SpanForge / SDK Service / Govern phase
sf_audit
Tamper-evident HMAC-SHA256 audit chains with WORM-backed storage, 7-year retention, tombstone erasure, and GDPR Article 30 RoPA generation.
from spanforge import sf_auditWhat it covers
- HMAC-SHA256 immutable event chain
- WORM storage on S3 / GCS / Azure Blob
- SQLite local index for fast replay
- 7-year retention with tombstone erasure
- verify_chain() for portable audit proofs
- GDPR Article 30 RoPA and BYOS cloud routing
Get started
Install once. Import per service.
All SDK services ship inside a single package. Install spanforge once and import only what you need.
Install
pip install spanforgeImport
from spanforge import sf_audit