Data Export & the Audit Trail

AIPM keeps a tamper-evident record of everything and lets you export it.

Exporting data

Records can be exported as either CSV or JSON. The export routes require you to be signed in — they are gated to an authenticated human session, so no one can pull data anonymously.

To export a whole kind of record, use /export/entity/<kind>. To export a single record, use /export/<id>.

The audit trail

Every create, update, approve, and reject is written to an append-only, tamper-evident audit trail — a SHA-256 hash chain — tied to your signed-in identity.

Each entry records the decision source (web, email, REST, MCP, or CLI), the deciding identity, a snapshot of the wording presented at decision time, and the note or rationale.

Browsing and searching it

You can browse the trail at /browse/audit, which is paginated at 25 rows per page. You can search it at /audit/search by entity, actor, or date.

Why it’s trustworthy

The audit chain is append-only and can be exported and re-verified offline. Sign-off snapshots and baselines are write-once — the system refuses to update or delete them — so the record of what was approved cannot be quietly altered.

See also