glacis 0.1.3__py3-none-any.whl → 0.2.0__py3-none-any.whl

glacis-0.1.3.dist-info/METADATA

@@ -1,324 +0,0 @@
-Metadata-Version: 2.4
-Name: glacis
-Version: 0.1.3
-Summary: GLACIS SDK for Python - AI Compliance Attestation
-Project-URL: Homepage, https://glacis.io
-Project-URL: Documentation, https://docs.glacis.io/sdk/python
-Project-URL: Repository, https://github.com/Glacis-io/glacis-python
-Project-URL: Issues, https://github.com/Glacis-io/glacis-python/issues
-Author-email: GLACIS <sdk@glacis.io>
-License-Expression: Apache-2.0
-License-File: LICENSE
-Keywords: ai,attestation,compliance,logging,transparency
-Classifier: Development Status :: 4 - Beta
-Classifier: Intended Audience :: Developers
-Classifier: License :: OSI Approved :: Apache Software License
-Classifier: Programming Language :: Python :: 3
-Classifier: Programming Language :: Python :: 3.9
-Classifier: Programming Language :: Python :: 3.10
-Classifier: Programming Language :: Python :: 3.11
-Classifier: Programming Language :: Python :: 3.12
-Classifier: Topic :: Security :: Cryptography
-Classifier: Topic :: Software Development :: Libraries :: Python Modules
-Requires-Python: >=3.9
-Requires-Dist: httpx>=0.25.0
-Requires-Dist: pydantic>=2.0.0
-Requires-Dist: pynacl>=1.5.0
-Provides-Extra: all
-Requires-Dist: anthropic>=0.20.0; extra == 'all'
-Requires-Dist: mypy>=1.0.0; extra == 'all'
-Requires-Dist: openai>=1.0.0; extra == 'all'
-Requires-Dist: pytest-asyncio>=0.21.0; extra == 'all'
-Requires-Dist: pytest-httpx>=0.22.0; extra == 'all'
-Requires-Dist: pytest>=7.0.0; extra == 'all'
-Requires-Dist: ruff>=0.1.0; extra == 'all'
-Requires-Dist: wasmtime>=18.0.0; extra == 'all'
-Provides-Extra: anthropic
-Requires-Dist: anthropic>=0.20.0; extra == 'anthropic'
-Provides-Extra: dev
-Requires-Dist: mypy>=1.0.0; extra == 'dev'
-Requires-Dist: pytest-asyncio>=0.21.0; extra == 'dev'
-Requires-Dist: pytest-httpx>=0.22.0; extra == 'dev'
-Requires-Dist: pytest>=7.0.0; extra == 'dev'
-Requires-Dist: ruff>=0.1.0; extra == 'dev'
-Provides-Extra: openai
-Requires-Dist: openai>=1.0.0; extra == 'openai'
-Provides-Extra: wasm
-Requires-Dist: wasmtime>=18.0.0; extra == 'wasm'
-Description-Content-Type: text/markdown
-
-# Glacis Python SDK
-
-[![PyPI version](https://badge.fury.io/py/glacis.svg)](https://badge.fury.io/py/glacis)
-[![Tests](https://github.com/Glacis-io/glacis-python/actions/workflows/test.yml/badge.svg)](https://github.com/Glacis-io/glacis-python/actions/workflows/test.yml)
-[![Python 3.9+](https://img.shields.io/badge/python-3.9+-blue.svg)](https://www.python.org/downloads/)
-[![License: Apache 2.0](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)
-
-**Cryptographic attestation for AI systems.** Prove what your AI did, what data it saw, and what controls were active - without sensitive data leaving your environment.
-
-## Installation
-
-```bash
-pip install glacis
-```
-
-With provider integrations:
-```bash
-pip install glacis[openai]      # OpenAI auto-attestation
-pip install glacis[anthropic]   # Anthropic auto-attestation
-pip install glacis[all]         # Everything
-```
-
-## Quick Start
-
-### Offline Mode (No API Key Required)
-
-Works immediately. Receipts are self-signed and marked "UNVERIFIED."
-
-```python
-from glacis import Glacis
-
-glacis = Glacis(mode="offline")
-
-# Attest an AI interaction
-receipt = glacis.attest(
-    service_id="my-ai-app",
-    operation_type="inference",
-    input={"prompt": "Summarize this document..."},   # Hashed locally
-    output={"response": "The document discusses..."}, # Never sent
-)
-
-print(f"Receipt ID: {receipt.attestation_id}")
-print(f"Witness status: {receipt.witness_status}")  # "UNVERIFIED"
-
-# Verify locally
-result = glacis.verify(receipt)
-print(f"Signature valid: {result.signature_valid}")
-```
-
-### Online Mode (Witnessed Attestation)
-
-Add an API key for cryptographically witnessed receipts with Merkle proofs.
-
-```python
-from glacis import Glacis
-
-glacis = Glacis(api_key="glsk_live_...")  # Get yours at glacis.io
-
-receipt = glacis.attest(
-    service_id="my-ai-app",
-    operation_type="inference",
-    input={"prompt": "..."},
-    output={"response": "..."},
-)
-
-print(f"Leaf index: {receipt.leaf_index}")
-print(f"Merkle root: {receipt.signed_tree_head.root_hash}")
-print(f"Badge URL: {receipt.badge_url}")  # Shareable verification link
-```
-
-### Auto-Attesting OpenAI
-
-```python
-from glacis.integrations.openai import attested_openai, get_last_receipt
-
-client = attested_openai(
-    glacis_api_key="glsk_live_...",
-    openai_api_key="sk-..."
-)
-
-response = client.chat.completions.create(
-    model="gpt-4",
-    messages=[{"role": "user", "content": "Hello!"}]
-)
-
-# Receipt is automatically created
-receipt = get_last_receipt()
-print(f"Attested: {receipt.badge_url}")
-```
-
-### Auto-Attesting Anthropic
-
-```python
-from glacis.integrations.anthropic import attested_anthropic, get_last_receipt
-
-client = attested_anthropic(
-    glacis_api_key="glsk_live_...",
-    anthropic_api_key="sk-..."
-)
-
-response = client.messages.create(
-    model="claude-3-opus-20240229",
-    max_tokens=1024,
-    messages=[{"role": "user", "content": "Hello!"}]
-)
-
-receipt = get_last_receipt()
-```
-
-## What Data Leaves Your Environment?
-
-**Only hashes. Never payloads.**
-
-| What | Sent to Glacis? |
-|------|-----------------|
-| Your prompts | No - SHA-256 hash only |
-| Model responses | No - SHA-256 hash only |
-| API keys | No |
-| Metadata (service_id, operation_type) | Yes |
-| Timestamps | Yes |
-
-This is the "zero-egress" design. Your sensitive data stays local; only cryptographic commitments are transmitted for witnessing.
-
-## Offline vs Online Mode
-
-| Feature | Offline | Online |
-|---------|---------|--------|
-| API key required | No | Yes |
-| Signing | Local Ed25519 | Glacis witness network |
-| Merkle proofs | No | Yes |
-| Transparency log | No | Yes |
-| Verification URL | No | Yes |
-| Witness status | "UNVERIFIED" | "VERIFIED" |
-
-**Offline mode is fully functional** - correct crypto, local verification, production-grade Ed25519. The only difference is the absence of an independent witness anchor.
-
-Use offline for development. Upgrade to online when you need third-party verifiability (audits, papers, customer due diligence).
-
-## CLI
-
-Verify a receipt:
-```bash
-python -m glacis verify receipt.json
-```
-
-## Async Support
-
-```python
-from glacis import AsyncGlacis
-
-async with AsyncGlacis(api_key="glsk_live_...") as glacis:
-    receipt = await glacis.attest(
-        service_id="my-service",
-        operation_type="inference",
-        input={"prompt": "Hello"},
-        output={"response": "Hi!"},
-    )
-```
-
-## Query the Transparency Log
-
-```python
-# Browse public attestations (no auth required)
-result = glacis.query_log(
-    org_id="org_xxx",
-    service_id="my-service",
-    start="2024-01-01T00:00:00Z",
-    limit=100,
-)
-
-for entry in result.entries:
-    print(f"{entry.timestamp}: {entry.operation_type}")
-
-# Get current tree state
-tree = glacis.get_tree_head()
-print(f"Tree size: {tree.size}")
-print(f"Root hash: {tree.root_hash}")
-```
-
-## Cross-Runtime Hash Compatibility
-
-The Python SDK produces identical hashes to the TypeScript and Rust SDKs:
-
-```python
-from glacis.crypto import hash_payload
-
-# These all produce the same hash across Python, TypeScript, and Rust
-hash1 = hash_payload({"b": 2, "a": 1})
-hash2 = hash_payload({"a": 1, "b": 2})
-assert hash1 == hash2  # Keys are sorted per RFC 8785
-```
-
-## Security & Trust
-
-- **Cryptography**: Ed25519 signatures via PyNaCl (libsodium) or WASM
-- **Hashing**: SHA-256 with RFC 8785 canonical JSON (cross-runtime compatible)
-- **Transparency**: Online receipts are included in an append-only Merkle tree (RFC 6962)
-
-### Threat Model
-
-Glacis provides cryptographic evidence that a specific operation occurred on a specific input/output pair at a specific time. It does not:
-- Prevent AI from misbehaving (it attests, not enforces)
-- Hide that an AI system exists (receipts are evidence of operation)
-- Guarantee the AI output was correct (only that it was attested)
-
-### Security Disclosure
-
-Report vulnerabilities to security@glacis.io
-
-## API Reference
-
-### Glacis
-
-```python
-from glacis import Glacis
-
-# Online mode (default)
-glacis = Glacis(api_key="glsk_live_...")
-
-# Offline mode
-glacis = Glacis(mode="offline")
-glacis = Glacis(mode="offline", signing_seed=os.urandom(32))
-```
-
-### glacis.attest()
-
-```python
-receipt = glacis.attest(
-    service_id="my-service",           # Required
-    operation_type="inference",         # Required
-    input={"prompt": "..."},           # Hashed, not sent
-    output={"response": "..."},        # Hashed, not sent
-    metadata={"model": "gpt-4"},       # Optional, sent as-is
-)
-```
-
-### glacis.verify()
-
-```python
-result = glacis.verify(receipt)
-print(result.valid)            # Overall validity
-print(result.signature_valid)  # Signature check
-print(result.proof_valid)      # Merkle proof check (online only)
-```
-
-### AttestReceipt
-
-| Field | Description |
-|-------|-------------|
-| `attestation_id` | Unique attestation ID |
-| `timestamp` | ISO 8601 timestamp |
-| `leaf_index` | Merkle tree leaf index |
-| `merkle_proof` | Inclusion proof |
-| `signed_tree_head` | Signed tree state |
-| `badge_url` | Verification badge URL |
-| `verify_url` | Verification endpoint |
-
-## Pricing
-
-| Tier | Price | Includes |
-|------|-------|----------|
-| Offline | Free | Local signing, "UNVERIFIED" status |
-| Witnessed | Free, then usage-based | Independent witness, Merkle proofs, verification URLs |
-| Enterprise | Custom | SLA, compliance exports, dedicated support |
-
-Get started at [docs.glacis.io](https://docs.glacis.io/sdk/python/quickstart)
-
-## License
-
-Apache 2.0. See [LICENSE](LICENSE).
-
-## Links
-
-- [Documentation](https://docs.glacis.io)
-- [Changelog](CHANGELOG.md)

glacis-0.1.3.dist-info/RECORD

@@ -1,16 +0,0 @@
-glacis/__init__.py,sha256=9TLZCbUyUQ0JpqHBNiCjvkgt9HbiRRy3B03GMvxdlQ4,2465
-glacis/__main__.py,sha256=GTA84o2Lx5md1kvI80ATu9yNDGidYtW808_TqOmIJSE,2969
-glacis/client.py,sha256=hM3dokL7HZz3E8ovndvd-uHui31Hz8afv8IFGs4aH4U,27414
-glacis/crypto.py,sha256=DiHIMGMKV616wpba0n7Niuw4t-Zz_q5ij4a7m4HDDvk,3579
-glacis/models.py,sha256=S-n-anzfXJL03lENluNL0cbiXfVsPEsKZyh-dPBH93U,9792
-glacis/storage.py,sha256=tsmlG8bAq5daN1o6I9vmppKhstURm3jcO4_oLhOiyPg,10253
-glacis/streaming.py,sha256=hAmR4XHQixLia6awnFfCaA9hZOtCq2b-pOzgaMd3YzQ,11260
-glacis/wasm_runtime.py,sha256=kJeFAomzhtC8zxJYWrnexRVMedSQkz5LXGUF43_9EeQ,17697
-glacis/integrations/__init__.py,sha256=BeLSA6eGkpBWAIbXPodgS42yD_GpQ-IuXhrgF2271Ps,353
-glacis/integrations/anthropic.py,sha256=xJo0Dgx4Y7TK9cQPfEaBXygX0X2lZs0D_pfioZ_P6AM,6927
-glacis/integrations/openai.py,sha256=VkLtu8iQTMiAAa2pX7byC3je8BjzYiv-8_1T7sq3J4E,6941
-glacis/wasm/s3p_core_wasi.wasm,sha256=gGrYI6hd0VkgqCg1mLADzSJP1pEUekkS-3PKd5mdBJo,253289
-glacis-0.1.3.dist-info/METADATA,sha256=m-FzKjthqHXt9mP8Ungm1Ljai8qn8sg4wZmQeQ0b3nQ,9621
-glacis-0.1.3.dist-info/WHEEL,sha256=WLgqFyCfm_KASv4WHyYy0P3pM_m7J5L9k2skdKLirC8,87
-glacis-0.1.3.dist-info/licenses/LICENSE,sha256=B7g2sM9vz4NF1poTFNMil2cnkwMFel1qUnimyvYW1sw,10766
-glacis-0.1.3.dist-info/RECORD,,