{
  "schema_version": "g14.proof_pack_index.v1",
  "release_id": "g14-amr-customer-proof-pack-v0-20260425",
  "generated_date": "2026-04-25",
  "status": "public_test_artifact",
  "primary_claim": "A buyer can download a real AMR proof pack generated by the Agent Control Runtime proof-packet pipeline, verify it locally, confirm five signed packets pass, and confirm six named F4/F5/F6 negative cases fail.",
  "artifact": {
    "file_name": "g14-amr-customer-proof-pack-v0-20260425.zip",
    "href": "/files/proof-packets/g14-amr-customer-proof-pack-v0-20260425.zip",
    "size_bytes": 5176564,
    "sha256": "b00b2ce5298e2795b7453fbaa8558ab6b7a472423375cdabd5d3478ab7495a55",
    "sha256_sidecar_href": "/files/proof-packets/g14-amr-customer-proof-pack-v0-20260425.zip.sha256",
    "manifest_href": "/files/proof-packets/g14-amr-customer-proof-pack-v0-20260425.manifest.json",
    "manifest_sha256": "5c081add96628e40162fb7d533f876e18fe838e697993e2735b00a13af9c5af3",
    "checksum_ledger_href": "/files/proof-packets/g14-amr-customer-proof-pack-v0-20260425.SHA256SUMS.txt",
    "checksum_ledger_sha256": "12a23990ef763a81a2321ffca5cc517f074437a522f7ecb2d0b397ee4ec3f06e"
  },
  "verifier": {
    "runtime_package": "agent-control-runtime",
    "runtime_wheel": "agent_control_runtime-0.1.0-py3-none-any.whl",
    "runtime_wheel_sha256": "5484586aa341cd835cba9e4302366e7dcf662d8084710bdd2e9d74cb9abf1f47",
    "offline_linux_wheelhouse": true,
    "script": "tools/verify_pack.py",
    "expected_output": {
      "status": "pass",
      "positive_packets_verified": 5,
      "negative_packets_failed_as_expected": 6
    }
  },
  "positive_cases": [
    {
      "slug": "01_immediate_allow",
      "description": "Immediate allowed AMR action",
      "expected_decision": "pass"
    },
    {
      "slug": "02_hold_release",
      "description": "Held action released by operator authority",
      "expected_decision": "pass"
    },
    {
      "slug": "03_hold_block",
      "description": "Held action blocked before release",
      "expected_decision": "pass"
    },
    {
      "slug": "04_timeout_safe_state",
      "description": "Timeout path that settles into safe state",
      "expected_decision": "pass"
    },
    {
      "slug": "07_replay_seed_allow",
      "description": "Replay-seeded allow path used to prove rejection behavior",
      "expected_decision": "pass"
    }
  ],
  "negative_cases": [
    {
      "slug": "f4_unsigned_packet",
      "failure_class": "F4",
      "customer_reason": "Unsigned packet",
      "expected_failed_checks": ["product_signature_present"],
      "plain_language": "The packet has no product signature, so the verifier cannot accept it as a G-14-issued proof packet."
    },
    {
      "slug": "f4_tampered_signed_body",
      "failure_class": "F4",
      "customer_reason": "Tampered signed body",
      "expected_failed_checks": [
        "section_hash:evidence_bundle",
        "packet_body_hash",
        "product_signature_valid"
      ],
      "plain_language": "The body no longer matches the signed section hashes, so the verifier rejects the packet instead of trusting altered evidence."
    },
    {
      "slug": "f5_missing_cross_view",
      "failure_class": "F5",
      "customer_reason": "Missing cross-view evidence",
      "expected_failed_checks": ["cross_view_present"],
      "plain_language": "The packet omits the cross-view block required to bind views to a shared execution transcript."
    },
    {
      "slug": "f5_missing_inclusion_proofs",
      "failure_class": "F5",
      "customer_reason": "Missing inclusion proof",
      "expected_failed_checks": ["cross_view_path:$.runtime_metadata:proof_present"],
      "plain_language": "The packet declares a cross-view root but lacks the inclusion proof for disclosed runtime metadata."
    },
    {
      "slug": "f6_realized_support_shared_domain",
      "failure_class": "F6",
      "customer_reason": "Signer support not independent",
      "expected_failed_checks": ["indcert_field_support:2:realized_support_mutually_independent"],
      "plain_language": "The realized signer support shares a compromise domain, so the presented evidence cannot discharge the claimed signer-independence precondition."
    },
    {
      "slug": "f6_product_signature_key_not_declared",
      "failure_class": "F6",
      "customer_reason": "Signature key absent from topology",
      "expected_failed_checks": ["signer_topology_product_signature_key_declared"],
      "plain_language": "The product signature key is not declared in the signer-topology certificate, so the verifier cannot connect the signature to the claimed trust topology."
    }
  ],
  "claims": {
    "allowed": [
      "This artifact is generated by the Agent Control Runtime AMR proof-pack pipeline.",
      "This artifact can be verified locally.",
      "The verifier accepts five signed positive cases and rejects six named F4/F5/F6 negative cases.",
      "The downloadable zip, manifest, checksum ledger, and verifier wheel hash are published for artifact pinning."
    ],
    "required_boundaries": [
      "This is not a certification.",
      "This is not a customer deployment attestation.",
      "This does not prove any external production environment has been assessed.",
      "Customer-specific F5 and F6 assumptions require deployment-specific discharge."
    ]
  },
  "next_step": {
    "label": "Request production evaluation",
    "href": "/request-access?entry_path=%2Ftest%2Famr-proof-packet&entry_stage=public_proof_packet_test&entry_lane_hint=technical_diligence"
  }
}