Every inference request is recorded in a local JSONL ledger with a
SHA-256 hash of (id + tokens + duration + cost + shared_secret).
Both sides keep independent copies:
- Gateway (Matt's): writes to ledger.jsonl on every request
- Receiver (Seth's): receives callbacks, saves per-gateway ledger
Endpoints:
- GET /ledger — view transactions + total cost
- GET /reconcile — compare ledger vs stats, verify all hashes
- POST /config — adjust cost params live
ledger_receiver.py runs on Seth's server:
- POST /transaction — receive and verify gateway callbacks
- GET /summary — total cost per gateway
- GET /ledger — all transactions across gateways
If either side resets stats, the other's ledger has the full history.
If either side tampers with entries, hash verification catches it.
Tested: request → ledger write → reconcile → hash valid → zero discrepancy
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
