docs: add a proof walkthrough that runs the real verifier#173
Merged
Conversation
Add `demo/`: two scripts that show what a sealed run record proves and what the verifier refuses. `proof.sh` needs no model: it runs `flynn spine verify` against the published conformance vectors, so a valid record reports verified, governed, and grounded, while a record that is perfectly signed but had an action run without admission, or claims a success with nothing behind it, or has a single byte changed, is rejected with the exact failure code. `proof-live.sh` drives two real goals and verifies their sealed records: one whose success is backed by an independent check (grounded) and one that claims success while its check disagrees (not grounded). The point a reader sees in seconds: being signed is not the same as being proven. Every verdict is the real verifier's output. The README records the actual run.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What
Adds
demo/: a proof walkthrough that runs the real verifier.proof.shneeds no model and runsflynn spine verifyagainst the published conformance vectors: a valid record reports verified, governed, and grounded, while a record that is signed but had an action run without admission, claims a success with nothing behind it, or has one byte changed is rejected with the exact failure code and a non-zero exit.proof-live.shdrives two real goals and verifies their sealed records: one whose success is backed by an independent check (grounded) and one that claims success while its check disagrees (not grounded). The README records the actual output.Why
The verifiable-execution capability is abstract until someone sees it. This makes it concrete in seconds and on the reader's own machine: a perfectly signed record gets rejected because being signed is not the same as being proven. It doubles as documentation that the verifier and the conformance vectors agree, and
proof.shis a self-contained check anyone can run from a fresh clone.How to verify
./demo/proof.shfrom the repository root builds the binary and prints the five verdicts in the README (no model or network needed).bash -n demo/proof.sh demo/proof-live.shparses clean.proof-live.shadditionally drives real goals and needs a model (a stored provider key or a local model).