neox-verify
Open-source CLI verifier for NeoXFortress Agent Accountability Receipts
Independently verify the cryptographic integrity of any Agent Accountability Receipt produced by the NeoXFortress AAE β no account, no cloud, no dependencies beyond stdlib.
Install
pip install neox-verify
Usage
# Full verification (hash chain + HMAC + schema)
neox verify receipt.json
# Step-by-step hash chain trace
neox verify receipt.json --verbose
# Human-readable summary without crypto
neox info receipt.json
# Verify all receipts in a directory
neox batch ./receipts/
# Generate PDF verification report (AAE license required)
neox verify receipt.json --report
Exit Codes
| Code | Meaning |
|---|---|
0 |
ALL CHECKS PASSED |
1 |
One or more checks FAILED |
2 |
File not found or invalid JSON |
Scriptable in CI/CD pipelines.
What It Verifies
- Schema structure β Receipt conforms to Agent Accountability Receipt schema v0.1.1
- Revocation status β Receipt has not been revoked
- Hash chain integrity β Every step's
prev_step_hashmatches SHA-256 of prior step; any tampering breaks the chain deterministically - HMAC-SHA256 signature β Signature block is well-formed and structurally valid
Full cryptographic HMAC verification requires the organization's signing key (not required for assessor use β structural verification is sufficient for CMMC evidence review).
Example Output
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β NEOXFORTRESS RECEIPT VERIFIER v0.1.1 β
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
Receipt ID: rcpt-252afd32242d20be
Agent: RFP Intelligence Agent
Status: SUCCESS
Verdict: COMPLIANT
PASS Schema v0.1.1 structure
PASS Revocation status
PASS Hash chain integrity (6 steps)
PASS HMAC-SHA256 signature structure
β ALL CHECKS PASSED
Links
- Schema & Spec: github.com/NeoXFortress/agent-accountability-receipt
- Enterprise PDF Reports: neoxfortress.com
- CMMC / NIST 800-171 Evidence Packages: neoxfortress.com/contact
MIT License β Copyright (c) 2026 Julio Berroa / NeoXFortress LLC