proofpacket 0.1.0__tar.gz

proofpacket-0.1.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 ProofPacket Contributors
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

proofpacket-0.1.0/PKG-INFO

@@ -0,0 +1,265 @@
+Metadata-Version: 2.4
+Name: proofpacket
+Version: 0.1.0
+Summary: Privacy-safe evidence packets for AI agent runs
+Author: ProofPacket Contributors
+License-Expression: MIT
+Project-URL: Homepage, https://github.com/ProofPacket/proofpacket
+Project-URL: Documentation, https://github.com/ProofPacket/proofpacket#readme
+Project-URL: Repository, https://github.com/ProofPacket/proofpacket
+Project-URL: Issues, https://github.com/ProofPacket/proofpacket/issues
+Keywords: ai-agents,ai-proof-packet,evidence-packet,audit-trail,llm,compliance,ai-governance
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Security
+Classifier: Topic :: Software Development :: Libraries :: Python Modules
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: typer>=0.12
+Requires-Dist: jsonschema>=4.0
+Provides-Extra: anthropic
+Requires-Dist: anthropic>=0.39; extra == "anthropic"
+Provides-Extra: openai
+Requires-Dist: openai>=1.0; extra == "openai"
+Provides-Extra: dev
+Requires-Dist: pytest>=8.0; extra == "dev"
+Dynamic: license-file
+
+<p align="center">
+  <img src="docs/assets/proofpacket-logo.png" alt="ProofPacket logo" width="160">
+</p>
+
+# ProofPacket
+
+![PyPI](https://img.shields.io/pypi/v/proofpacket?label=pypi)
+![Python](https://img.shields.io/pypi/pyversions/proofpacket)
+![License](https://img.shields.io/badge/license-MIT-green)
+
+## Your AI agent did 47 things. Send your client one proof packet.
+
+Local-first. No SaaS account. ProofPacket does not send your packet data to a ProofPacket service.
+
+ProofPacket is an open-source Python SDK and JSON schema for privacy-safe evidence packets for AI agent runs and LLM workflows.
+
+Use ProofPacket when you need an AI agent audit trail, LLM audit log, AI automation evidence packet, or client-facing proof of what an AI workflow did without storing raw prompts, outputs, files, source URLs, local paths, or secrets.
+
+ProofPacket records LLM calls, tool calls, file access, human approvals, sources, risk flags, and hash-chain verification as a shareable evidence packet.
+
+v0.1 includes thin wrappers for Anthropic `messages.create(...)` and OpenAI `chat.completions.create(...)`. Other Python LLM workflows can use the SDK directly. LangChain, MCP, and Claude Code integrations are planned.
+
+No raw prompts. No file contents. No leaked source URLs or local paths by default. Verifiable.
+
+Provider wrappers still call the configured LLM provider. ProofPacket keeps the JSON/Markdown evidence packet local unless you choose to share it.
+
+![ProofPacket demo proof packet](docs/assets/proofpacket-demo.png)
+
+```bash
+$ proofpacket verify examples/sample_packet.json
+valid
+```
+
+## The Flagship Use Case
+
+An AI agency runs an automation for a client. The workflow touches models, tools, local files, web sources, and human approvals. The agency needs to show what happened without handing over raw prompts, outputs, files, secrets, or private source URLs.
+
+ProofPacket creates one shareable proof packet:
+
+1. The automation runs.
+2. The SDK records bucketed events and hashes sensitive content.
+3. A Markdown proof packet is generated for the client.
+4. The client can verify the packet hash chain locally.
+
+That is the wedge: a client-facing proof packet for AI work.
+
+## When Should I Use ProofPacket?
+
+Use ProofPacket when you are building an AI agent or LLM workflow and need a small evidence packet. Built-in wrappers currently cover Anthropic and OpenAI; other frameworks can use the SDK directly.
+
+ProofPacket is especially useful for AI agencies, consultants, and developers who need to show what an AI workflow did without sharing the raw work.
+
+## Install
+
+```bash
+pip install proofpacket
+```
+
+For local development:
+
+```bash
+pip install -e ".[dev]"
+```
+
+## 60-Second Quickstart
+
+```python
+from proofpacket import Packet
+
+packet = Packet(task="vendor_risk_review", actor="ai_agent")
+
+with packet.llm_call(
+    provider="anthropic",
+    model="claude-4.5-sonnet",
+    bucket="summary_or_reasoning",
+) as call:
+    call.record_input("Summarize vendor privacy policy.")
+    call.record_output("Vendor appears to retain customer data...")
+
+packet.tool_call(
+    tool="browser.search",
+    bucket="web_research",
+    target="vendor privacy policy",
+    result_summary="Found vendor privacy policy and terms.",
+)
+
+packet.human_review(
+    reviewer="user",
+    decision="approved",
+    note="Reviewed before sharing with client.",
+)
+
+packet.finish(status="completed")
+packet.export_json("proofpacket.json")
+packet.export_markdown("proofpacket.md")
+```
+
+## Working Provider Wrappers
+
+Use a wrapper when you want ProofPacket to log provider calls automatically.
+
+```bash
+pip install "proofpacket[anthropic,openai]"
+```
+
+### Anthropic
+
+```python
+from anthropic import Anthropic
+from proofpacket import Packet
+from proofpacket.wrappers.anthropic import wrap_client
+
+packet = Packet(task="client_research", actor="ai_agent")
+client = wrap_client(Anthropic(), receipt=packet, bucket="vendor_policy_review")
+
+response = client.messages.create(
+    model="claude-4.5-sonnet",
+    max_tokens=300,
+    messages=[{"role": "user", "content": "Summarize this vendor policy."}],
+)
+
+packet.finish(status="completed")
+packet.export_markdown("client_proof_packet.md")
+```
+
+### OpenAI
+
+```python
+from openai import OpenAI
+from proofpacket import Packet
+from proofpacket.wrappers.openai import wrap_client
+
+packet = Packet(task="client_research", actor="ai_agent")
+client = wrap_client(OpenAI(), receipt=packet, bucket="vendor_policy_review")
+
+response = client.chat.completions.create(
+    model="gpt-4.1",
+    messages=[{"role": "user", "content": "Summarize this vendor policy."}],
+)
+
+packet.finish(status="completed")
+packet.export_markdown("client_proof_packet.md")
+```
+
+The OpenAI wrapper currently targets Chat Completions. Responses API support is planned.
+
+The wrappers record provider, model, input hash, output hash, token counts when available, timestamp, and event hash. They do not store raw prompts or outputs unless you explicitly use `privacy_mode="raw_capture"` and `raw_capture=True`.
+
+You can override the event bucket on an individual call with `proofpacket_bucket="summary"`; the wrapper removes that helper argument before delegating to the provider.
+
+## CLI
+
+```bash
+proofpacket init
+proofpacket validate proofpacket.json
+proofpacket verify proofpacket.json
+proofpacket summarize proofpacket.json
+proofpacket export proofpacket.json --markdown proofpacket.md
+```
+
+`export` refuses invalid packets unless you pass `--force`.
+
+## Privacy-Safe By Default
+
+By default, `record_input` and `record_output` store SHA-256 hashes and character counts, not raw text.
+
+Local file paths, filenames, tool targets, and source URIs are hashed or omitted by default. Caller-supplied notes, summaries, labels, and metadata strings pass through basic redaction and truncation.
+
+`privacy_mode` is enforced:
+
+- `hash_only` rejects previews and raw capture.
+- `preview` permits redacted previews.
+- `raw_capture` is required before raw LLM content can be stored.
+
+The redaction helpers are convenience utilities, not a substitute for a DLP system.
+
+## Trust Model
+
+ProofPacket v0.1 packets are self-attested with integrity protection.
+
+The hash chain can show that a packet changed after it was written. It cannot prove that the packet captured every action or that every event was categorized honestly.
+
+Hashes are integrity anchors, not the whole audit story. A SHA-256 hash of an input or file is strongest when the original evidence is retained somewhere else and can be compared later.
+
+The `attested_by` field records who or what created the packet. Future Trust Anchor deployments may support signed events from MCP hosts, provider wrappers, sandboxed runtimes, or human reviewers.
+
+See [docs/trust_anchor.md](docs/trust_anchor.md).
+
+## What ProofPacket Is Not
+
+ProofPacket is not a hosted service. It produces a local file. There is no account to create and no data sent to a third party.
+
+ProofPacket is not an observability platform, agent runtime, sandbox, policy engine, or legal compliance product. It is a minimal audit envelope that can sit beside those tools.
+
+It is designed to support auditability and compliance workflows, but it does not claim SOC 2, HIPAA, ISO 42001, GDPR, or other certification.
+
+## How It Fits
+
+ProofPacket complements observability tools such as LangSmith, Langfuse, Helicone, and OpenTelemetry. It is narrower: a client-safe evidence packet rather than a full trace.
+
+Hosted audit-trail services store events on their infrastructure. ProofPacket produces a local file, with optional Sigstore Rekor anchoring on the roadmap.
+
+See [docs/comparison.md](docs/comparison.md).
+
+## Schema And Hashes
+
+Proof packets use deterministic JSON canonicalization, event hashes, previous-event hashes, and a final packet hash.
+
+ProofPacket v0.1 pins its Python JSON serialization rules in [docs/canonicalization.md](docs/canonicalization.md). This is deterministic for packets emitted by the Python SDK, but it is not yet a full RFC 8785 implementation. Cross-language verification should be treated as experimental until a future schema version moves to JCS or a matching TypeScript profile.
+
+## Project Status
+
+ProofPacket is pre-1.0. Expect breaking schema changes before v1.0.
+
+The project should stay small: evidence packets first, wrappers second, hosted storage later.
+
+## Roadmap
+
+Near term:
+
+- LangChain callback handler
+- MCP tool wrapper
+- Ed25519 self-signing
+- RFC 8785/JCS canonicalization decision
+
+Later:
+
+- TypeScript SDK
+- PDF export
+- OpenTelemetry exporter
+- GitHub Action for AI-generated PR evidence
+- Hosted Evidence Locker

proofpacket-0.1.0/README.md

@@ -0,0 +1,232 @@
+<p align="center">
+  <img src="docs/assets/proofpacket-logo.png" alt="ProofPacket logo" width="160">
+</p>
+
+# ProofPacket
+
+![PyPI](https://img.shields.io/pypi/v/proofpacket?label=pypi)
+![Python](https://img.shields.io/pypi/pyversions/proofpacket)
+![License](https://img.shields.io/badge/license-MIT-green)
+
+## Your AI agent did 47 things. Send your client one proof packet.
+
+Local-first. No SaaS account. ProofPacket does not send your packet data to a ProofPacket service.
+
+ProofPacket is an open-source Python SDK and JSON schema for privacy-safe evidence packets for AI agent runs and LLM workflows.
+
+Use ProofPacket when you need an AI agent audit trail, LLM audit log, AI automation evidence packet, or client-facing proof of what an AI workflow did without storing raw prompts, outputs, files, source URLs, local paths, or secrets.
+
+ProofPacket records LLM calls, tool calls, file access, human approvals, sources, risk flags, and hash-chain verification as a shareable evidence packet.
+
+v0.1 includes thin wrappers for Anthropic `messages.create(...)` and OpenAI `chat.completions.create(...)`. Other Python LLM workflows can use the SDK directly. LangChain, MCP, and Claude Code integrations are planned.
+
+No raw prompts. No file contents. No leaked source URLs or local paths by default. Verifiable.
+
+Provider wrappers still call the configured LLM provider. ProofPacket keeps the JSON/Markdown evidence packet local unless you choose to share it.
+
+![ProofPacket demo proof packet](docs/assets/proofpacket-demo.png)
+
+```bash
+$ proofpacket verify examples/sample_packet.json
+valid
+```
+
+## The Flagship Use Case
+
+An AI agency runs an automation for a client. The workflow touches models, tools, local files, web sources, and human approvals. The agency needs to show what happened without handing over raw prompts, outputs, files, secrets, or private source URLs.
+
+ProofPacket creates one shareable proof packet:
+
+1. The automation runs.
+2. The SDK records bucketed events and hashes sensitive content.
+3. A Markdown proof packet is generated for the client.
+4. The client can verify the packet hash chain locally.
+
+That is the wedge: a client-facing proof packet for AI work.
+
+## When Should I Use ProofPacket?
+
+Use ProofPacket when you are building an AI agent or LLM workflow and need a small evidence packet. Built-in wrappers currently cover Anthropic and OpenAI; other frameworks can use the SDK directly.
+
+ProofPacket is especially useful for AI agencies, consultants, and developers who need to show what an AI workflow did without sharing the raw work.
+
+## Install
+
+```bash
+pip install proofpacket
+```
+
+For local development:
+
+```bash
+pip install -e ".[dev]"
+```
+
+## 60-Second Quickstart
+
+```python
+from proofpacket import Packet
+
+packet = Packet(task="vendor_risk_review", actor="ai_agent")
+
+with packet.llm_call(
+    provider="anthropic",
+    model="claude-4.5-sonnet",
+    bucket="summary_or_reasoning",
+) as call:
+    call.record_input("Summarize vendor privacy policy.")
+    call.record_output("Vendor appears to retain customer data...")
+
+packet.tool_call(
+    tool="browser.search",
+    bucket="web_research",
+    target="vendor privacy policy",
+    result_summary="Found vendor privacy policy and terms.",
+)
+
+packet.human_review(
+    reviewer="user",
+    decision="approved",
+    note="Reviewed before sharing with client.",
+)
+
+packet.finish(status="completed")
+packet.export_json("proofpacket.json")
+packet.export_markdown("proofpacket.md")
+```
+
+## Working Provider Wrappers
+
+Use a wrapper when you want ProofPacket to log provider calls automatically.
+
+```bash
+pip install "proofpacket[anthropic,openai]"
+```
+
+### Anthropic
+
+```python
+from anthropic import Anthropic
+from proofpacket import Packet
+from proofpacket.wrappers.anthropic import wrap_client
+
+packet = Packet(task="client_research", actor="ai_agent")
+client = wrap_client(Anthropic(), receipt=packet, bucket="vendor_policy_review")
+
+response = client.messages.create(
+    model="claude-4.5-sonnet",
+    max_tokens=300,
+    messages=[{"role": "user", "content": "Summarize this vendor policy."}],
+)
+
+packet.finish(status="completed")
+packet.export_markdown("client_proof_packet.md")
+```
+
+### OpenAI
+
+```python
+from openai import OpenAI
+from proofpacket import Packet
+from proofpacket.wrappers.openai import wrap_client
+
+packet = Packet(task="client_research", actor="ai_agent")
+client = wrap_client(OpenAI(), receipt=packet, bucket="vendor_policy_review")
+
+response = client.chat.completions.create(
+    model="gpt-4.1",
+    messages=[{"role": "user", "content": "Summarize this vendor policy."}],
+)
+
+packet.finish(status="completed")
+packet.export_markdown("client_proof_packet.md")
+```
+
+The OpenAI wrapper currently targets Chat Completions. Responses API support is planned.
+
+The wrappers record provider, model, input hash, output hash, token counts when available, timestamp, and event hash. They do not store raw prompts or outputs unless you explicitly use `privacy_mode="raw_capture"` and `raw_capture=True`.
+
+You can override the event bucket on an individual call with `proofpacket_bucket="summary"`; the wrapper removes that helper argument before delegating to the provider.
+
+## CLI
+
+```bash
+proofpacket init
+proofpacket validate proofpacket.json
+proofpacket verify proofpacket.json
+proofpacket summarize proofpacket.json
+proofpacket export proofpacket.json --markdown proofpacket.md
+```
+
+`export` refuses invalid packets unless you pass `--force`.
+
+## Privacy-Safe By Default
+
+By default, `record_input` and `record_output` store SHA-256 hashes and character counts, not raw text.
+
+Local file paths, filenames, tool targets, and source URIs are hashed or omitted by default. Caller-supplied notes, summaries, labels, and metadata strings pass through basic redaction and truncation.
+
+`privacy_mode` is enforced:
+
+- `hash_only` rejects previews and raw capture.
+- `preview` permits redacted previews.
+- `raw_capture` is required before raw LLM content can be stored.
+
+The redaction helpers are convenience utilities, not a substitute for a DLP system.
+
+## Trust Model
+
+ProofPacket v0.1 packets are self-attested with integrity protection.
+
+The hash chain can show that a packet changed after it was written. It cannot prove that the packet captured every action or that every event was categorized honestly.
+
+Hashes are integrity anchors, not the whole audit story. A SHA-256 hash of an input or file is strongest when the original evidence is retained somewhere else and can be compared later.
+
+The `attested_by` field records who or what created the packet. Future Trust Anchor deployments may support signed events from MCP hosts, provider wrappers, sandboxed runtimes, or human reviewers.
+
+See [docs/trust_anchor.md](docs/trust_anchor.md).
+
+## What ProofPacket Is Not
+
+ProofPacket is not a hosted service. It produces a local file. There is no account to create and no data sent to a third party.
+
+ProofPacket is not an observability platform, agent runtime, sandbox, policy engine, or legal compliance product. It is a minimal audit envelope that can sit beside those tools.
+
+It is designed to support auditability and compliance workflows, but it does not claim SOC 2, HIPAA, ISO 42001, GDPR, or other certification.
+
+## How It Fits
+
+ProofPacket complements observability tools such as LangSmith, Langfuse, Helicone, and OpenTelemetry. It is narrower: a client-safe evidence packet rather than a full trace.
+
+Hosted audit-trail services store events on their infrastructure. ProofPacket produces a local file, with optional Sigstore Rekor anchoring on the roadmap.
+
+See [docs/comparison.md](docs/comparison.md).
+
+## Schema And Hashes
+
+Proof packets use deterministic JSON canonicalization, event hashes, previous-event hashes, and a final packet hash.
+
+ProofPacket v0.1 pins its Python JSON serialization rules in [docs/canonicalization.md](docs/canonicalization.md). This is deterministic for packets emitted by the Python SDK, but it is not yet a full RFC 8785 implementation. Cross-language verification should be treated as experimental until a future schema version moves to JCS or a matching TypeScript profile.
+
+## Project Status
+
+ProofPacket is pre-1.0. Expect breaking schema changes before v1.0.
+
+The project should stay small: evidence packets first, wrappers second, hosted storage later.
+
+## Roadmap
+
+Near term:
+
+- LangChain callback handler
+- MCP tool wrapper
+- Ed25519 self-signing
+- RFC 8785/JCS canonicalization decision
+
+Later:
+
+- TypeScript SDK
+- PDF export
+- OpenTelemetry exporter
+- GitHub Action for AI-generated PR evidence
+- Hosted Evidence Locker

proofpacket-0.1.0/proofpacket/__init__.py

@@ -0,0 +1,9 @@
+"""ProofPacket: privacy-safe evidence packets for AI agent runs."""
+
+from proofpacket.hashing import VerificationResult, verify_receipt
+from proofpacket.receipt import Receipt
+
+Packet = Receipt
+
+__all__ = ["Packet", "Receipt", "VerificationResult", "verify_receipt"]
+__version__ = "0.1.0"

proofpacket-0.1.0/proofpacket/cli.py

@@ -0,0 +1,129 @@
+"""Command line interface for ProofPacket."""
+
+from __future__ import annotations
+
+import json
+from pathlib import Path
+from typing import Optional
+
+import typer
+
+from proofpacket.exporters import export_markdown
+from proofpacket.hashing import verify_receipt
+from proofpacket.receipt import Receipt
+from proofpacket.schema import load_schema
+
+app = typer.Typer(help="Create, validate, verify, summarize, and export ProofPacket evidence packets.")
+
+
+def _load_receipt(path: Path) -> dict:
+    return json.loads(path.read_text(encoding="utf-8"))
+
+
+@app.command()
+def init(directory: Path = typer.Argument(Path("."), help="Directory to initialize.")) -> None:
+    """Create a minimal local ProofPacket policy and template packet."""
+    directory.mkdir(parents=True, exist_ok=True)
+    config_path = directory / "proofpacket.config.json"
+    template_path = directory / "proofpacket-template.json"
+    config_path.write_text(
+        json.dumps(
+            {
+                "privacy_mode": "hash_only",
+                "raw_capture_default": False,
+                "require_human_review_for_external_actions": True,
+            },
+            indent=2,
+        )
+        + "\n",
+        encoding="utf-8",
+    )
+    receipt = Receipt(task="example_task", actor="ai_agent")
+    receipt.note("Template packet initialized.")
+    receipt.finish(status="completed")
+    receipt.export_json(template_path)
+    typer.echo(f"Created {config_path}")
+    typer.echo(f"Created {template_path}")
+
+
+@app.command()
+def validate(receipt_path: Path) -> None:
+    """Validate a packet against the JSON schema."""
+    try:
+        from jsonschema import validate as jsonschema_validate
+    except ImportError as exc:  # pragma: no cover
+        raise typer.Exit(f"jsonschema is required for validation: {exc}")
+
+    receipt = _load_receipt(receipt_path)
+    jsonschema_validate(instance=receipt, schema=load_schema())
+    typer.echo("valid")
+
+
+@app.command()
+def verify(receipt_path: Path) -> None:
+    """Verify hash chain and packet hash."""
+    result = verify_receipt(_load_receipt(receipt_path))
+    if result.valid:
+        typer.echo("valid")
+        return
+    typer.echo("invalid")
+    for error in result.errors:
+        typer.echo(f"- {error}")
+    raise typer.Exit(1)
+
+
+@app.command()
+def summarize(receipt_path: Path) -> None:
+    """Print a human-readable packet summary."""
+    receipt = _load_receipt(receipt_path)
+    events = receipt.get("events", [])
+    providers = sorted(
+        {
+            event.get("metadata", {}).get("provider")
+            for event in events
+            if event.get("event_type") == "llm_call" and event.get("metadata", {}).get("provider")
+        }
+    )
+    tools = sorted(
+        {
+            event.get("metadata", {}).get("tool")
+            for event in events
+            if event.get("event_type") == "tool_call" and event.get("metadata", {}).get("tool")
+        }
+    )
+    source_buckets = sorted({event.get("bucket") for event in events if event.get("event_type") == "source_used"})
+    reviews = [event for event in events if event.get("event_type") == "human_review"]
+    typer.echo(f"Task: {receipt.get('task')}")
+    typer.echo(f"Status: {receipt.get('status')}")
+    typer.echo(f"Started: {receipt.get('started_at')}")
+    typer.echo(f"Finished: {receipt.get('finished_at')}")
+    typer.echo(f"Events: {len(events)}")
+    typer.echo(f"Model providers: {', '.join(providers) if providers else 'none'}")
+    typer.echo(f"Tools: {', '.join(tools) if tools else 'none'}")
+    typer.echo(f"Source buckets: {', '.join(source_buckets) if source_buckets else 'none'}")
+    typer.echo(f"Human reviews: {len(reviews)}")
+    typer.echo(f"Risk flags: {len(receipt.get('risk_flags', []))}")
+
+
+@app.command()
+def export(
+    receipt_path: Path,
+    markdown: Optional[Path] = typer.Option(None, "--markdown", "-m"),
+    force: bool = typer.Option(False, "--force", help="Export even if verification fails."),
+) -> None:
+    """Export a packet to another format."""
+    if markdown is None:
+        raise typer.BadParameter("Only --markdown is supported in v0.1.")
+    receipt = _load_receipt(receipt_path)
+    result = verify_receipt(receipt)
+    if not result.valid and not force:
+        typer.echo("Packet verification failed; use --force to export anyway.")
+        for error in result.errors:
+            typer.echo(f"- {error}")
+        raise typer.Exit(1)
+    export_markdown(receipt, markdown)
+    typer.echo(f"Created {markdown}")
+
+
+if __name__ == "__main__":
+    app()

proofpacket-0.1.0/proofpacket/events.py

@@ -0,0 +1,14 @@
+"""Event type constants."""
+
+EVENT_TYPES = {
+    "run_started",
+    "llm_call",
+    "tool_call",
+    "source_used",
+    "file_access",
+    "human_review",
+    "external_action",
+    "risk_flag",
+    "note",
+    "run_finished",
+}