@certrev/cert-block 0.1.0

package/dist/components/format.js

@@ -0,0 +1,42 @@
+/**
+ * Presentation helpers shared by the React components + Web Component. Pure, no DOM,
+ * no React — so the same formatting drives JSX and the hand-built Web Component string.
+ */
+/** Default accent if the brand didn't pin one (CertREV teal). */
+export const DEFAULT_ACCENT = '#0f766e';
+/** Resolve the optional display config to concrete presentation flags + accent. */
+export function resolveDisplay(display, accentOverride) {
+    return {
+        accentColor: accentOverride ?? display?.accentColor ?? DEFAULT_ACCENT,
+        showExpertPhoto: display?.showExpertPhoto ?? true,
+        showAuthor: display?.showAuthor ?? true,
+        showMemo: display?.showMemo ?? true,
+        badgeStyle: display?.badgeStyle ?? 'full',
+    };
+}
+/**
+ * Format an ISO-8601 instant to a stable, locale-independent date label ("Jun 21, 2026").
+ * We deliberately DON'T use `toLocaleDateString` — its output varies by runtime ICU data,
+ * which would make SSR output non-deterministic + cause hydration mismatches. Fixed
+ * English month abbreviations keep server + client byte-identical.
+ */
+const MONTHS = ['Jan', 'Feb', 'Mar', 'Apr', 'May', 'Jun', 'Jul', 'Aug', 'Sep', 'Oct', 'Nov', 'Dec'];
+export function formatDate(iso) {
+    if (!iso)
+        return null;
+    const ms = Date.parse(iso);
+    if (Number.isNaN(ms))
+        return null;
+    const d = new Date(ms);
+    return `${MONTHS[d.getUTCMonth()]} ${d.getUTCDate()}, ${d.getUTCFullYear()}`;
+}
+/** "PhD, RD" — the expert's credential abbreviations, comma-joined. */
+export function credentialSuffix(content) {
+    return content.expert.credentials.map((c) => c.abbreviation).join(', ');
+}
+/** "Dr. Jane Doe, PhD, RD" — display name with credential suffix appended. */
+export function expertNameWithCredentials(content) {
+    const suffix = credentialSuffix(content);
+    return suffix ? `${content.expert.displayName}, ${suffix}` : content.expert.displayName;
+}
+//# sourceMappingURL=format.js.map

package/dist/components/format.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"format.js","sourceRoot":"","sources":["../../src/components/format.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,iEAAiE;AACjE,MAAM,CAAC,MAAM,cAAc,GAAG,SAAS,CAAA;AAUvC,mFAAmF;AACnF,MAAM,UAAU,cAAc,CAAC,OAAsC,EAAE,cAAuB;IAC7F,OAAO;QACN,WAAW,EAAE,cAAc,IAAI,OAAO,EAAE,WAAW,IAAI,cAAc;QACrE,eAAe,EAAE,OAAO,EAAE,eAAe,IAAI,IAAI;QACjD,UAAU,EAAE,OAAO,EAAE,UAAU,IAAI,IAAI;QACvC,QAAQ,EAAE,OAAO,EAAE,QAAQ,IAAI,IAAI;QACnC,UAAU,EAAE,OAAO,EAAE,UAAU,IAAI,MAAM;KACzC,CAAA;AACF,CAAC;AAED;;;;;GAKG;AACH,MAAM,MAAM,GAAG,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAA;AAEnG,MAAM,UAAU,UAAU,CAAC,GAA8B;IACxD,IAAI,CAAC,GAAG;QAAE,OAAO,IAAI,CAAA;IACrB,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAC1B,IAAI,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;QAAE,OAAO,IAAI,CAAA;IACjC,MAAM,CAAC,GAAG,IAAI,IAAI,CAAC,EAAE,CAAC,CAAA;IACtB,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC,cAAc,EAAE,EAAE,CAAA;AAC7E,CAAC;AAED,uEAAuE;AACvE,MAAM,UAAU,gBAAgB,CAAC,OAAoB;IACpD,OAAO,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACxE,CAAC;AAED,8EAA8E;AAC9E,MAAM,UAAU,yBAAyB,CAAC,OAAoB;IAC7D,MAAM,MAAM,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAA;IACxC,OAAO,MAAM,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,WAAW,KAAK,MAAM,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAA;AACxF,CAAC"}

package/dist/contract/fixtures.d.ts

@@ -0,0 +1,36 @@
+/**
+ * Mock facts + a SIGNED envelope fixture for unit tests + local dev.
+ *
+ * `makeMockPayload` returns a complete, well-formed `CertPayload` (override any field).
+ * `makeSignedEnvelope` generates an ephemeral Ed25519 keypair, signs the payload's RFC-
+ * 8785 canonical bytes, and returns `{ envelope, resolveKid, publicKey }` so a test can
+ * run the FULL kernel pipeline (real signature verification) against the fixture — no
+ * mocking of the crypto.
+ *
+ * These helpers depend on Node's `crypto` (for keygen + signing on the ISSUER side, which
+ * tests stand in for). The SDK's RUNTIME never signs — it only verifies — so this stays
+ * test/dev-only and is not part of the public render API.
+ *
+ * The fixture signs over `canonicalPayloadBytes` from `@certrev/cert-contract` (RFC 8785),
+ * the SAME bytes the real kernel recomputes on verify — so a fixture envelope verifies
+ * end-to-end under the production `verifyEnvelope`, not a stand-in canonicalizer.
+ */
+import { type KeyObject } from 'node:crypto';
+import { type CertDeliveryEnvelope, type CertPayload, type ResolvePublicKeyByKid } from '@certrev/cert-contract';
+declare const FIXTURE_KID = "certrev-fixture-key-1";
+/** Build a complete mock payload. Pass overrides to exercise specific render branches. */
+export declare function makeMockPayload(overrides?: Partial<CertPayload>): CertPayload;
+export interface SignedEnvelopeFixture {
+    readonly envelope: CertDeliveryEnvelope;
+    readonly resolveKid: ResolvePublicKeyByKid;
+    readonly publicKey: KeyObject;
+    readonly kid: string;
+}
+/**
+ * Generate a fresh keypair, sign the payload, and return everything a test needs to run
+ * the kernel against a genuinely-valid envelope. The returned `resolveKid` resolves only
+ * the fixture kid (any other kid → null → 'unknown_key').
+ */
+export declare function makeSignedEnvelope(overrides?: Partial<CertPayload>, kid?: string): SignedEnvelopeFixture;
+export { FIXTURE_KID };
+//# sourceMappingURL=fixtures.d.ts.map

package/dist/contract/fixtures.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fixtures.d.ts","sourceRoot":"","sources":["../../src/contract/fixtures.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAuB,KAAK,SAAS,EAAoB,MAAM,aAAa,CAAA;AACnF,OAAO,EAEN,KAAK,oBAAoB,EACzB,KAAK,WAAW,EAEhB,KAAK,qBAAqB,EAC1B,MAAM,wBAAwB,CAAA;AAE/B,QAAA,MAAM,WAAW,0BAA0B,CAAA;AAE3C,0FAA0F;AAC1F,wBAAgB,eAAe,CAAC,SAAS,GAAE,OAAO,CAAC,WAAW,CAAM,GAAG,WAAW,CA4CjF;AAED,MAAM,WAAW,qBAAqB;IACrC,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,CAAA;IACvC,QAAQ,CAAC,UAAU,EAAE,qBAAqB,CAAA;IAC1C,QAAQ,CAAC,SAAS,EAAE,SAAS,CAAA;IAC7B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;CACpB;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,SAAS,GAAE,OAAO,CAAC,WAAW,CAAM,EAAE,GAAG,SAAc,GAAG,qBAAqB,CAgBjH;AAED,OAAO,EAAE,WAAW,EAAE,CAAA"}

package/dist/contract/fixtures.js

@@ -0,0 +1,87 @@
+/**
+ * Mock facts + a SIGNED envelope fixture for unit tests + local dev.
+ *
+ * `makeMockPayload` returns a complete, well-formed `CertPayload` (override any field).
+ * `makeSignedEnvelope` generates an ephemeral Ed25519 keypair, signs the payload's RFC-
+ * 8785 canonical bytes, and returns `{ envelope, resolveKid, publicKey }` so a test can
+ * run the FULL kernel pipeline (real signature verification) against the fixture — no
+ * mocking of the crypto.
+ *
+ * These helpers depend on Node's `crypto` (for keygen + signing on the ISSUER side, which
+ * tests stand in for). The SDK's RUNTIME never signs — it only verifies — so this stays
+ * test/dev-only and is not part of the public render API.
+ *
+ * The fixture signs over `canonicalPayloadBytes` from `@certrev/cert-contract` (RFC 8785),
+ * the SAME bytes the real kernel recomputes on verify — so a fixture envelope verifies
+ * end-to-end under the production `verifyEnvelope`, not a stand-in canonicalizer.
+ */
+import { generateKeyPairSync, sign as nodeSign } from 'node:crypto';
+import { canonicalPayloadBytes, } from '@certrev/cert-contract';
+const FIXTURE_KID = 'certrev-fixture-key-1';
+/** Build a complete mock payload. Pass overrides to exercise specific render branches. */
+export function makeMockPayload(overrides = {}) {
+    const base = {
+        contractVersion: 1,
+        certId: 'cert_fixture_001',
+        subject: {
+            platform: 'shopify',
+            externalId: 'gid://shopify/Article/123456789',
+            logicalArticleId: 'art_logical_abc',
+            canonicalUrls: ['https://brand.example.com/blogs/skincare/retinol-guide'],
+            installationId: 'inst_shopify_42',
+            contentDigest: 'a1b2c3d4e5f6a1b2c3d4e5f6a1b2c3d4e5f6a1b2c3d4e5f6a1b2c3d4e5f6a1b2',
+        },
+        content: {
+            expert: {
+                displayName: 'Dr. Jane Doe',
+                credentials: [
+                    { abbreviation: 'MD', fullName: 'Doctor of Medicine' },
+                    { abbreviation: 'FAAD', fullName: 'Fellow of the American Academy of Dermatology' },
+                ],
+                profileUrl: 'https://certrev.com/experts/jane-doe',
+                photoUrl: 'https://cdn.certrev.com/experts/jane-doe.jpg',
+            },
+            author: { name: 'Sam Writer', title: 'Senior Content Editor' },
+            memo: 'I reviewed the retinol claims against current dermatology guidance; the concentrations and usage cadence cited are accurate and safely framed.',
+            certifiedAt: '2026-06-21T15:30:00.000Z',
+            contentModifiedAt: '2026-06-20T09:00:00.000Z',
+            verifyUrl: 'https://certrev.com/verify/cert_fixture_001',
+            display: {
+                accentColor: '#7c3aed',
+                showExpertPhoto: true,
+                showAuthor: true,
+                showMemo: true,
+                badgeStyle: 'full',
+            },
+        },
+        lifecycle: {
+            issuedAt: '2026-06-21T15:30:00.000Z',
+            expiresAt: '2099-01-01T00:00:00.000Z',
+            revokedAt: null,
+            revision: 1,
+        },
+        ...overrides,
+    };
+    return base;
+}
+/**
+ * Generate a fresh keypair, sign the payload, and return everything a test needs to run
+ * the kernel against a genuinely-valid envelope. The returned `resolveKid` resolves only
+ * the fixture kid (any other kid → null → 'unknown_key').
+ */
+export function makeSignedEnvelope(overrides = {}, kid = FIXTURE_KID) {
+    const { publicKey, privateKey } = generateKeyPairSync('ed25519');
+    const payload = makeMockPayload(overrides);
+    const bytes = canonicalPayloadBytes(payload);
+    const sig = nodeSign(null, bytes, privateKey).toString('base64url');
+    const envelope = {
+        payload,
+        signature: { alg: 'ed25519', kid, sig, signedAt: payload.lifecycle.issuedAt },
+    };
+    const spkiBase64 = publicKey.export({ format: 'der', type: 'spki' }).toString('base64');
+    const keyInput = { format: 'spki-base64', base64: spkiBase64 };
+    const resolveKid = (k) => (k === kid ? keyInput : null);
+    return { envelope, resolveKid, publicKey, kid };
+}
+export { FIXTURE_KID };
+//# sourceMappingURL=fixtures.js.map

package/dist/contract/fixtures.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"fixtures.js","sourceRoot":"","sources":["../../src/contract/fixtures.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,mBAAmB,EAAkB,IAAI,IAAI,QAAQ,EAAE,MAAM,aAAa,CAAA;AACnF,OAAO,EACN,qBAAqB,GAKrB,MAAM,wBAAwB,CAAA;AAE/B,MAAM,WAAW,GAAG,uBAAuB,CAAA;AAE3C,0FAA0F;AAC1F,MAAM,UAAU,eAAe,CAAC,YAAkC,EAAE;IACnE,MAAM,IAAI,GAAgB;QACzB,eAAe,EAAE,CAAC;QAClB,MAAM,EAAE,kBAAkB;QAC1B,OAAO,EAAE;YACR,QAAQ,EAAE,SAAS;YACnB,UAAU,EAAE,iCAAiC;YAC7C,gBAAgB,EAAE,iBAAiB;YACnC,aAAa,EAAE,CAAC,wDAAwD,CAAC;YACzE,cAAc,EAAE,iBAAiB;YACjC,aAAa,EAAE,kEAAkE;SACjF;QACD,OAAO,EAAE;YACR,MAAM,EAAE;gBACP,WAAW,EAAE,cAAc;gBAC3B,WAAW,EAAE;oBACZ,EAAE,YAAY,EAAE,IAAI,EAAE,QAAQ,EAAE,oBAAoB,EAAE;oBACtD,EAAE,YAAY,EAAE,MAAM,EAAE,QAAQ,EAAE,+CAA+C,EAAE;iBACnF;gBACD,UAAU,EAAE,sCAAsC;gBAClD,QAAQ,EAAE,8CAA8C;aACxD;YACD,MAAM,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,uBAAuB,EAAE;YAC9D,IAAI,EAAE,gJAAgJ;YACtJ,WAAW,EAAE,0BAA0B;YACvC,iBAAiB,EAAE,0BAA0B;YAC7C,SAAS,EAAE,6CAA6C;YACxD,OAAO,EAAE;gBACR,WAAW,EAAE,SAAS;gBACtB,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,QAAQ,EAAE,IAAI;gBACd,UAAU,EAAE,MAAM;aAClB;SACD;QACD,SAAS,EAAE;YACV,QAAQ,EAAE,0BAA0B;YACpC,SAAS,EAAE,0BAA0B;YACrC,SAAS,EAAE,IAAI;YACf,QAAQ,EAAE,CAAC;SACX;QACD,GAAG,SAAS;KACZ,CAAA;IACD,OAAO,IAAI,CAAA;AACZ,CAAC;AASD;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAAC,YAAkC,EAAE,EAAE,GAAG,GAAG,WAAW;IACzF,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,mBAAmB,CAAC,SAAS,CAAC,CAAA;IAChE,MAAM,OAAO,GAAG,eAAe,CAAC,SAAS,CAAC,CAAA;IAC1C,MAAM,KAAK,GAAG,qBAAqB,CAAC,OAAO,CAAC,CAAA;IAC5C,MAAM,GAAG,GAAG,QAAQ,CAAC,IAAI,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAA;IAEnE,MAAM,QAAQ,GAAyB;QACtC,OAAO;QACP,SAAS,EAAE,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,EAAE,QAAQ,EAAE,OAAO,CAAC,SAAS,CAAC,QAAQ,EAAE;KAC7E,CAAA;IAED,MAAM,UAAU,GAAG,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;IACvF,MAAM,QAAQ,GAA0B,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,EAAE,UAAU,EAAE,CAAA;IACrF,MAAM,UAAU,GAA0B,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;IAE9E,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,SAAS,EAAE,GAAG,EAAE,CAAA;AAChD,CAAC;AAED,OAAO,EAAE,WAAW,EAAE,CAAA"}

package/dist/contract/kernel-contract.d.ts

@@ -0,0 +1,154 @@
+/**
+ * ─────────────────────────────────────────────────────────────────────────────
+ * @certrev/cert-contract — INTERFACE STUB (delete on publish; see INTEGRATION below)
+ * ─────────────────────────────────────────────────────────────────────────────
+ *
+ * The shared `CertDeliveryEnvelope` types + the fail-closed `VerdictKernel` live in
+ * the published `@certrev/cert-contract` package. That package is not yet on a registry
+ * this workspace can `pnpm install` from (it ships `file:`/workspace-only today), so
+ * `@certrev/cert-block` imports the contract surface from THIS local interface module
+ * instead. The types here are a byte-for-byte mirror of `cert-contract`'s `types.ts`
+ * (the settled, panel-revised shape: structured FACTS, no rendered JSON-LD in the
+ * payload; `subject` carries `logicalArticleId`, `canonicalUrls[]`, `installationId`,
+ * `contentDigest`).
+ *
+ * INTEGRATION (when @certrev/cert-contract publishes — see README "Integration TODOs"):
+ *   1. Delete this file and `./kernel-stub.ts`.
+ *   2. Replace every `from '../contract/kernel-contract.js'` with
+ *      `from '@certrev/cert-contract'`.
+ *   3. The exported names here are deliberately identical to cert-contract's exports
+ *      (`CertDeliveryEnvelope`, `CertPayload`, `CertVerdict`, `verifyEnvelope`,
+ *      `renderVerdict`, `verifySignatureOnly`, `ResolvePublicKeyByKid`, `RenderContext`,
+ *      `Ed25519PublicKeyInput`), so the swap is a find-and-replace of the import
+ *      specifier — no call-site churn.
+ *
+ * Because this is type-only for everything the SDK consumes at COMPILE time, swapping
+ * the import path is the only change; the runtime kernel comes from `./kernel-stub.ts`
+ * today and from `@certrev/cert-contract` after publish.
+ */
+/** Bump on ANY breaking change to the payload shape or signing rules. */
+export declare const CONTRACT_VERSION: 1;
+export type ContractVersion = typeof CONTRACT_VERSION;
+/** RFC 8785 JSON Canonicalization Scheme — the bytes that get signed/hashed. */
+export declare const CANONICALIZATION: "RFC8785-JCS";
+/** Ed25519 (PureEdDSA). */
+export declare const SIGNATURE_ALG: "ed25519";
+export type SignatureAlg = typeof SIGNATURE_ALG;
+export interface CertSubject {
+    readonly platform: string;
+    readonly externalId: string;
+    readonly logicalArticleId: string;
+    readonly canonicalUrls: ReadonlyArray<string>;
+    readonly installationId: string | null;
+    readonly contentDigest: string | null;
+}
+export interface CertDisplayConfig {
+    readonly accentColor?: string | null;
+    readonly showExpertPhoto?: boolean;
+    readonly showAuthor?: boolean;
+    readonly showMemo?: boolean;
+    readonly badgeStyle?: 'full' | 'compact';
+}
+export interface CertCredential {
+    readonly abbreviation: string;
+    readonly fullName: string;
+}
+export interface CertContent {
+    readonly expert: {
+        readonly displayName: string;
+        readonly credentials: ReadonlyArray<CertCredential>;
+        readonly profileUrl: string | null;
+        readonly photoUrl: string | null;
+    };
+    readonly author: {
+        readonly name: string;
+        readonly title: string | null;
+    };
+    readonly memo: string | null;
+    readonly certifiedAt: string;
+    readonly contentModifiedAt: string | null;
+    readonly verifyUrl: string;
+    readonly display: CertDisplayConfig;
+}
+export interface CertLifecycle {
+    readonly issuedAt: string;
+    readonly expiresAt: string;
+    readonly revokedAt: string | null;
+    readonly revision: number;
+}
+export interface CertPayload {
+    readonly contractVersion: ContractVersion;
+    readonly certId: string;
+    readonly subject: CertSubject;
+    readonly content: CertContent;
+    readonly lifecycle: CertLifecycle;
+}
+export interface CertSignature {
+    readonly alg: SignatureAlg;
+    readonly kid: string;
+    readonly sig: string;
+    readonly signedAt: string;
+}
+export interface CertDeliveryEnvelope {
+    readonly payload: CertPayload;
+    readonly signature: CertSignature;
+}
+export type CertVerdict = {
+    readonly decision: 'render';
+    readonly payload: CertPayload;
+} | {
+    readonly decision: 'suppress';
+    readonly reason: CertSuppressReason;
+};
+export type CertSuppressReason = 'unsupported_contract_version' | 'unsupported_alg' | 'unknown_key' | 'invalid_signature' | 'platform_mismatch' | 'subject_mismatch' | 'revoked' | 'expired' | 'content_drift';
+/** The Ed25519 public-key encodings a kid resolver may hand the kernel. */
+export type Ed25519PublicKeyInput = {
+    readonly format: 'spki-der';
+    readonly bytes: Uint8Array;
+} | {
+    readonly format: 'spki-base64';
+    readonly base64: string;
+} | {
+    readonly format: 'pem';
+    readonly pem: string;
+} | {
+    readonly format: 'raw';
+    readonly bytes: Uint8Array;
+};
+/**
+ * A kid → public-key resolver. Returns a usable Ed25519 key for the given kid, or
+ * null/undefined when the kid is unknown (→ suppress 'unknown_key'). May be async so
+ * an edge can fetch + cache a published key set. The real kernel also accepts a Node
+ * KeyObject; we model only the SDK-relevant inputs here.
+ */
+export type ResolvePublicKeyByKid = (kid: string) => Promise<Ed25519PublicKeyInput | null | undefined> | Ed25519PublicKeyInput | null | undefined;
+/** Edge-supplied context for the policy phase. */
+export interface RenderContext {
+    readonly platform: string;
+    readonly externalId: string;
+    readonly liveContentHash?: string | null;
+    readonly now?: Date;
+}
+/** Full kernel: verify signature, then apply subject/lifecycle/drift policy. */
+export type VerifyEnvelope = (envelope: CertDeliveryEnvelope, resolveKid: ResolvePublicKeyByKid, ctx: RenderContext) => Promise<CertVerdict>;
+/** Phase-2-only policy over an already-verified payload. */
+export type RenderVerdict = (payload: CertPayload, ctx: RenderContext) => CertVerdict;
+/** Phase-1-only cryptographic verification. */
+export type VerifySignatureOnly = (envelope: CertDeliveryEnvelope, resolveKid: ResolvePublicKeyByKid) => Promise<{
+    ok: true;
+} | {
+    ok: false;
+    reason: CertSuppressReason;
+}>;
+/**
+ * The kernel function set as a single named interface — what the SDK depends on at
+ * the value level. `@certrev/cert-contract` exposes these as free functions; the SDK
+ * binds them through `./kernel-stub` today and re-points to the real exports on
+ * publish.
+ */
+export interface VerdictKernel {
+    readonly verifyEnvelope: VerifyEnvelope;
+    readonly renderVerdict: RenderVerdict;
+    readonly verifySignatureOnly: VerifySignatureOnly;
+}
+//# sourceMappingURL=kernel-contract.d.ts.map

package/dist/contract/kernel-contract.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"kernel-contract.d.ts","sourceRoot":"","sources":["../../src/contract/kernel-contract.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH,yEAAyE;AACzE,eAAO,MAAM,gBAAgB,EAAG,CAAU,CAAA;AAC1C,MAAM,MAAM,eAAe,GAAG,OAAO,gBAAgB,CAAA;AAErD,gFAAgF;AAChF,eAAO,MAAM,gBAAgB,EAAG,aAAsB,CAAA;AAEtD,2BAA2B;AAC3B,eAAO,MAAM,aAAa,EAAG,SAAkB,CAAA;AAC/C,MAAM,MAAM,YAAY,GAAG,OAAO,aAAa,CAAA;AAG/C,MAAM,WAAW,WAAW;IAC3B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;IAC3B,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;IACjC,QAAQ,CAAC,aAAa,EAAE,aAAa,CAAC,MAAM,CAAC,CAAA;IAC7C,QAAQ,CAAC,cAAc,EAAE,MAAM,GAAG,IAAI,CAAA;IACtC,QAAQ,CAAC,aAAa,EAAE,MAAM,GAAG,IAAI,CAAA;CACrC;AAGD,MAAM,WAAW,iBAAiB;IACjC,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACpC,QAAQ,CAAC,eAAe,CAAC,EAAE,OAAO,CAAA;IAClC,QAAQ,CAAC,UAAU,CAAC,EAAE,OAAO,CAAA;IAC7B,QAAQ,CAAC,QAAQ,CAAC,EAAE,OAAO,CAAA;IAC3B,QAAQ,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;CACxC;AAGD,MAAM,WAAW,cAAc;IAC9B,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAA;IAC7B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;CACzB;AAED,MAAM,WAAW,WAAW;IAC3B,QAAQ,CAAC,MAAM,EAAE;QAChB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;QAC5B,QAAQ,CAAC,WAAW,EAAE,aAAa,CAAC,cAAc,CAAC,CAAA;QACnD,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;QAClC,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAA;KAChC,CAAA;IACD,QAAQ,CAAC,MAAM,EAAE;QAChB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;QACrB,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAAA;KAC7B,CAAA;IACD,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;IAC5B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,iBAAiB,EAAE,MAAM,GAAG,IAAI,CAAA;IACzC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,OAAO,EAAE,iBAAiB,CAAA;CACnC;AAGD,MAAM,WAAW,aAAa;IAC7B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAA;IACjC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;CACzB;AAGD,MAAM,WAAW,WAAW;IAC3B,QAAQ,CAAC,eAAe,EAAE,eAAe,CAAA;IACzC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,OAAO,EAAE,WAAW,CAAA;IAC7B,QAAQ,CAAC,OAAO,EAAE,WAAW,CAAA;IAC7B,QAAQ,CAAC,SAAS,EAAE,aAAa,CAAA;CACjC;AAGD,MAAM,WAAW,aAAa;IAC7B,QAAQ,CAAC,GAAG,EAAE,YAAY,CAAA;IAC1B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;CACzB;AAGD,MAAM,WAAW,oBAAoB;IACpC,QAAQ,CAAC,OAAO,EAAE,WAAW,CAAA;IAC7B,QAAQ,CAAC,SAAS,EAAE,aAAa,CAAA;CACjC;AAGD,MAAM,MAAM,WAAW,GACpB;IAAE,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC;IAAC,QAAQ,CAAC,OAAO,EAAE,WAAW,CAAA;CAAE,GAC9D;IAAE,QAAQ,CAAC,QAAQ,EAAE,UAAU,CAAC;IAAC,QAAQ,CAAC,MAAM,EAAE,kBAAkB,CAAA;CAAE,CAAA;AAEzE,MAAM,MAAM,kBAAkB,GAC3B,8BAA8B,GAC9B,iBAAiB,GACjB,aAAa,GACb,mBAAmB,GACnB,mBAAmB,GACnB,kBAAkB,GAClB,SAAS,GACT,SAAS,GACT,eAAe,CAAA;AAIlB,2EAA2E;AAC3E,MAAM,MAAM,qBAAqB,GAC9B;IAAE,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAC;IAAC,QAAQ,CAAC,KAAK,EAAE,UAAU,CAAA;CAAE,GAC3D;IAAE,QAAQ,CAAC,MAAM,EAAE,aAAa,CAAC;IAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;CAAE,GAC3D;IAAE,QAAQ,CAAC,MAAM,EAAE,KAAK,CAAC;IAAC,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;CAAE,GAChD;IAAE,QAAQ,CAAC,MAAM,EAAE,KAAK,CAAC;IAAC,QAAQ,CAAC,KAAK,EAAE,UAAU,CAAA;CAAE,CAAA;AAEzD;;;;;GAKG;AACH,MAAM,MAAM,qBAAqB,GAAG,CACnC,GAAG,EAAE,MAAM,KACP,OAAO,CAAC,qBAAqB,GAAG,IAAI,GAAG,SAAS,CAAC,GAAG,qBAAqB,GAAG,IAAI,GAAG,SAAS,CAAA;AAEjG,kDAAkD;AAClD,MAAM,WAAW,aAAa;IAC7B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;IAC3B,QAAQ,CAAC,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACxC,QAAQ,CAAC,GAAG,CAAC,EAAE,IAAI,CAAA;CACnB;AAED,gFAAgF;AAChF,MAAM,MAAM,cAAc,GAAG,CAC5B,QAAQ,EAAE,oBAAoB,EAC9B,UAAU,EAAE,qBAAqB,EACjC,GAAG,EAAE,aAAa,KACd,OAAO,CAAC,WAAW,CAAC,CAAA;AAEzB,4DAA4D;AAC5D,MAAM,MAAM,aAAa,GAAG,CAAC,OAAO,EAAE,WAAW,EAAE,GAAG,EAAE,aAAa,KAAK,WAAW,CAAA;AAErF,+CAA+C;AAC/C,MAAM,MAAM,mBAAmB,GAAG,CACjC,QAAQ,EAAE,oBAAoB,EAC9B,UAAU,EAAE,qBAAqB,KAC7B,OAAO,CAAC;IAAE,EAAE,EAAE,IAAI,CAAA;CAAE,GAAG;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,kBAAkB,CAAA;CAAE,CAAC,CAAA;AAEtE;;;;;GAKG;AACH,MAAM,WAAW,aAAa;IAC7B,QAAQ,CAAC,cAAc,EAAE,cAAc,CAAA;IACvC,QAAQ,CAAC,aAAa,EAAE,aAAa,CAAA;IACrC,QAAQ,CAAC,mBAAmB,EAAE,mBAAmB,CAAA;CACjD"}

package/dist/contract/kernel-contract.js

@@ -0,0 +1,35 @@
+/**
+ * ─────────────────────────────────────────────────────────────────────────────
+ * @certrev/cert-contract — INTERFACE STUB (delete on publish; see INTEGRATION below)
+ * ─────────────────────────────────────────────────────────────────────────────
+ *
+ * The shared `CertDeliveryEnvelope` types + the fail-closed `VerdictKernel` live in
+ * the published `@certrev/cert-contract` package. That package is not yet on a registry
+ * this workspace can `pnpm install` from (it ships `file:`/workspace-only today), so
+ * `@certrev/cert-block` imports the contract surface from THIS local interface module
+ * instead. The types here are a byte-for-byte mirror of `cert-contract`'s `types.ts`
+ * (the settled, panel-revised shape: structured FACTS, no rendered JSON-LD in the
+ * payload; `subject` carries `logicalArticleId`, `canonicalUrls[]`, `installationId`,
+ * `contentDigest`).
+ *
+ * INTEGRATION (when @certrev/cert-contract publishes — see README "Integration TODOs"):
+ *   1. Delete this file and `./kernel-stub.ts`.
+ *   2. Replace every `from '../contract/kernel-contract.js'` with
+ *      `from '@certrev/cert-contract'`.
+ *   3. The exported names here are deliberately identical to cert-contract's exports
+ *      (`CertDeliveryEnvelope`, `CertPayload`, `CertVerdict`, `verifyEnvelope`,
+ *      `renderVerdict`, `verifySignatureOnly`, `ResolvePublicKeyByKid`, `RenderContext`,
+ *      `Ed25519PublicKeyInput`), so the swap is a find-and-replace of the import
+ *      specifier — no call-site churn.
+ *
+ * Because this is type-only for everything the SDK consumes at COMPILE time, swapping
+ * the import path is the only change; the runtime kernel comes from `./kernel-stub.ts`
+ * today and from `@certrev/cert-contract` after publish.
+ */
+/** Bump on ANY breaking change to the payload shape or signing rules. */
+export const CONTRACT_VERSION = 1;
+/** RFC 8785 JSON Canonicalization Scheme — the bytes that get signed/hashed. */
+export const CANONICALIZATION = 'RFC8785-JCS';
+/** Ed25519 (PureEdDSA). */
+export const SIGNATURE_ALG = 'ed25519';
+//# sourceMappingURL=kernel-contract.js.map

package/dist/contract/kernel-contract.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"kernel-contract.js","sourceRoot":"","sources":["../../src/contract/kernel-contract.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH,yEAAyE;AACzE,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAU,CAAA;AAG1C,gFAAgF;AAChF,MAAM,CAAC,MAAM,gBAAgB,GAAG,aAAsB,CAAA;AAEtD,2BAA2B;AAC3B,MAAM,CAAC,MAAM,aAAa,GAAG,SAAkB,CAAA"}

package/dist/contract/kernel-stub.d.ts

@@ -0,0 +1,44 @@
+/**
+ * ─────────────────────────────────────────────────────────────────────────────
+ * VerdictKernel — LOCAL STUB (delete on publish; mirrors @certrev/cert-contract)
+ * ─────────────────────────────────────────────────────────────────────────────
+ *
+ * A faithful, self-contained implementation of the cert-contract VerdictKernel so the
+ * SDK's verify layer + tests run NOW, before `@certrev/cert-contract` publishes to a
+ * registry this workspace installs from. The behavior is identical to the real kernel:
+ *   • Ed25519 detached signature verified over the RFC-8785 (JCS) canonical bytes of
+ *     `payload` (lexicographic key order, minimal whitespace, UTF-8).
+ *   • Fail-closed pipeline: shape → alg → kid → signature → platform → subject →
+ *     revoked → expired → drift → render. Any failure short-circuits to `suppress`.
+ *   • Never throws on a bad envelope — a malformed input / throwing resolver fails
+ *     closed to `suppress`, not to an exception a caller might swallow into a render.
+ *
+ * The byte-identical canonicalization across PHP / Node is what makes the credential
+ * portable; here we hand-roll a deterministic JCS serializer (sufficient for the
+ * envelope's all-string/number/bool/array/object shape — no exotic numbers) so the SDK
+ * carries no production crypto-canonicalization of its own that could DRIFT from the
+ * contract. On publish, the real `canonicalize` (RFC 8785) from cert-contract is used.
+ *
+ * INTEGRATION: delete this file + `./kernel-contract.ts`; import `verifyEnvelope`,
+ * `renderVerdict`, `verifySignatureOnly`, `toEd25519PublicKey` from
+ * `@certrev/cert-contract`. See README "Integration TODOs".
+ */
+import { type KeyObject } from 'node:crypto';
+import type { CertDeliveryEnvelope, CertPayload, CertSuppressReason, CertVerdict, Ed25519PublicKeyInput, RenderContext, ResolvePublicKeyByKid } from './kernel-contract.js';
+/** Mirror of cert-contract's `toEd25519PublicKey` for the input encodings the SDK uses. */
+declare function toEd25519PublicKey(input: Ed25519PublicKeyInput): KeyObject;
+type CryptoResult = {
+    ok: true;
+} | {
+    ok: false;
+    reason: CertSuppressReason;
+};
+/** Phase-2-only policy verdict over an already-authentic payload. Pure + synchronous. */
+export declare function renderVerdict(payload: CertPayload, ctx: RenderContext): CertVerdict;
+/** Phase-1-only cryptographic verification. */
+export declare function verifySignatureOnly(envelope: CertDeliveryEnvelope, resolveKid: ResolvePublicKeyByKid): Promise<CryptoResult>;
+/** Full kernel: verify signature, then apply policy. Fail-closed, never throws. */
+export declare function verifyEnvelope(envelope: CertDeliveryEnvelope, resolveKid: ResolvePublicKeyByKid, ctx: RenderContext): Promise<CertVerdict>;
+/** Re-export for tests that need to build a public key from raw/spki bytes. */
+export { toEd25519PublicKey };
+//# sourceMappingURL=kernel-stub.d.ts.map

package/dist/contract/kernel-stub.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"kernel-stub.d.ts","sourceRoot":"","sources":["../../src/contract/kernel-stub.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,EAAmB,KAAK,SAAS,EAAwB,MAAM,aAAa,CAAA;AACnF,OAAO,KAAK,EACX,oBAAoB,EACpB,WAAW,EACX,kBAAkB,EAClB,WAAW,EACX,qBAAqB,EACrB,aAAa,EACb,qBAAqB,EACrB,MAAM,sBAAsB,CAAA;AA4C7B,2FAA2F;AAC3F,iBAAS,kBAAkB,CAAC,KAAK,EAAE,qBAAqB,GAAG,SAAS,CAkBnE;AAUD,KAAK,YAAY,GAAG;IAAE,EAAE,EAAE,IAAI,CAAA;CAAE,GAAG;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,kBAAkB,CAAA;CAAE,CAAA;AA6B5E,yFAAyF;AACzF,wBAAgB,aAAa,CAAC,OAAO,EAAE,WAAW,EAAE,GAAG,EAAE,aAAa,GAAG,WAAW,CAoBnF;AAED,+CAA+C;AAC/C,wBAAsB,mBAAmB,CACxC,QAAQ,EAAE,oBAAoB,EAC9B,UAAU,EAAE,qBAAqB,GAC/B,OAAO,CAAC,YAAY,CAAC,CAEvB;AAED,mFAAmF;AACnF,wBAAsB,cAAc,CACnC,QAAQ,EAAE,oBAAoB,EAC9B,UAAU,EAAE,qBAAqB,EACjC,GAAG,EAAE,aAAa,GAChB,OAAO,CAAC,WAAW,CAAC,CAWtB;AAED,+EAA+E;AAC/E,OAAO,EAAE,kBAAkB,EAAE,CAAA"}

package/dist/contract/kernel-stub.js

@@ -0,0 +1,163 @@
+/**
+ * ─────────────────────────────────────────────────────────────────────────────
+ * VerdictKernel — LOCAL STUB (delete on publish; mirrors @certrev/cert-contract)
+ * ─────────────────────────────────────────────────────────────────────────────
+ *
+ * A faithful, self-contained implementation of the cert-contract VerdictKernel so the
+ * SDK's verify layer + tests run NOW, before `@certrev/cert-contract` publishes to a
+ * registry this workspace installs from. The behavior is identical to the real kernel:
+ *   • Ed25519 detached signature verified over the RFC-8785 (JCS) canonical bytes of
+ *     `payload` (lexicographic key order, minimal whitespace, UTF-8).
+ *   • Fail-closed pipeline: shape → alg → kid → signature → platform → subject →
+ *     revoked → expired → drift → render. Any failure short-circuits to `suppress`.
+ *   • Never throws on a bad envelope — a malformed input / throwing resolver fails
+ *     closed to `suppress`, not to an exception a caller might swallow into a render.
+ *
+ * The byte-identical canonicalization across PHP / Node is what makes the credential
+ * portable; here we hand-roll a deterministic JCS serializer (sufficient for the
+ * envelope's all-string/number/bool/array/object shape — no exotic numbers) so the SDK
+ * carries no production crypto-canonicalization of its own that could DRIFT from the
+ * contract. On publish, the real `canonicalize` (RFC 8785) from cert-contract is used.
+ *
+ * INTEGRATION: delete this file + `./kernel-contract.ts`; import `verifyEnvelope`,
+ * `renderVerdict`, `verifySignatureOnly`, `toEd25519PublicKey` from
+ * `@certrev/cert-contract`. See README "Integration TODOs".
+ */
+import { createPublicKey, verify as nodeVerify } from 'node:crypto';
+import { CONTRACT_VERSION, SIGNATURE_ALG } from './kernel-contract.js';
+// ── RFC-8785 (JCS) canonicalization — minimal, deterministic, envelope-shaped ─────
+/**
+ * Serialize a JSON value to its RFC-8785 canonical string form: object keys sorted by
+ * UTF-16 code unit, no insignificant whitespace, JSON string escaping. The payload is
+ * all strings / finite numbers / booleans / null / arrays / objects, so we do NOT need
+ * the full ECMAScript number-formatting machinery the production `canonicalize` package
+ * implements — integers + ISO strings serialize identically either way. This stub
+ * exists only so tests run; the published path uses cert-contract's vetted JCS.
+ */
+function jcs(value) {
+    if (value === null)
+        return 'null';
+    const t = typeof value;
+    if (t === 'string')
+        return JSON.stringify(value);
+    if (t === 'number') {
+        if (!Number.isFinite(value))
+            throw new Error('jcs: non-finite number');
+        return JSON.stringify(value);
+    }
+    if (t === 'boolean')
+        return value ? 'true' : 'false';
+    if (Array.isArray(value)) {
+        return `[${value.map((v) => jcs(v)).join(',')}]`;
+    }
+    if (t === 'object') {
+        const obj = value;
+        const keys = Object.keys(obj)
+            .filter((k) => obj[k] !== undefined)
+            .sort();
+        return `{${keys.map((k) => `${JSON.stringify(k)}:${jcs(obj[k])}`).join(',')}}`;
+    }
+    throw new Error(`jcs: unsupported value type ${t}`);
+}
+function canonicalPayloadBytes(payload) {
+    return new TextEncoder().encode(jcs(payload));
+}
+function base64urlDecode(s) {
+    return new Uint8Array(Buffer.from(s, 'base64url'));
+}
+const RAW_SPKI_PREFIX = Uint8Array.from([0x30, 0x2a, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65, 0x70, 0x03, 0x21, 0x00]);
+/** Mirror of cert-contract's `toEd25519PublicKey` for the input encodings the SDK uses. */
+function toEd25519PublicKey(input) {
+    switch (input.format) {
+        case 'pem':
+            return createPublicKey({ key: input.pem, format: 'pem' });
+        case 'spki-base64':
+            return createPublicKey({ key: Buffer.from(input.base64, 'base64'), format: 'der', type: 'spki' });
+        case 'spki-der':
+            return createPublicKey({ key: Buffer.from(input.bytes), format: 'der', type: 'spki' });
+        case 'raw': {
+            if (input.bytes.length !== 32) {
+                throw new Error(`ed25519 raw public key must be 32 bytes, got ${input.bytes.length}`);
+            }
+            const spki = new Uint8Array(RAW_SPKI_PREFIX.length + 32);
+            spki.set(RAW_SPKI_PREFIX, 0);
+            spki.set(input.bytes, RAW_SPKI_PREFIX.length);
+            return createPublicKey({ key: Buffer.from(spki), format: 'der', type: 'spki' });
+        }
+    }
+}
+function verifyDetached(payload, sigBase64url, publicKey) {
+    try {
+        return nodeVerify(null, canonicalPayloadBytes(payload), publicKey, base64urlDecode(sigBase64url));
+    }
+    catch {
+        return false;
+    }
+}
+async function verifyCryptographic(envelope, resolveKid) {
+    const { payload, signature } = envelope ?? {};
+    if (!payload || !signature || payload.contractVersion !== CONTRACT_VERSION) {
+        return { ok: false, reason: 'unsupported_contract_version' };
+    }
+    if (signature.alg !== SIGNATURE_ALG) {
+        return { ok: false, reason: 'unsupported_alg' };
+    }
+    const resolved = await resolveKid(signature.kid);
+    if (!resolved) {
+        return { ok: false, reason: 'unknown_key' };
+    }
+    let key;
+    try {
+        key = toEd25519PublicKey(resolved);
+    }
+    catch {
+        return { ok: false, reason: 'unknown_key' };
+    }
+    if (!verifyDetached(payload, signature.sig, key)) {
+        return { ok: false, reason: 'invalid_signature' };
+    }
+    return { ok: true };
+}
+/** Phase-2-only policy verdict over an already-authentic payload. Pure + synchronous. */
+export function renderVerdict(payload, ctx) {
+    const now = ctx.now ?? new Date();
+    if (payload.subject.platform !== ctx.platform) {
+        return { decision: 'suppress', reason: 'platform_mismatch' };
+    }
+    if (payload.subject.externalId !== ctx.externalId) {
+        return { decision: 'suppress', reason: 'subject_mismatch' };
+    }
+    if (payload.lifecycle.revokedAt !== null) {
+        return { decision: 'suppress', reason: 'revoked' };
+    }
+    if (now.getTime() >= Date.parse(payload.lifecycle.expiresAt)) {
+        return { decision: 'suppress', reason: 'expired' };
+    }
+    const bound = payload.subject.contentDigest;
+    const live = ctx.liveContentHash;
+    if (bound !== null && live != null && bound !== live) {
+        return { decision: 'suppress', reason: 'content_drift' };
+    }
+    return { decision: 'render', payload };
+}
+/** Phase-1-only cryptographic verification. */
+export async function verifySignatureOnly(envelope, resolveKid) {
+    return verifyCryptographic(envelope, resolveKid);
+}
+/** Full kernel: verify signature, then apply policy. Fail-closed, never throws. */
+export async function verifyEnvelope(envelope, resolveKid, ctx) {
+    let crypto;
+    try {
+        crypto = await verifyCryptographic(envelope, resolveKid);
+    }
+    catch {
+        return { decision: 'suppress', reason: 'unknown_key' };
+    }
+    if (!crypto.ok) {
+        return { decision: 'suppress', reason: crypto.reason };
+    }
+    return renderVerdict(envelope.payload, ctx);
+}
+/** Re-export for tests that need to build a public key from raw/spki bytes. */
+export { toEd25519PublicKey };
+//# sourceMappingURL=kernel-stub.js.map

package/dist/contract/kernel-stub.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"kernel-stub.js","sourceRoot":"","sources":["../../src/contract/kernel-stub.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,EAAE,eAAe,EAAkB,MAAM,IAAI,UAAU,EAAE,MAAM,aAAa,CAAA;AAUnF,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAA;AAEtE,qFAAqF;AACrF;;;;;;;GAOG;AACH,SAAS,GAAG,CAAC,KAAc;IAC1B,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,MAAM,CAAA;IACjC,MAAM,CAAC,GAAG,OAAO,KAAK,CAAA;IACtB,IAAI,CAAC,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAA;IAChD,IAAI,CAAC,KAAK,QAAQ,EAAE,CAAC;QACpB,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAe,CAAC;YAAE,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAA;QAChF,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAA;IAC7B,CAAC;IACD,IAAI,CAAC,KAAK,SAAS;QAAE,OAAQ,KAAiB,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAA;IACjE,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAA;IACjD,CAAC;IACD,IAAI,CAAC,KAAK,QAAQ,EAAE,CAAC;QACpB,MAAM,GAAG,GAAG,KAAgC,CAAA;QAC5C,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;aAC3B,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,SAAS,CAAC;aACnC,IAAI,EAAE,CAAA;QACR,OAAO,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAA;IAC/E,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,EAAE,CAAC,CAAA;AACpD,CAAC;AAED,SAAS,qBAAqB,CAAC,OAAoB;IAClD,OAAO,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAA;AAC9C,CAAC;AAED,SAAS,eAAe,CAAC,CAAS;IACjC,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAA;AACnD,CAAC;AAED,MAAM,eAAe,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC,CAAA;AAEjH,2FAA2F;AAC3F,SAAS,kBAAkB,CAAC,KAA4B;IACvD,QAAQ,KAAK,CAAC,MAAM,EAAE,CAAC;QACtB,KAAK,KAAK;YACT,OAAO,eAAe,CAAC,EAAE,GAAG,EAAE,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAA;QAC1D,KAAK,aAAa;YACjB,OAAO,eAAe,CAAC,EAAE,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAA;QAClG,KAAK,UAAU;YACd,OAAO,eAAe,CAAC,EAAE,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAA;QACvF,KAAK,KAAK,CAAC,CAAC,CAAC;YACZ,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;gBAC/B,MAAM,IAAI,KAAK,CAAC,gDAAgD,KAAK,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CAAA;YACtF,CAAC;YACD,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,eAAe,CAAC,MAAM,GAAG,EAAE,CAAC,CAAA;YACxD,IAAI,CAAC,GAAG,CAAC,eAAe,EAAE,CAAC,CAAC,CAAA;YAC5B,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,EAAE,eAAe,CAAC,MAAM,CAAC,CAAA;YAC7C,OAAO,eAAe,CAAC,EAAE,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAA;QAChF,CAAC;IACF,CAAC;AACF,CAAC;AAED,SAAS,cAAc,CAAC,OAAoB,EAAE,YAAoB,EAAE,SAAoB;IACvF,IAAI,CAAC;QACJ,OAAO,UAAU,CAAC,IAAI,EAAE,qBAAqB,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,eAAe,CAAC,YAAY,CAAC,CAAC,CAAA;IAClG,CAAC;IAAC,MAAM,CAAC;QACR,OAAO,KAAK,CAAA;IACb,CAAC;AACF,CAAC;AAID,KAAK,UAAU,mBAAmB,CACjC,QAA8B,EAC9B,UAAiC;IAEjC,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,QAAQ,IAAK,EAA2B,CAAA;IACvE,IAAI,CAAC,OAAO,IAAI,CAAC,SAAS,IAAI,OAAO,CAAC,eAAe,KAAK,gBAAgB,EAAE,CAAC;QAC5E,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,8BAA8B,EAAE,CAAA;IAC7D,CAAC;IACD,IAAI,SAAS,CAAC,GAAG,KAAK,aAAa,EAAE,CAAC;QACrC,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAA;IAChD,CAAC;IACD,MAAM,QAAQ,GAAG,MAAM,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;IAChD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACf,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,aAAa,EAAE,CAAA;IAC5C,CAAC;IACD,IAAI,GAAc,CAAA;IAClB,IAAI,CAAC;QACJ,GAAG,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAA;IACnC,CAAC;IAAC,MAAM,CAAC;QACR,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,aAAa,EAAE,CAAA;IAC5C,CAAC;IACD,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,SAAS,CAAC,GAAG,EAAE,GAAG,CAAC,EAAE,CAAC;QAClD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAA;IAClD,CAAC;IACD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAA;AACpB,CAAC;AAED,yFAAyF;AACzF,MAAM,UAAU,aAAa,CAAC,OAAoB,EAAE,GAAkB;IACrE,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,IAAI,IAAI,IAAI,EAAE,CAAA;IACjC,IAAI,OAAO,CAAC,OAAO,CAAC,QAAQ,KAAK,GAAG,CAAC,QAAQ,EAAE,CAAC;QAC/C,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAA;IAC7D,CAAC;IACD,IAAI,OAAO,CAAC,OAAO,CAAC,UAAU,KAAK,GAAG,CAAC,UAAU,EAAE,CAAC;QACnD,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,kBAAkB,EAAE,CAAA;IAC5D,CAAC;IACD,IAAI,OAAO,CAAC,SAAS,CAAC,SAAS,KAAK,IAAI,EAAE,CAAC;QAC1C,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,CAAA;IACnD,CAAC;IACD,IAAI,GAAG,CAAC,OAAO,EAAE,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,SAAS,CAAC,EAAE,CAAC;QAC9D,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,CAAA;IACnD,CAAC;IACD,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAA;IAC3C,MAAM,IAAI,GAAG,GAAG,CAAC,eAAe,CAAA;IAChC,IAAI,KAAK,KAAK,IAAI,IAAI,IAAI,IAAI,IAAI,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;QACtD,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;IACzD,CAAC;IACD,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAA;AACvC,CAAC;AAED,+CAA+C;AAC/C,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACxC,QAA8B,EAC9B,UAAiC;IAEjC,OAAO,mBAAmB,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAA;AACjD,CAAC;AAED,mFAAmF;AACnF,MAAM,CAAC,KAAK,UAAU,cAAc,CACnC,QAA8B,EAC9B,UAAiC,EACjC,GAAkB;IAElB,IAAI,MAAoB,CAAA;IACxB,IAAI,CAAC;QACJ,MAAM,GAAG,MAAM,mBAAmB,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAA;IACzD,CAAC;IAAC,MAAM,CAAC;QACR,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,CAAA;IACvD,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;QAChB,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAA;IACvD,CAAC;IACD,OAAO,aAAa,CAAC,QAAQ,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;AAC5C,CAAC;AAED,+EAA+E;AAC/E,OAAO,EAAE,kBAAkB,EAAE,CAAA"}

package/dist/contract/kernel.d.ts

@@ -0,0 +1,20 @@
+/**
+ * ─────────────────────────────────────────────────────────────────────────────
+ * Contract binding point — the SDK's single import of @certrev/cert-contract
+ * ─────────────────────────────────────────────────────────────────────────────
+ *
+ * Every other SDK module imports the contract TYPES and the KERNEL functions from HERE,
+ * never directly from `@certrev/cert-contract`, so the whole SDK's dependency on the
+ * contract is funnelled through one module. The published package owns the envelope types
+ * (`CertDeliveryEnvelope`, `CertPayload`, `CertCredential`, …), the RFC-8785
+ * canonicalization (`canonicalPayloadBytes`), and the fail-closed kernel (`verifyEnvelope`,
+ * `renderVerdict`, `verifySignatureOnly`, `toEd25519PublicKey`).
+ *
+ * `VerdictKernel` is the ONE name NOT re-exported from the package: the contract exposes
+ * the kernel as free functions, and different edges bundle them with different key-resolver
+ * shapes (cert-block uses `Ed25519PublicKeyInput`; the portal Delivery API uses raw
+ * `Uint8Array`), so the bundled interface stays edge-local — see ./verdict-kernel.
+ */
+export * from '@certrev/cert-contract';
+export type { VerdictKernel } from './verdict-kernel.js';
+//# sourceMappingURL=kernel.d.ts.map

package/dist/contract/kernel.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"kernel.d.ts","sourceRoot":"","sources":["../../src/contract/kernel.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,cAAc,wBAAwB,CAAA;AACtC,YAAY,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAA"}