Tax Solution Pack

The governed Tax AI that proves every number.

A signed, versioned Solution Pack for US individual tax (Form 1040): a four-agent pipeline — intake → deduction-finder → return-reviewer → compliance-check — grounded to source forms, sealed in the Trust Ledger, and backed by a published accuracy SLA. Import it into your tenant with its hash and signature checked at the door.

published SLA · 97% accuracy · 95% citation coverage · ≤30-min review · verifyPack(hashOk + signatureOk)

us-individual-tax · v2.4
US Individual Taxus-individual-taxCertified
ontologyTypes1
policies6
actions4
agents4
HMAC-SHA256 · 0x9f3a…c1signatureOk:true
packs ▸ canonicalize → sha256 contentHash → HMAC signature
What this pack governs

One signed artifact — the whole governed solution.

The Tax pack governs the end-to-end preparation, review, and compliance check of an individual US return. It bundles the tax ontology (taxpayer, return, source forms, deductions), the policies that force every figure to cite its source and route filing to a human, the Action Fabric actions that file or amend a return, and four curated agents — so the whole solution deploys as one provable artifact, not a folder of prompts.

Published SLA

The promise the pack is sold on.

These are the targets the pack is measured against before it is certified — earned on the gold eval suite, not asserted.

97%
Accuracy
Measured against the us-tax-gold eval suite before publish.
95%
Citation coverage
Every figure traces to its source form via datapoint provenance.
≤ 30 min
Review turnaround
Reviewer time from drafted return to compliance-checked.
What's inside

Four governed sections, one signed bundle.

A pack is a contents bundle plus its integrity envelope. The bundle carries the definitions; the envelope — canonicalize → sha256 contentHash → HMAC signature — is what makes it portable and provable.

ontologyTypes×1
  • Tax Return — taxYear, agi, taxableIncome, refund (restricted)
  • Linked: taxpayer (ssn PII), W-2 (wages restricted), deductions
  • Each figure carries a sourceForm citation anchor
  • allowedActions: draft · review · file · amend · export
policies×6
  • Every figure must cite a source form — uncited values blocked
  • ssn is a restricted property — read denied outside intake
  • Filing requires human approval (destructive action)
  • Block submission on any unresolved math error or inconsistency
actions×4
  • draftReturn — riskTier: medium, reviewed before file
  • fileReturn — riskTier: high, approval-gated (Action Fabric)
  • amendReturn — riskTier: high, approval-gated
  • exportEvidence — one-click compliance evidence pack
agents×4
  • Tax Intake Agent — structures docs, cites every figure
  • Deduction Finder — cites the IRS form/line for each claim
  • Return Reviewer — math + audit-risk findings with severity
  • Compliance Check — validates filing rules, gates submission
What it does

Governed agents, mapped to real Cortex controls.

Every capability in this pack is enforced by a runtime control you can audit — identity, policy, action approvals, and a sealed Trust Ledger. The pack configures them; the platform enforces them.

Grounded to the source form
  • Every number the pipeline surfaces clicks through to its source form, page, and box via datapoint provenance — value_hash, asReported flag, and confidence. No paraphrased figures, no unsourced deductions.
Four agents, one supervised pipeline
  • intake → deduction-finder → return-reviewer → compliance-check run as governed agents with their own identities, allowlisted models, and skill codes — each step recorded and replayable.
Filing is human-approved
  • fileReturn and amendReturn are high-risk Action Fabric actions: the agent proposes, a human approves, and only then does anything submit. Submission is blocked on any unresolved error.
Gated on a gold eval suite
  • The us-tax-gold suite (standard-deduction, child-tax-credit eligibility, refund math) measures accuracy before the pack is certified — the SLA is earned against fixtures, not asserted.
Restricted fields stay locked
  • ssn, agi, taxableIncome, and refund are restricted properties: read-denied outside the agents that need them, so PII never leaks into a prompt that shouldn't see it.
Auditor-grade evidence on tap
  • Every return decision is sealed in the hash-chained Trust Ledger with a signed receipt — exportEvidence packages the lineage and citations a regulator can verify offline.
97%Published accuracy SLA (gold eval suite)
95%Citation coverage — every figure cites its form
30-minPublished review turnaround target
4Governed agents in the pipeline
Install & verify

See what changes, verify the signature, then apply — to your tenant only.

Importing a pack is a verify-first, two-step flow. importPreview gives you a per-section diff against your live definitions; importApply re-checks the hash and signature, then idempotently upserts. Tamper with the contents and verifyPack returns hashOk:false — and any apply returns a 409 with no partial write.

  • canonicalize → sha256 contentHash → HMAC signature — deterministic bytes, re-checkable offline
  • verifyPack checks hashOk and signatureOk before a single row is written
  • importPreview diff: added / changed / unchanged per section
  • Tampered contents → hashOk:false importApply 409, always your own tenant
packs · verify + import
Intact pack{ hashOk:true, signatureOk:true }valid:true
Import previewdiff: +1 ontologyType · ~2 policies · +3 actionsready to apply
Tampered contentscontents mutated after sealhashOk:false
Apply blockedimportApply verifies first — no partial write409 blocked
importApply verifies first ▸ 409 if invalid · upserts into your tenant only
From registry to running

How this pack gets into your tenant.

Cross-tenant distribution works because the HMAC signature is over the content hash with the deployment's signing secret — a pack published by one tenant verifies and installs cleanly for another, and install always targets the caller's own tenant.

  1. 01

    Browse & preview

    Find the signed pack in the registry on a stable or beta channel. importPreview shows verifyPack plus a per-section diff against your live ontology, policies, and actions — nothing is written yet.

  2. 02

    Verify the signature

    importApply re-checks hashOk and signatureOk first. A tampered bundle or a wrong secret fails closed with a 409 — there is no partial application, ever.

  3. 03

    Apply & operate

    On a valid pack, ontology types, policies, and actions idempotently upsert into your own tenant. Agents are captured for reference; the registry/licensing flow owns agent creation. Then operate the fleet from the Control Tower.

Governance included

The pack ships the controls your auditors already cite.

The ontology permissions, fail-closed policies, approval gates, and sealed Trust Ledger map directly to the frameworks this use-case reports against. Aligned with — never claiming a certification you don't hold.

IRS Circular 230 · practiceEU AI Act · high-risk · bias monitoringSOC 2 · auditISO 42001 · AI recordsNIST AI RMF · Measure

Deploy the governed Tax AI — with its SLA and its proof.

Import the signed Tax pack into your own tenant, verify it by hash and signature, and hand an examiner a record instead of a story.