Witness your AI. Prove it followed the rules. Cryptographic accountability for every inference, tool call, and resource access.
swt3-ai
SWT3 AI Witness SDK for Ruby (coming soon): tamper-proof evidence that your AI is doing what you say it does. Every inference hashed. Every tool call recorded. Every resource access checked against scope. No prompts or responses ever leave your infrastructure.
The EU AI Act takes effect August 2, 2026. When regulators ask "prove your AI followed the rules," you need more than logs. You need cryptographic proof.
Status
This package reserves the swt3-ai namespace on RubyGems. The full Ruby SDK is under development.
Production SDKs are available today for Python and TypeScript:
# Python
pip install swt3-ai
python -m swt3_ai.demo
# TypeScript
npm install @tenova/swt3-ai
npx swt3-demo
Both run the full pipeline locally with no API keys: hash, extract, clear, anchor, verify.
What SWT3 Does
When your AI makes a call, the SDK:
- Hashes the prompt and response locally using SHA-256 (raw text never leaves your machine)
- Extracts numeric factors: model version, latency, token count, guardrail status
- Clears sensitive metadata based on your clearing level (you control what goes on the wire)
- Anchors the factors into a cryptographic fingerprint anyone can independently verify
- Returns your original response completely untouched
The result: an immutable record that your AI ran the right model, with the right guardrails, within the right boundaries. Without the auditor ever seeing the data.
Regulatory Coverage
The SWT3 AI Witnessing Profile maps to:
- EU AI Act: Articles 9, 10, 12, 13, 14, 53, 72
- NIST AI RMF: GOVERN, MAP, MEASURE, MANAGE functions
- ISO 42001: Annex A AI management controls
- NIST 800-53: SI-7 (integrity), AU-2/AU-3 (audit), AC controls
- SR 11-7: Model risk management (financial services)
Verify Any Anchor From Your Terminal
echo -n "WITNESS:DEMO_TENANT:AI-INF.1:1:1:0:1774800000000" | sha256sum | cut -c1-12
# Produces a 12-character fingerprint. Compare it to the anchor. If it matches, the anchor is real.
No SDK needed. Works on any machine, any language.
Cross-Language Parity
All SWT3 SDKs produce identical fingerprints from the same inputs. A unified audit trail across your entire stack, verified by shared test vectors at build time.
| Layer | Language | Package |
|---|---|---|
| Backend services | Python | swt3-ai |
| API routes / Edge | TypeScript | @tenova/swt3-ai |
| Protocol reference | TypeScript | @tenova/libswt3 |
| Web apps (Rails) | Ruby | swt3-ai (this package, coming soon) |
Links
- Website: tenova.io
- Protocol Spec: SWT3-SPEC-v1.0
- Live Demo: sovereign.tenova.io/audit/axm_audit_demo_eu_ai_act_public
Privacy
Your prompts and responses never leave your infrastructure. The SDK computes SHA-256 hashes locally and transmits only irreversible hashes and numeric factors. At Clearing Level 3, even the model name is hashed. The witness endpoint is a blind registrar: it stores cryptographic proofs, not your data.
SWT3: Sovereign Witness Traceability. We don't run your models. We witness them.
SWT3 and Sovereign Witness Traceability are trademarks of Tenable Nova LLC. Patent pending. Apache 2.0 licensed.