class_method :num_str
+  end
+end

data/lib/swt3_ai/signing.rb

@@ -0,0 +1,15 @@
+require "openssl"
+
+module Swt3Ai
+  module Signing
+    # Sign a payload with HMAC-SHA256 for non-repudiation.
+    #
+    # If agent_id is provided, the message is "{fingerprint}:{agent_id}".
+    # Otherwise, the message is just the fingerprint.
+    # Returns a 64-character lowercase hex string.
+    def self.sign_payload(signing_key, anchor_fingerprint, agent_id = nil)
+      message = agent_id ? "#{anchor_fingerprint}:#{agent_id}" : anchor_fingerprint
+      OpenSSL::HMAC.hexdigest("SHA256", signing_key, message)
+    end
+  end
+end

data/lib/swt3_ai/types.rb

@@ -0,0 +1,27 @@
+module Swt3Ai
+  # A witness payload ready for transmission to the witness endpoint.
+  WitnessPayload = Struct.new(
+    :procedure_id, :factor_a, :factor_b, :factor_c,
+    :clearing_level, :anchor_fingerprint, :anchor_epoch,
+    :fingerprint_timestamp_ms, :ai_model_id, :ai_prompt_hash,
+    :ai_response_hash, :ai_latency_ms, :ai_input_tokens,
+    :ai_output_tokens, :agent_id, :cycle_id,
+    :payload_signature, :policy_version_hash,
+    keyword_init: true
+  )
+
+  # A receipt returned by the witness endpoint after successful anchoring.
+  WitnessReceipt = Struct.new(
+    :procedure_id, :verdict, :swt3_anchor, :clearing_level,
+    :witnessed_at, :verification_url, :ok, :error,
+    keyword_init: true
+  )
+
+  # Configuration for a Witness client.
+  WitnessConfig = Struct.new(
+    :endpoint, :api_key, :tenant_id, :clearing_level,
+    :buffer_size, :flush_interval, :timeout, :max_retries,
+    :agent_id, :signing_key, :cycle_id, :policy_version,
+    keyword_init: true
+  )
+end

data/lib/swt3_ai.rb

@@ -1,7 +1,11 @@
-# SWT3 Witness Anchors for AI systems.
-# Cryptographic accountability protocol for AI inference, training, and deployment.
+# SWT3 AI Witness SDK for Ruby.
+# Cryptographic attestation for AI inference.
 # See https://tenova.io for documentation.
 
+require_relative "swt3_ai/fingerprint"
+require_relative "swt3_ai/signing"
+require_relative "swt3_ai/types"
+
 module Swt3Ai
-  VERSION = "0.1.0"
+  VERSION = "0.3.6"
 end

metadata

@@ -1,28 +1,34 @@
 --- !ruby/object:Gem::Specification
 name: swt3-ai
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.4.1
 platform: ruby
 authors:
 - TeNova Labs
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2026-04-19 00:00:00.000000000 Z
+date: 2026-04-28 00:00:00.000000000 Z
 dependencies: []
-description: Cryptographic accountability protocol for AI inference, training, and
-  deployment.
+description: Mint, verify, and sign SWT3 witness anchors for AI compliance. Cross-language
+  parity with Python and TypeScript SDKs. Zero external dependencies.
 email:
+- engineering@tenovaai.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- README.md
 - lib/swt3_ai.rb
+- lib/swt3_ai/fingerprint.rb
+- lib/swt3_ai/signing.rb
+- lib/swt3_ai/types.rb
 homepage: https://tenova.io
 licenses:
 - Apache-2.0
 metadata:
   source_code_uri: https://github.com/tenova-labs/swt3-ai
+  homepage_uri: https://tenova.io
 post_install_message:
 rdoc_options: []
 require_paths:
@@ -31,7 +37,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 2.7.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -41,5 +47,5 @@ requirements: []
 rubygems_version: 3.4.20
 signing_key:
 specification_version: 4
-summary: SWT3 Witness Anchors for AI systems
+summary: 'SWT3 AI Witness SDK: cryptographic attestation for AI inference'
 test_files: []