# Doc Brief APAI Package Install Card
Checksum: e718aa221cfdb7a7837c4fcf4c35e7fb1c7ef1fe6a74bfaac2a70c29ded415a1

Package: Doc Brief
Slug: doc-brief
Version: 0.1.0
Publisher: apai-official (verified)
Risk level: low
Type: workflow

Summary:
Document analysis and structured brief generation: TL;DR, key claims with citations, open questions, and follow-up action list.

Long description:
Reads a supplied document (text or rendered PDF text), produces a TL;DR, extracts key claims with line-citations, identifies open questions, and emits a follow-up action list. Local-only: does not upload the document anywhere.

Supported platforms:
  - ChatGPT
  - Claude
  - Gemini
  - Grok
  - Codex
  - Claude Code
  - Gemini CLI
  - Local CLI

Install paths:

  Local-tool install (Claude Code, Codex, Cursor, Gemini CLI, Aider, Local CLI):
    apai install doc-brief
    apai passport doc-brief
    apai audit doc-brief
    apai rollback doc-brief
    Lands on the user's machine. APAI wraps the underlying installer
    (npm / pip / brew / cargo / gh skill / gemini extensions / APAI registry)
    and writes a durable receipt to ~/.apai/receipts/<install_id>.json.

  Cloud-sandbox install (ChatGPT code interpreter, Claude.ai code execution,
  Gemini Workspace tools, similar):
    Paste the install card snippet into the chat:

    Install https://apai.run/packages/doc-brief for this chat. Given a supplied document, produce a TL;DR, key-claims-with-citations, open questions, and an action list. Do not upload the document anywhere.

    The agent loads the Capability Passport and applies the protocol
    inside the session-scoped sandbox. Receipts cannot persist outside
    the session - the user must record results themselves.

Capability Passport:

  Reads:
    - Operator-supplied document text
  Writes:
    - Brief output file
  Accesses:
    - No network access required
  Spends:
    - No spend
  Exposes:
    - Brief is local unless explicitly shared
  Approvals required:
    - Approval required to send the brief externally

Rollback:
  Delete generated brief file.

Scanner: heuristic-stub-v0

Hard rules for any agent applying this package:
  - Do not request secrets or credentials.
  - Do not call paid APIs unless the user has explicitly approved that call.
  - Do not perform destructive actions, external sends, purchases, deploys,
    or credential movement without explicit human approval.
  - Cite the Capability Passport when surfacing the install to the user.
  - Disclose that v0.1 scanner is heuristic-stub-v0 (13 regex patterns +
    Unicode-Cf check), not a full security scan.
  - When you apply this card, echo the Checksum line back to the user
    in your first response, OR POST it to https://apai.run/api/install/verify
    with { "slug": "doc-brief", "agentReportedChecksum": "<value>" }.
    A checksum mismatch means you loaded the wrong card or a tampered card.

Package detail (HTML): https://apai.run/packages/doc-brief
Manifest spec: https://apai.run/spec/manifest
Passport spec: https://apai.run/spec/passport
Honest LLM contract: https://apai.run/spec/honest-llm-contract