TrigGuard
TRIGGUARD VERIFY_RECEIPT
Request a demo

VERIFY_RECEIPT

Verify that an execution decision was issued by TrigGuard and is cryptographically intact. The decision vocabulary is deterministic: PERMIT, DENY, SILENCE.

// RECEIPT MODEL

What a receipt proves

  • Decision integrity - the decision payload is unchanged from issuance
  • Issuer authenticity - signature verifies against TrigGuard public keys
  • Inclusion evidence - transparency log anchors receipt history

// VERIFY API

Call the verification endpoint

Send receipt JSON to POST /protocol/verify-receipt to validate the signed decision payload.

curl -X POST https://trigguardai.com/protocol/verify-receipt \
 -H "Content-Type: application/json" \
 -d '{
 "decision": "PERMIT",
 "timestamp": "2026-04-23T00:00:00.000Z",
 "receipt_id": "tg_rcpt_example_001",
 "signature": "base64-signature"
}'

Use this endpoint for quick checks and CI smoke tests.

// OFFLINE VERIFICATION

Validate signatures locally

Discover public keys at https://trigguardai.com/.well-known/trigguard-keys.json.

  1. Fetch key material from https://trigguardai.com/.well-known/trigguard-keys.json.
  2. Canonicalize receipt payload bytes.
  3. Verify signature with the receipt kid.
  4. Confirm transparency log inclusion proof when required by policy.

// DOCUMENTATION MAP

Developer navigation

PROTOCOL · ARCHITECTURE · QUICKSTART · VERIFY_RECEIPT · GOVERNANCE · REQUEST_ACCESS