Skip to content
monsys.ai

Transparency log

A transparency log is a public append-only register of every hub-key rotation + every EAT issued + every audit-pack signature. Inspired by Sigstore Rekor.

Why

If the hub is compromised, an attacker with DB access can sign a rogue EAT with the existing key. With a transparency log, the attacker must also get the public append through — defense in depth.

Defense and government clients with clearance ask for this explicitly.

Public endpoints (no auth)

GET /api/v1/transparency/log[?after=N&limit=100]
GET /api/v1/transparency/log/:id
GET /api/v1/transparency/keys

CLI verification

Terminal window
curl -fsSL https://get.monsys.ai/monsys-verify-eat-linux-x64 -o monsys-verify-eat
chmod +x monsys-verify-eat
./monsys-verify-eat --log https://api.monsys.ai --pubkey <hex> eat.json