# ZLAR Scratch Proof Pack v0

This public bundle is a fake/scratch proof-pack example for zlar.ai. It is designed to show the shape of verification without exposing operator data, raw MCP arguments, private paths, approval-channel identifiers, credentials, prompt text, or final client text.

Claim ceiling:

ZLAR can govern Codex CLI-invoked MCP tool calls when those MCP servers are routed through ZLAR.

Included evidence:

- `proof-pack-manifest.json`
- `evidence/governed-profile-coverage-report.json`
- `evidence/governed-profile-coverage-report.txt`
- `verify-proof-pack.mjs`
- `SHA256SUMS`

What the scratch verifier checks:

- The bundle is a `zlar-proof-pack-v0` manifest.
- The claim ceiling matches the v3.3.15 safe Codex wording.
- Coverage report type is `governed-profile-coverage-v0`.
- Required non-claims are present.
- Privacy flags remain false.
- Manifest hashes match the included coverage report files.
- The text contains no private paths, credentials, raw argument keys, or broad Codex governance claim.

What this does not prove:

- It does not prove production deployment coverage.
- It does not verify a live private receipt.
- It does not prove external attestation.
- It does not implement `/contest`.
- It does not claim governance for unrouted shell/filesystem/browser/app/network/model-reasoning/final-text surfaces.