@atrib/verify-mcp 0.2.17 → 0.2.19

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/LICENSE +1 -1
  2. package/README.md +31 -1
  3. package/package.json +4 -4
package/LICENSE CHANGED
@@ -201,7 +201,7 @@
201
201
  See the License for the specific language governing permissions and
202
202
  limitations under the License.
203
203
 
204
- Copyright 2025-2026 Atrib contributors
204
+ Copyright 2025-2026 atrib contributors
205
205
 
206
206
  Licensed under the Apache License, Version 2.0 (the "License");
207
207
  you may not use this file except in compliance with the License.
package/README.md CHANGED
@@ -1,6 +1,6 @@
1
1
  # @atrib/verify-mcp
2
2
 
3
- MCP server exposing the `atrib-verify` cognitive primitive. It verifies counterparty handoff evidence before a receiving agent signs follow-up work that cites those records through `informed_by`.
3
+ MCP server exposing the `atrib-verify` cognitive primitive for atrib's verifiable action layer. It verifies counterparty handoff evidence before a receiving agent signs follow-up work that cites those records through `informed_by`.
4
4
 
5
5
  The package is read-only. It accepts caller-supplied evidence, returns accepted and rejected hashes, and leaves the follow-up signing step to `atrib-emit` or normal wrapped tool calls.
6
6
 
@@ -31,6 +31,32 @@ mcp__atrib-verify__atrib-verify({
31
31
  })
32
32
  ```
33
33
 
34
+ A worked call. Agent B received agent A's records (as a local-mirror envelope
35
+ or a continuation packet) and wants to cite them in its own follow-up work.
36
+ Verify them first, then link only the accepted hashes through `informed_by`:
37
+
38
+ ```ts
39
+ mcp__atrib-verify__atrib-verify({
40
+ packet: {
41
+ required_record_hashes: ['sha256:<64-hex-of-A-record>'],
42
+ records: [
43
+ {
44
+ record: {
45
+ /* a full signed AtribRecord produced by agent A */
46
+ },
47
+ proof: {
48
+ /* optional inclusion proof from the public log */
49
+ },
50
+ },
51
+ ],
52
+ trusted_creator_keys: ['<agent-A-base64url-creator-key>'],
53
+ },
54
+ require_log_inclusion: true,
55
+ })
56
+ // The response's accepted hashes are the ones that passed every check.
57
+ // Cite only those in the follow-up record's informed_by.
58
+ ```
59
+
34
60
  ## Evidence
35
61
 
36
62
  `packet`, `records`, and `claims` accept the same evidence shapes as `@atrib/verify`:
@@ -129,3 +155,7 @@ Public package for cognitive primitive #7. It depends on `@atrib/verify` for ver
129
155
  ## License
130
156
 
131
157
  Apache-2.0.
158
+
159
+ ## Part of atrib
160
+
161
+ atrib is an open protocol for verifiable agent actions. Every action becomes a signed, chain-linked record that anyone can verify against a public Merkle log, with no operator to trust. This package is one entrypoint. See the [full package family](https://github.com/creatornader/atrib#packages) and the [protocol spec](https://github.com/creatornader/atrib/blob/main/atrib-spec.md).
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@atrib/verify-mcp",
3
- "version": "0.2.17",
4
- "description": "MCP server for atrib. Verifies counterparty handoff evidence before an agent links follow-up work through informed_by.",
3
+ "version": "0.2.19",
4
+ "description": "MCP server for atrib's verifiable action layer. Verifies handoff evidence before agents link follow-up work.",
5
5
  "author": "atrib <hello@atrib.dev>",
6
6
  "keywords": [
7
7
  "atrib",
@@ -25,8 +25,8 @@
25
25
  "dependencies": {
26
26
  "@modelcontextprotocol/sdk": "^1.29.0",
27
27
  "zod": "^4.4.3",
28
- "@atrib/mcp": "0.18.1",
29
- "@atrib/verify": "0.7.10"
28
+ "@atrib/mcp": "0.19.1",
29
+ "@atrib/verify": "0.8.1"
30
30
  },
31
31
  "devDependencies": {
32
32
  "@noble/ed25519": "^3.1.0",