Data Export & the Audit Trail
AIPM keeps a tamper-evident record of everything and lets you export it.
Exporting data
Records can be exported as either CSV or JSON. The export routes require you to be signed in — they are gated to an authenticated human session, so no one can pull data anonymously.
To export a whole kind of record, use /export/entity/<kind>. To export a single record, use /export/<id>.
The audit trail
Every create, update, approve, and reject is written to an append-only, tamper-evident audit trail — a SHA-256 hash chain — tied to your signed-in identity.
Each entry records the decision source (web, email, REST, MCP, or CLI), the deciding identity, a snapshot of the wording presented at decision time, and the note or rationale.
Browsing and searching it
You can browse the trail at /browse/audit, which is paginated at 25 rows per page. You can search it at /audit/search by entity, actor, or date.
Why it’s trustworthy
The audit chain is append-only and can be exported and re-verified offline. Sign-off snapshots and baselines are write-once — the system refuses to update or delete them — so the record of what was approved cannot be quietly altered.