Spaces:

RFTSystems
/

Agent_Flight_Recorder

Running

App Files Files Community

RFTSystems commited on 5 days ago

Commit

efca6e6

verified ·

1 Parent(s): 361d72c

Update README.md

Browse files

Files changed (1) hide show

README.md +28 -12

README.md CHANGED Viewed

@@ -18,6 +18,24 @@ It’s designed to be boringly audit-friendly: **canonical JSON hashing**, optio
 ---
 ## What this Space does
 ### ✅ Records a tamper-evident timeline
@@ -33,7 +51,6 @@ Each action becomes an **event** (one JSON object per line) written to `flightlo
 - `note`
 Every event includes:
 - `seq` (monotonic step number)
 - `ts_utc` (UTC timestamp)
 - `prev_event_hash_sha256` (links to previous event)
@@ -43,17 +60,16 @@ Every event includes:
 If any event is edited, removed, or reordered, verification fails.
 ### ✅ Concurrency-safe writes (public Space reality)
-Multiple users can click around at the same time. The log is protected with a **file lock** so “two tabs / two users” don’t corrupt the chain.
 ### ✅ Refuses writes after finalisation
-Once a session records `session_end`, the recorder **refuses any further writes** to that session. No silent “post-hoc edits”.
 ### ✅ Verifies sessions end-to-end
-The verifier recomputes hashes and confirms the chain is intact. Optionally, it can require a valid signature on every event (only enable this if you signed every event).
 ### ✅ Exports proof bundles
 Exports `rft_flight_bundle_<session_id>.zip` containing:
 - `<session_id>_events.jsonl` (the full session timeline)
 - `<session_id>_verify_report.txt` (human-readable verification report)
@@ -62,11 +78,10 @@ Upload a bundle and verify it locally. Optionally store PASSed events into your
 ---
-## How to use (step-by-step)
 ### 1) Generate keys (optional)
 Go to **Keys** → **Generate Keypair**.
 - **Private key** signs events (keep it private).
 - **Public key** verifies signatures (safe to share).
@@ -95,8 +110,8 @@ Enable **Require signatures** only if you signed every event you expect to verif
 ### 6) Finalise + Export
 Go to **Finalise + Export**:
-- **Finalise session** appends `session_end` with a **session anchor**.
-- **Export session bundle** produces the ZIP proof bundle.
 ### 7) Import bundle (third-party verification)
 Go to **Import Bundle**, upload `rft_flight_bundle_*.zip`, and verify.
@@ -124,6 +139,7 @@ If you want to retain verified sessions, tick **Store imported events** (only st
 Session anchor (what finalisation commits to)
 Finalisation creates an anchor that describes the pre-end chain (so it doesn’t depend on itself):
 {
   "spec": "rft-flight-session-root-v0",
   "session_id": "…",
@@ -133,6 +149,7 @@ Finalisation creates an anchor that describes the pre-end chain (so it doesn’t
   "root_hash_sha256": "…",
   "signature_ed25519": "…"
 }
 Brutal tests (included)
 This repo includes brutal_test.py with two hard tests:
@@ -145,6 +162,7 @@ Run locally:
 python brutal_test.py
 Expected:
 both tests PASS
@@ -169,7 +187,5 @@ brutal_test.py — stress + tamper tests
 flightlog.jsonl — append-only log (created at runtime)
-licence
-::contentReference[oaicite:0]{index=0}
 Check out the configuration reference at https://huggingface.co/docs/hub/spaces-config-reference

 ---
+## Quickstart (recommended)
+If you don’t want to guess what to click:
+1. Open **Quickstart (1-click)**
+2. (Optional) tick **Sign everything (Ed25519) + generate fresh keys**
+3. Click **Run Quickstart Demo Now**
+That will automatically:
+- start a session
+- append a realistic event sequence
+- verify the chain
+- finalise the session (creates an anchor)
+- export a ZIP proof bundle
+- fan out the `session_id` into the other tabs so you can immediately inspect Timeline / Verify / Export
+---
 ## What this Space does
 ### ✅ Records a tamper-evident timeline
 - `note`
 Every event includes:
 - `seq` (monotonic step number)
 - `ts_utc` (UTC timestamp)
 - `prev_event_hash_sha256` (links to previous event)
 If any event is edited, removed, or reordered, verification fails.
 ### ✅ Concurrency-safe writes (public Space reality)
+Multiple users can click around at the same time. The log uses a **file lock** so “two tabs / two users” don’t corrupt the chain.
 ### ✅ Refuses writes after finalisation
+Once a session records `session_end`, the recorder **refuses any further writes** to that session. No silent post-hoc edits.
 ### ✅ Verifies sessions end-to-end
+The verifier recomputes hashes and confirms the chain is intact. Optionally, it can require a valid signature on every event.
 ### ✅ Exports proof bundles
 Exports `rft_flight_bundle_<session_id>.zip` containing:
 - `<session_id>_events.jsonl` (the full session timeline)
 - `<session_id>_verify_report.txt` (human-readable verification report)
 ---
+## Manual use (step-by-step)
 ### 1) Generate keys (optional)
 Go to **Keys** → **Generate Keypair**.
 - **Private key** signs events (keep it private).
 - **Public key** verifies signatures (safe to share).
 ### 6) Finalise + Export
 Go to **Finalise + Export**:
+- **Finalise session** appends `session_end` with a **session anchor**
+- **Export session bundle** produces the ZIP proof bundle
 ### 7) Import bundle (third-party verification)
 Go to **Import Bundle**, upload `rft_flight_bundle_*.zip`, and verify.
 Session anchor (what finalisation commits to)
 Finalisation creates an anchor that describes the pre-end chain (so it doesn’t depend on itself):
 {
   "spec": "rft-flight-session-root-v0",
   "session_id": "…",
   "root_hash_sha256": "…",
   "signature_ed25519": "…"
 }
 Brutal tests (included)
 This repo includes brutal_test.py with two hard tests:
 python brutal_test.py
 Expected:
 both tests PASS
 flightlog.jsonl — append-only log (created at runtime)
+LICENCE — licence file
 Check out the configuration reference at https://huggingface.co/docs/hub/spaces-config-reference