PatentChecker
Security posture (one page)
PatentChecker is designed for audit-grade workflows: deterministic artifacts, explicit provenance, and offline verification.
Summary
No secrets in evidence bundles
- • Outputs are designed to be shareable with counsel and auditors.
- • Bundles must not contain tokens, passwords, private keys, or raw credentials.
- • Verification is offline and does not require registry credentials.
Determinism + hashes are the integrity model
- • Artifacts are hash-addressed and validated against schemas.
- • Run verification checks hashes, schema validity, completeness, and corpus snapshot consistency.
- • If any artifact is modified, verification fails loudly.
Network access is explicit
- • Verification runs without network access.
- • Execution network access depends on the adapter mode (e.g., fetching from a corpus or using precomputed local inputs).
- • Self-hosting allows running entirely inside your environment.
Supply chain is publicly verifiable
- • Runner images are signed (keyless GitHub Actions OIDC) and ship with SBOM + provenance attestations.
- • Per-release bundles enable air-gapped review (receipt + signature bundle + attestations).
Need a formal review packet? Contact us →