Verification

Verify it yourself.

Signed certificates, hash-chained logs, and preserved run archives.

Latest Audit

Latest audit (human)

Human-readable audit certificate

https://sdl-hq.github.io/sir-firewall/latest-audit.html

Run archive

Complete PASS + FAIL run history

https://sdl-hq.github.io/sir-firewall/runs/index.html

Raw signed JSON

Cryptographically signed certificate

https://raw.githubusercontent.com/SDL-HQ/sir-firewall/main/proofs/latest-audit.json

Offline Verification

Requires the repo (or installed package).

Verify Command
curl -s https://raw.githubusercontent.com/SDL-HQ/sir-firewall/main/proofs/latest-audit.json | python3 tools/verify_certificate.py

Expected Output

OK: Certificate signature valid and payload_hash matches.

How It Works

A run binds to a test suite (suite hash).

A run binds to a policy configuration (policy hash/version).

A run produces an immutable log trail (ITGL final hash).

The published certificate is cryptographically signed and can be verified offline.

Verification Resources

SIR Repository

Full source code and documentation

Public Key

SDL public key for certificate verification

Verifier Script

Python script to verify certificates offline