Verify guide

Verification model#

A report is only trustworthy when content hash, signatures, and transparency state align. Qtangl exposes this through the public verifier UI and API endpoints.

Online verification endpoints#

• Verify by id: GET /pqc/verify/{scan_id}
• Verify uploaded proof: POST /pqc/verify
• Fetch active trust anchors: GET /pqc/transparency/keys

User-facing verifier#

The /verify page is designed for auditors, customers, and procurement teams. It validates proof bundles without requiring tenant context.

Specification alignment#

Implementation details and expected claim structure are defined in verify-spec. Use the same ruleset in CI gates and partner attestations to keep checks deterministic across environments.