PVAIO is an open protocol, not a product feature. Everything you need to implement, verify, or integrate is linked below.
/protocol→The formal PVAIO v1.0 spec. Data model, Merkle construction, signing canonicalization, policy modes, verification procedure. Read this first.
/docs/api→Developer API reference: POST /api/pvaio/verify, well-known endpoints, rate limits, error codes. Includes a copy-pasteable curl example.
/.well-known/pvaio-keys.json→The deployment's active Ed25519 public keys. Fetch once, pin the fingerprint, verify forever.
/.well-known/pvaio-hrjson.schema.json→JSON Schema for HR-JSON 4 + PVAIO envelope. Drop into your ATS's validator to reject malformed bundles before touching the verifier.
GitHub: pkmdev-sec/resumescanpro↗Source for the reference issuer and verifier. Open-access reading; issues and PRs welcome.
npm install -g pvaio-verify↗Dependency-free Node CLI. Verify any PVAIO bundle offline with just the issuer's public key.
PVAIO is a public good. If you're building a verifier, an ATS integration, or just a curious engineer — the protocol is yours to run.