Protocol Vault // Core_V1
We transform data fingerprints into permanent, cryptographically verifiable audit trails anchored through Economy batching and direct Solana settlement modes.
All claims MUST be pre-hashed using SHA-256 before submission. The API performs strict format validation.
{ "claim": "8f434346648f6b96df89dda901c5176b10a6d83961dd3c1ac88b59b2d8227a1"}Optional structured data attached to anchors is subject to strict security hardening.
Monitor the production Orchestration Layer. The health probe verifies core stability and the exposed settlement modes.
curl -X GET /api/health{ "status": "healthy", "timestamp": "2026-01-03T04:10:00Z", "services": { "supabase": "healthy", "solana": "healthy", "api": "healthy" }}import requestsimport hashlib# 1. Prepare Claimdata = "my-secure-data-v1"claim = hashlib.sha256(data.encode()).hexdigest()# 2. Submit to Provncloudres = requests.post( "/api/api/verify", headers={"X-API-Key": "provn_sk_live_xxxxxxxxxxxxxxxxxxxxxxxx"}, json={"claim": claim, "anchor_mode": "standard"})print(f"Receipt: {res.json()['provn_receipt']['signature']}")const res = await fetch("/api/api/verify/priority", { method: "POST", headers: { "X-API-Key": "provn_sk_live_xxxxxxxxxxxxxxxxxxxxxxxx", "Content-Type": "application/json" }, body: JSON.stringify({ claim: "8f43...92a1" })});const { anchor } = await res.json();ProvnCloud runs McpVanguard as a dedicated adjacent runtime for your tenant. MCP tool calls are inspected at the gateway, hash-only receipt events are collected, and eligible receipts can become independently verifiable evidence without sending raw prompts, tool arguments, or secrets to ProvnCloud. Production runtimes are expected to run from a pinned immutable GHCR image digest, while ProvnCloud keeps the backend digest env and wrapper service source in lockstep.
McpVanguard evaluates the mediated MCP request and returns allow, block, shadow_block, or review decisions.
The wrapper emits receipt_v1 events with canonical hashes and receipt-chain continuity fields.
The managed collector uploads tenant-scoped batches to ProvnCloud and reports heartbeat, backlog, quarantine, and upload offsets.
ProvnCloud stores receipt evidence, anchors eligible receipts, and exports verification bundles for /verify.
{ "bundle_schema_version": "provncloud.mcp.receipt_proof_bundle.v1", "receipt_id": "rec_...", "canonical_digest": "sha256:...", "anchor_status": "anchored", "proof_material_available": true, "proof_material_status": "available", "receipt_snapshot": { "receipt_event_redacted": true, "canonical_digest": "sha256:..." }, "chain_verification": { "continuity_verified": true }}Download an exported evidence or proof bundle from Runtime Receipts, then paste the JSON into the public verifier.
/live means the process is alive, /ready means the runtime can serve traffic, and evidence ready means receipt uploads are fresh with no backlog or quarantine. Evidence files and dashboards must never include raw prompts, tool arguments, secrets, service tokens, or registry credentials. Receipt/proof records preserve evidence; they do not authorize downstream actions.
OIDC/Supabase sessions for browser-based dashboards and user-facing explorers.
Argon2 hashed keys for secure, server-to-server headless integration.
Cryptographic proof-of-identity using Ed25519 key pairs for trustless authentication.
Trustless authentication using Ed25519 key pairs. No passwords, no sessions:
Server returns nonce via X-Nonce header.
Client signs nonce + timestamp with Ed25519 private key.
Retry request with X-Signature header containing signed payload.
Server verifies signature and anchors the data.
Batched low-cost settlement for high-volume SHA-256 claims. Economy batches proofs efficiently on Solana.
curl -X POST /api/api/verify \-H "X-API-Key: provn_sk_live_xxxxxxxxxxxxxxxxxxxxxxxx" \-H "Content-Type: application/json" \-d '{ "claim": "8f43...92a1", "anchor_mode": "economy"}'Direct settlement mode for paid traffic. Standard requests target Solana directly for fast, direct settlement.
curl -X POST /api/api/verify \-H "X-API-Key: provn_sk_live_xxxxxxxxxxxxxxxxxxxxxxxx" \-H "Content-Type: application/json" \-d '{ "claim": "d1e2...f5a4", "anchor_mode": "standard", "lane": "solana"}'The ultra-low-latency settlement path. Use the dedicated priority endpoint for direct anchoring on Solana.
curl -X POST /api/api/verify/priority \-H "X-API-Key: provn_sk_live_xxxxxxxxxxxxxxxxxxxxxxxx" \-H "Content-Type: application/json" \-d '{ "claim": "7c9b...0e3d"}'Every request returns a Provncloud-Signed Receipt immediately. This Sovereign Assurance allows independent verification while chain finality completes by lane.
Merkle tree batching proves inclusion and sequence integrity across proof batches. Each batch root is anchored to Solana with a deterministic ordering guarantee.
POST /api/api/verifyUniversal privacy by design. Provncloud acts as a blind sequencer, anchoring Fingerprints (Hashes) without ever seeing the raw data payload.
GET /api/api/audit/log?anchor_id=...Invalid hash format (non-64 hex) or metadata too deep/large.
Missing or malformed X-API-Key or JWT Bearer token.
Insufficient credits or free tier limit reached. Top up credit packs or upgrade to proceed.
Ingress burst limit exceeded. Slow down your requests.
Limits are enforced per User_ID using a token-bucket algorithm. Management endpoints (Keys, Billing) are restricted to 100/min.
{ "proof_hash": "8f43...92a1", "anchor": { "mode": "standard", "status": "confirmed", "tx_signature": "5vB5...zk9xWR", "anchored_at": "2026-01-12T20:00:00Z" }}The tx_signature is your permanent audit key. It points to the inclusion record on the selected settlement network.
Provncloud is "Zero-Exit" by design. You can verify any claim independently of our infrastructure using the selected decentralized settlement layer.
Query the relevant chain explorer or node for the tx_signature. Verify the fingerprint matches your computed hash.
Supported settlement networks provide permanent cryptographic finality. Zero vendor lock-in.
For industrial-scale automated verification, use our open-source Rust SDK. It implements parallel chain state interrogation and proof validation.
provn-verify = "2.0.0"