SDKs & CLI

npm install @ai-provenance-protocol/sdk

import { APP } from '@ai-provenance-protocol/sdk'
 
// Create metadata for a generation event
const metadata = APP.create({
  generator: {
    platform: 'my-platform',
    model: 'anthropic/claude-sonnet-4',
  },
  verification_uri: 'https://verify.my-platform.com/v1/verify',
})
 
// Embed in your JSON API response
const response = APP.embed(generatedContent, metadata)
// { ...generatedContent, _ai_provenance: { app_version: '1.0.0', ... } }

const metadata = APP.create({
  generator: {
    platform: 'my-platform',
    model: 'anthropic/claude-sonnet-4',
    platform_version: '2.1.0',       // optional
  },
  verification_uri: 'https://verify.my-platform.com/v1/verify',
  inputs: {
    type: 'structured',
    description: 'Product attributes',
  },
})

const output = APP.embed(
  { title: 'Premium Leather Wallet', description: 'Handcrafted...' },
  metadata
)
// { title: '...', description: '...', _ai_provenance: { ... } }

const { content, app } = APP.extract(receivedJson)
// content: { title: '...', description: '...' }
// app: AppMetadata | null

const result = APP.validate(unknownData)
 
if (!result.valid) {
  result.errors.forEach(e => console.error(`${e.field}: ${e.message}`))
}

const reviewed = APP.review(metadata, {
  human_reviewed: true,
  reviewer_role: 'editor',
  review_type: 'approved_without_changes',
  review_notes: 'Adjusted tone for brand guidelines.',
})

const hash = APP.hashContent({ title: 'My Article', body: '...' })
// 'sha256:e3b0c44298fc...'
 
// Attach to metadata
const withHash = { ...metadata, content_hash: hash }

const result = await APP.verify(
  metadata.generation_id,
  'https://verify.my-platform.com/v1/verify'
)
 
if (result.found) {
  console.log('Verified:', result.generator?.model)
}

const result = await APP.match(
  'sha256:e3b0c44298fc...',
  'https://verify.my-platform.com/v1/verify',
  'application/json'
)
console.log(`${result.matches.length} matching generation(s)`)

import { create, embed, extract, validate, review, hashContent, verify, match } from '@ai-provenance-protocol/sdk'

import type { AppMetadata, Generator, Review, ValidationResult } from '@ai-provenance-protocol/sdk'

pip install ai-provenance-protocol

from ai_provenance_protocol import APP
 
# Create metadata after your AI call
metadata = APP.create(
    generator={"platform": "my-platform", "model": "gpt-4o"},
    verification_uri="https://api.my-platform.com/verify",
)
 
# Embed in your API response
response = APP.embed({"reply": "Hello, world!"}, metadata)
# {"reply": "Hello, world!", "_ai_provenance": {"app_version": "1.0.0", ...}}

metadata = APP.create(
    generator={"platform": "my-platform", "model": "gpt-4o"},
    verification_uri="https://api.my-platform.com/verify",
    inputs={"type": "text", "description": "User prompt"},
    # optional
    generation_id="550e8400-...",
    parent_generation_id="...",
    extensions={"io.acme": {"tenant_id": "t_123"}},
)

output = APP.embed({"answer": "42"}, metadata)
 
content, meta = APP.extract(output)
# content == {"answer": "42"}
# meta    == {...}  or  None if not present

result = APP.validate(metadata)
# {"valid": True, "errors": []}
 
if not result["valid"]:
    for err in result["errors"]:
        print(err)

approved = APP.review(
    metadata,
    human_reviewed=True,
    reviewer_role="editor",
    review_type="approved_without_changes",
)

h = APP.hash_content({"answer": "42"})
# {"algorithm": "sha256", "value": "<hex>"}
 
metadata_with_hash = APP.attach_hash(metadata, content)

# Sync
result = APP.verify_sync(
    metadata["generation_id"],
    metadata["verification_uri"],
)
# {"found": True, "metadata": {...}}
 
# Async
result = await APP.verify(
    metadata["generation_id"],
    metadata["verification_uri"],
)

h = APP.hash_content(content)
result = APP.match_sync(h["value"], metadata["verification_uri"])
# {"match": True, "generation_id": "..."}

from ai_provenance_protocol import create, embed, extract, validate, review
from ai_provenance_protocol import hash_content, attach_hash, verify_sync
from ai_provenance_protocol import AppMetadata, Generator, ValidationResult

npx app-validator <command>

npm install -g app-validator

# Validate a standalone APP metadata object
npx app-validator validate metadata.json
 
# Extract and validate _ai_provenance from a larger JSON document
npx app-validator validate api-response.json --extract
 
# Machine-readable JSON output (for CI pipelines)
npx app-validator validate metadata.json --json

✓ Valid APP metadata

  generation_id       a1b2c3d4-e5f6-7890-abcd-ef1234567890
  generator           anthropic/claude-sonnet-4 (my-platform)
  generated_at        2026-04-18T10:00:00Z
  ai_generated        true
  reviewed            false
  verification_uri    https://verify.my-platform.com/v1/verify

npx app-validator verify a1b2c3d4-e5f6-7890-abcd-ef1234567890 \
  https://verify.my-platform.com/v1/verify

# Hash a JSON file
npx app-validator hash content.json
 
# Hash only the content, excluding _ai_provenance
npx app-validator hash output.json --extract
 
# Use SHA-512
npx app-validator hash content.json --algorithm sha512

# GitHub Actions — fail if APP metadata is missing or invalid
- name: Validate APP metadata
  run: npx app-validator validate ./output/response.json --extract --json