@dwk/vc 0.1.0-beta.0

package/dist/index.d.ts

@@ -0,0 +1,42 @@
+/**
+ * `@dwk/vc` — `did:web` identity plus Verifiable Credential issuance and
+ * verification.
+ *
+ * Endpoint package (+ lib): exports a factory returning a `fetch`-compatible
+ * handler, mountable under any prefix so it composes with the other `@dwk`
+ * packages in one Worker. Decentralized identity is rooted at the user's own
+ * domain — the same WebID / IndieAuth identity root, expressed as a DID — and
+ * credential proofs reuse the project's asymmetric, alg-allow-listed crypto
+ * posture (`@dwk/dpop`, `@dwk/http-signatures`).
+ *
+ * The split: the **`did:web` DID document is a static file** ({@link buildDidDocument}
+ * produces `/.well-known/did.json` — no Worker needed to resolve it), while the
+ * Worker covers the dynamic parts — VC **issuance** (signing with the domain's
+ * key), VC **verification**, and **status / revocation** whose bit-flips need a
+ * strongly-consistent store. Proofs use the **JCS** Data Integrity cryptosuites
+ * (`eddsa-jcs-2022`, `ecdsa-jcs-2019`), so the package canonicalizes with
+ * {@link canonicalize} (RFC 8785) rather than shipping a JSON-LD/RDF
+ * canonicalizer — staying within the Worker script-size budget.
+ *
+ * Credential construction and proof logic take **plain-data inputs** and
+ * unit-test without a Workers runtime; only the issuance/status endpoints and
+ * their D1-backed status store touch the runtime. Signing keys and issuer
+ * identity arrive via config and a secret binding — never read from the global
+ * environment (composition contract).
+ *
+ * @see spec/packages/vc.md
+ * @packageDocumentation
+ */
+export { createVc } from "./handler";
+export type { VcEnv, VcHandler } from "./handler";
+export { resolveConfig, type VcConfig, type ResolvedVcConfig, type StatusConfig, type VcOperation, type AuthorizeOperation, type DidResolver, } from "./config";
+export { importSigner, addProof, verifyProof, isSupportedCryptosuite, type Cryptosuite, type Signer, type JsonObject, type SecuredDocument, type AddProofOptions, type VerifyProofOptions, type VerifyProofResult, type VerificationMethod, type VerificationMethodResolver, } from "./data-integrity";
+export { buildCredential, validateCredential, checkValidityPeriod, issuerId, VC_CONTEXT_V2, VERIFIABLE_CREDENTIAL_TYPE, type UnsignedCredential, type BuildCredentialOptions, type Issuer, } from "./credential";
+export { didWebToUrl, urlToDidWeb, buildDidDocument, findVerificationMethod, createDidWebResolver, DID_CONTEXT_V1, MULTIKEY_CONTEXT_V1, JWK_CONTEXT_V1, type BuildDidDocumentOptions, type VerificationMethodInput, type VerificationRelationships, type DidWebResolverOptions, type FetchLike, } from "./did-web";
+export { buildStatusListCredential, buildStatusEntry, buildEncodedList, encodeBitstring, decodeBitstring, getBit, setBit, findStatusEntry, statusEntryIndex, createVcStatusStore, DEFAULT_STATUS_LIST_LENGTH, BITSTRING_STATUS_LIST_CREDENTIAL_TYPE, BITSTRING_STATUS_LIST_ENTRY_TYPE, BITSTRING_STATUS_LIST_SUBJECT_TYPE, type StatusPurpose, type StatusPurposeValue, type StatusListCredentialOptions, type VcStatusStore, type VcStatusStoreEnv, } from "./status-list";
+export { isValidXsdDateTimeStamp, toXsdDateTime } from "./datetime";
+export { canonicalize, canonicalizeToBytes, type JcsValue } from "./jcs";
+export { base58btcEncode, base58btcDecode, base64urlEncode, base64urlDecode, encodeMultibaseBase58btc, encodeMultibaseBase64url, decodeMultibase, encodeEd25519Multikey, decodeMultikey, type DecodedMultikey, } from "./multibase";
+export { VcLogEvent } from "./log";
+export type { Logger, Metrics } from "@dwk/log";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AACrC,YAAY,EAAE,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAElD,OAAO,EACL,aAAa,EACb,KAAK,QAAQ,EACb,KAAK,gBAAgB,EACrB,KAAK,YAAY,EACjB,KAAK,WAAW,EAChB,KAAK,kBAAkB,EACvB,KAAK,WAAW,GACjB,MAAM,UAAU,CAAC;AAGlB,OAAO,EACL,YAAY,EACZ,QAAQ,EACR,WAAW,EACX,sBAAsB,EACtB,KAAK,WAAW,EAChB,KAAK,MAAM,EACX,KAAK,UAAU,EACf,KAAK,eAAe,EACpB,KAAK,eAAe,EACpB,KAAK,kBAAkB,EACvB,KAAK,iBAAiB,EACtB,KAAK,kBAAkB,EACvB,KAAK,0BAA0B,GAChC,MAAM,kBAAkB,CAAC;AAG1B,OAAO,EACL,eAAe,EACf,kBAAkB,EAClB,mBAAmB,EACnB,QAAQ,EACR,aAAa,EACb,0BAA0B,EAC1B,KAAK,kBAAkB,EACvB,KAAK,sBAAsB,EAC3B,KAAK,MAAM,GACZ,MAAM,cAAc,CAAC;AAGtB,OAAO,EACL,WAAW,EACX,WAAW,EACX,gBAAgB,EAChB,sBAAsB,EACtB,oBAAoB,EACpB,cAAc,EACd,mBAAmB,EACnB,cAAc,EACd,KAAK,uBAAuB,EAC5B,KAAK,uBAAuB,EAC5B,KAAK,yBAAyB,EAC9B,KAAK,qBAAqB,EAC1B,KAAK,SAAS,GACf,MAAM,WAAW,CAAC;AAGnB,OAAO,EACL,yBAAyB,EACzB,gBAAgB,EAChB,gBAAgB,EAChB,eAAe,EACf,eAAe,EACf,MAAM,EACN,MAAM,EACN,eAAe,EACf,gBAAgB,EAChB,mBAAmB,EACnB,0BAA0B,EAC1B,qCAAqC,EACrC,gCAAgC,EAChC,kCAAkC,EAClC,KAAK,aAAa,EAClB,KAAK,kBAAkB,EACvB,KAAK,2BAA2B,EAChC,KAAK,aAAa,EAClB,KAAK,gBAAgB,GACtB,MAAM,eAAe,CAAC;AAGvB,OAAO,EAAE,uBAAuB,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAGpE,OAAO,EAAE,YAAY,EAAE,mBAAmB,EAAE,KAAK,QAAQ,EAAE,MAAM,OAAO,CAAC;AACzE,OAAO,EACL,eAAe,EACf,eAAe,EACf,eAAe,EACf,eAAe,EACf,wBAAwB,EACxB,wBAAwB,EACxB,eAAe,EACf,qBAAqB,EACrB,cAAc,EACd,KAAK,eAAe,GACrB,MAAM,aAAa,CAAC;AAErB,OAAO,EAAE,UAAU,EAAE,MAAM,OAAO,CAAC;AACnC,YAAY,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC"}

package/dist/index.js

@@ -0,0 +1,46 @@
+/**
+ * `@dwk/vc` — `did:web` identity plus Verifiable Credential issuance and
+ * verification.
+ *
+ * Endpoint package (+ lib): exports a factory returning a `fetch`-compatible
+ * handler, mountable under any prefix so it composes with the other `@dwk`
+ * packages in one Worker. Decentralized identity is rooted at the user's own
+ * domain — the same WebID / IndieAuth identity root, expressed as a DID — and
+ * credential proofs reuse the project's asymmetric, alg-allow-listed crypto
+ * posture (`@dwk/dpop`, `@dwk/http-signatures`).
+ *
+ * The split: the **`did:web` DID document is a static file** ({@link buildDidDocument}
+ * produces `/.well-known/did.json` — no Worker needed to resolve it), while the
+ * Worker covers the dynamic parts — VC **issuance** (signing with the domain's
+ * key), VC **verification**, and **status / revocation** whose bit-flips need a
+ * strongly-consistent store. Proofs use the **JCS** Data Integrity cryptosuites
+ * (`eddsa-jcs-2022`, `ecdsa-jcs-2019`), so the package canonicalizes with
+ * {@link canonicalize} (RFC 8785) rather than shipping a JSON-LD/RDF
+ * canonicalizer — staying within the Worker script-size budget.
+ *
+ * Credential construction and proof logic take **plain-data inputs** and
+ * unit-test without a Workers runtime; only the issuance/status endpoints and
+ * their D1-backed status store touch the runtime. Signing keys and issuer
+ * identity arrive via config and a secret binding — never read from the global
+ * environment (composition contract).
+ *
+ * @see spec/packages/vc.md
+ * @packageDocumentation
+ */
+export { createVc } from "./handler";
+export { resolveConfig, } from "./config";
+// Data Integrity (cryptosuites + proof pipeline)
+export { importSigner, addProof, verifyProof, isSupportedCryptosuite, } from "./data-integrity";
+// Credential data model (VCDM 2.0)
+export { buildCredential, validateCredential, checkValidityPeriod, issuerId, VC_CONTEXT_V2, VERIFIABLE_CREDENTIAL_TYPE, } from "./credential";
+// did:web
+export { didWebToUrl, urlToDidWeb, buildDidDocument, findVerificationMethod, createDidWebResolver, DID_CONTEXT_V1, MULTIKEY_CONTEXT_V1, JWK_CONTEXT_V1, } from "./did-web";
+// Bitstring Status List
+export { buildStatusListCredential, buildStatusEntry, buildEncodedList, encodeBitstring, decodeBitstring, getBit, setBit, findStatusEntry, statusEntryIndex, createVcStatusStore, DEFAULT_STATUS_LIST_LENGTH, BITSTRING_STATUS_LIST_CREDENTIAL_TYPE, BITSTRING_STATUS_LIST_ENTRY_TYPE, BITSTRING_STATUS_LIST_SUBJECT_TYPE, } from "./status-list";
+// XSD dateTimeStamp validation for VC temporal fields
+export { isValidXsdDateTimeStamp, toXsdDateTime } from "./datetime";
+// JCS canonicalization and multibase/Multikey codecs
+export { canonicalize, canonicalizeToBytes } from "./jcs";
+export { base58btcEncode, base58btcDecode, base64urlEncode, base64urlDecode, encodeMultibaseBase58btc, encodeMultibaseBase64url, decodeMultibase, encodeEd25519Multikey, decodeMultikey, } from "./multibase";
+export { VcLogEvent } from "./log";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAGrC,OAAO,EACL,aAAa,GAOd,MAAM,UAAU,CAAC;AAElB,iDAAiD;AACjD,OAAO,EACL,YAAY,EACZ,QAAQ,EACR,WAAW,EACX,sBAAsB,GAUvB,MAAM,kBAAkB,CAAC;AAE1B,mCAAmC;AACnC,OAAO,EACL,eAAe,EACf,kBAAkB,EAClB,mBAAmB,EACnB,QAAQ,EACR,aAAa,EACb,0BAA0B,GAI3B,MAAM,cAAc,CAAC;AAEtB,UAAU;AACV,OAAO,EACL,WAAW,EACX,WAAW,EACX,gBAAgB,EAChB,sBAAsB,EACtB,oBAAoB,EACpB,cAAc,EACd,mBAAmB,EACnB,cAAc,GAMf,MAAM,WAAW,CAAC;AAEnB,wBAAwB;AACxB,OAAO,EACL,yBAAyB,EACzB,gBAAgB,EAChB,gBAAgB,EAChB,eAAe,EACf,eAAe,EACf,MAAM,EACN,MAAM,EACN,eAAe,EACf,gBAAgB,EAChB,mBAAmB,EACnB,0BAA0B,EAC1B,qCAAqC,EACrC,gCAAgC,EAChC,kCAAkC,GAMnC,MAAM,eAAe,CAAC;AAEvB,sDAAsD;AACtD,OAAO,EAAE,uBAAuB,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAEpE,qDAAqD;AACrD,OAAO,EAAE,YAAY,EAAE,mBAAmB,EAAiB,MAAM,OAAO,CAAC;AACzE,OAAO,EACL,eAAe,EACf,eAAe,EACf,eAAe,EACf,eAAe,EACf,wBAAwB,EACxB,wBAAwB,EACxB,eAAe,EACf,qBAAqB,EACrB,cAAc,GAEf,MAAM,aAAa,CAAC;AAErB,OAAO,EAAE,UAAU,EAAE,MAAM,OAAO,CAAC"}

package/dist/jcs.d.ts

@@ -0,0 +1,31 @@
+/**
+ * JSON Canonicalization Scheme (RFC 8785).
+ *
+ * The `*-jcs-*` Data Integrity cryptosuites canonicalize a credential and its
+ * proof configuration with JCS — not RDF Dataset Canonicalization — so the proof
+ * pipeline needs no JSON-LD expansion or URDNA2015 implementation. That keeps
+ * the package within the Worker script-size budget (no `jsonld.js`/Comunica) and
+ * makes proof construction a pure, plain-data transform that unit-tests without a
+ * Workers runtime.
+ *
+ * JCS ordering and escaping line up with the ECMAScript primitives this uses:
+ * object members are sorted by the UTF-16 code units of their keys (the default
+ * `Array.prototype.sort` order), and string escaping matches `JSON.stringify`.
+ * Number serialization uses the ECMAScript `Number`-to-string algorithm
+ * (`String(n)`); credentials carry small integers and simple decimals, well
+ * within where that agrees with RFC 8785.
+ *
+ * @see https://www.rfc-editor.org/rfc/rfc8785
+ */
+/** A JSON value accepted by {@link canonicalize}. */
+export type JcsValue = null | boolean | number | string | JcsValue[] | {
+    [key: string]: JcsValue | undefined;
+};
+/**
+ * Canonicalize a JSON value to its RFC 8785 string form. Throws on values JSON
+ * cannot represent (non-finite numbers, `undefined` at the top level, functions).
+ */
+export declare function canonicalize(value: JcsValue): string;
+/** Canonicalize a value and return its UTF-8 bytes (the hash input). */
+export declare function canonicalizeToBytes(value: JcsValue): Uint8Array;
+//# sourceMappingURL=jcs.d.ts.map

package/dist/jcs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jcs.d.ts","sourceRoot":"","sources":["../src/jcs.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAEH,qDAAqD;AACrD,MAAM,MAAM,QAAQ,GAChB,IAAI,GACJ,OAAO,GACP,MAAM,GACN,MAAM,GACN,QAAQ,EAAE,GACV;IAAE,CAAC,GAAG,EAAE,MAAM,GAAG,QAAQ,GAAG,SAAS,CAAA;CAAE,CAAC;AAyC5C;;;GAGG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,QAAQ,GAAG,MAAM,CAKpD;AAED,wEAAwE;AACxE,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,QAAQ,GAAG,UAAU,CAE/D"}

package/dist/jcs.js

@@ -0,0 +1,67 @@
+/**
+ * JSON Canonicalization Scheme (RFC 8785).
+ *
+ * The `*-jcs-*` Data Integrity cryptosuites canonicalize a credential and its
+ * proof configuration with JCS — not RDF Dataset Canonicalization — so the proof
+ * pipeline needs no JSON-LD expansion or URDNA2015 implementation. That keeps
+ * the package within the Worker script-size budget (no `jsonld.js`/Comunica) and
+ * makes proof construction a pure, plain-data transform that unit-tests without a
+ * Workers runtime.
+ *
+ * JCS ordering and escaping line up with the ECMAScript primitives this uses:
+ * object members are sorted by the UTF-16 code units of their keys (the default
+ * `Array.prototype.sort` order), and string escaping matches `JSON.stringify`.
+ * Number serialization uses the ECMAScript `Number`-to-string algorithm
+ * (`String(n)`); credentials carry small integers and simple decimals, well
+ * within where that agrees with RFC 8785.
+ *
+ * @see https://www.rfc-editor.org/rfc/rfc8785
+ */
+function serializeNumber(value) {
+    if (!Number.isFinite(value)) {
+        throw new Error("@dwk/vc: cannot canonicalize a non-finite number");
+    }
+    // String(-0) === "0", matching JCS's requirement that -0 serialize as "0".
+    return String(value);
+}
+function serialize(value) {
+    if (value === null)
+        return "null";
+    const type = typeof value;
+    if (type === "boolean")
+        return value ? "true" : "false";
+    if (type === "number")
+        return serializeNumber(value);
+    if (type === "string")
+        return JSON.stringify(value);
+    if (Array.isArray(value)) {
+        // Mirror JSON.stringify: an `undefined` element serializes as `null`.
+        const items = value.map((item) => item === undefined ? "null" : serialize(item));
+        return `[${items.join(",")}]`;
+    }
+    if (type === "object") {
+        const obj = value;
+        // Drop members whose value is `undefined`, then sort by UTF-16 code unit.
+        const keys = Object.keys(obj)
+            .filter((key) => obj[key] !== undefined)
+            .sort();
+        const members = keys.map((key) => `${JSON.stringify(key)}:${serialize(obj[key])}`);
+        return `{${members.join(",")}}`;
+    }
+    throw new Error(`@dwk/vc: cannot canonicalize value of type ${type}`);
+}
+/**
+ * Canonicalize a JSON value to its RFC 8785 string form. Throws on values JSON
+ * cannot represent (non-finite numbers, `undefined` at the top level, functions).
+ */
+export function canonicalize(value) {
+    if (value === undefined) {
+        throw new Error("@dwk/vc: cannot canonicalize `undefined`");
+    }
+    return serialize(value);
+}
+/** Canonicalize a value and return its UTF-8 bytes (the hash input). */
+export function canonicalizeToBytes(value) {
+    return new TextEncoder().encode(canonicalize(value));
+}
+//# sourceMappingURL=jcs.js.map

package/dist/jcs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jcs.js","sourceRoot":"","sources":["../src/jcs.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAWH,SAAS,eAAe,CAAC,KAAa;IACpC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;IACtE,CAAC;IACD,2EAA2E;IAC3E,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC;AACvB,CAAC;AAED,SAAS,SAAS,CAAC,KAAe;IAChC,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,MAAM,CAAC;IAElC,MAAM,IAAI,GAAG,OAAO,KAAK,CAAC;IAC1B,IAAI,IAAI,KAAK,SAAS;QAAE,OAAO,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC;IACxD,IAAI,IAAI,KAAK,QAAQ;QAAE,OAAO,eAAe,CAAC,KAAe,CAAC,CAAC;IAC/D,IAAI,IAAI,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IAEpD,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,sEAAsE;QACtE,MAAM,KAAK,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAC/B,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,CAC9C,CAAC;QACF,OAAO,IAAI,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;IAChC,CAAC;IAED,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtB,MAAM,GAAG,GAAG,KAAgD,CAAC;QAC7D,0EAA0E;QAC1E,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;aAC1B,MAAM,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC;aACvC,IAAI,EAAE,CAAC;QACV,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CACtB,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,GAAG,CAAE,CAAC,EAAE,CAC1D,CAAC;QACF,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;IAClC,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,8CAA8C,IAAI,EAAE,CAAC,CAAC;AACxE,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,YAAY,CAAC,KAAe;IAC1C,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;IACD,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC;AAC1B,CAAC;AAED,wEAAwE;AACxE,MAAM,UAAU,mBAAmB,CAAC,KAAe;IACjD,OAAO,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC;AACvD,CAAC"}

package/dist/log.d.ts

@@ -0,0 +1,34 @@
+/**
+ * `@dwk/vc` — structured observability event taxonomy.
+ *
+ * Credential issuance and status changes are the security-relevant moments here:
+ * an unauthorized issue attempt, a verification that fails its proof, or a
+ * revocation are exactly what an operator wants a signal for. Logging and metrics
+ * are opt-in via an injected {@link Logger} and {@link Metrics} (see `@dwk/log`)
+ * and **share this one vocabulary**: the same dotted event name is passed to the
+ * logger and the metrics sink so a log line and its counter line up.
+ *
+ * Fields follow the redaction policy: never the credential subject, claims, the
+ * signing key, or a `proofValue` — only stable reason codes, a credential `type`
+ * count or list, the issuer host, and the status purpose/outcome.
+ *
+ * @packageDocumentation
+ */
+/** Stable event names emitted by `@dwk/vc`. */
+export declare const VcLogEvent: {
+    /** A credential was issued (signed). Fields: `cryptosuite`. */
+    readonly Issued: "vc.issued";
+    /** A credential was verified. Fields: `verified` (boolean). */
+    readonly Verified: "vc.verified";
+    /** A credential's status was changed. Fields: `statusPurpose`, `value`. */
+    readonly StatusChanged: "vc.status.changed";
+    /**
+     * A request was rejected before completing. Field: `reason`
+     * (`method_not_allowed`, `unauthorized`, `malformed_request`,
+     * `unsupported`, `status_disabled`, `not_found`).
+     */
+    readonly Rejected: "vc.rejected";
+};
+/** Union of the event-name string literals in {@link VcLogEvent}. */
+export type VcLogEvent = (typeof VcLogEvent)[keyof typeof VcLogEvent];
+//# sourceMappingURL=log.d.ts.map

package/dist/log.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"log.d.ts","sourceRoot":"","sources":["../src/log.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,+CAA+C;AAC/C,eAAO,MAAM,UAAU;IACrB,+DAA+D;;IAE/D,+DAA+D;;IAE/D,2EAA2E;;IAE3E;;;;OAIG;;CAEK,CAAC;AAEX,qEAAqE;AACrE,MAAM,MAAM,UAAU,GAAG,CAAC,OAAO,UAAU,CAAC,CAAC,MAAM,OAAO,UAAU,CAAC,CAAC"}

package/dist/log.js

@@ -0,0 +1,32 @@
+/**
+ * `@dwk/vc` — structured observability event taxonomy.
+ *
+ * Credential issuance and status changes are the security-relevant moments here:
+ * an unauthorized issue attempt, a verification that fails its proof, or a
+ * revocation are exactly what an operator wants a signal for. Logging and metrics
+ * are opt-in via an injected {@link Logger} and {@link Metrics} (see `@dwk/log`)
+ * and **share this one vocabulary**: the same dotted event name is passed to the
+ * logger and the metrics sink so a log line and its counter line up.
+ *
+ * Fields follow the redaction policy: never the credential subject, claims, the
+ * signing key, or a `proofValue` — only stable reason codes, a credential `type`
+ * count or list, the issuer host, and the status purpose/outcome.
+ *
+ * @packageDocumentation
+ */
+/** Stable event names emitted by `@dwk/vc`. */
+export const VcLogEvent = {
+    /** A credential was issued (signed). Fields: `cryptosuite`. */
+    Issued: "vc.issued",
+    /** A credential was verified. Fields: `verified` (boolean). */
+    Verified: "vc.verified",
+    /** A credential's status was changed. Fields: `statusPurpose`, `value`. */
+    StatusChanged: "vc.status.changed",
+    /**
+     * A request was rejected before completing. Field: `reason`
+     * (`method_not_allowed`, `unauthorized`, `malformed_request`,
+     * `unsupported`, `status_disabled`, `not_found`).
+     */
+    Rejected: "vc.rejected",
+};
+//# sourceMappingURL=log.js.map

package/dist/log.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"log.js","sourceRoot":"","sources":["../src/log.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,+CAA+C;AAC/C,MAAM,CAAC,MAAM,UAAU,GAAG;IACxB,+DAA+D;IAC/D,MAAM,EAAE,WAAW;IACnB,+DAA+D;IAC/D,QAAQ,EAAE,aAAa;IACvB,2EAA2E;IAC3E,aAAa,EAAE,mBAAmB;IAClC;;;;OAIG;IACH,QAAQ,EAAE,aAAa;CACf,CAAC"}

package/dist/multibase.d.ts

@@ -0,0 +1,57 @@
+/**
+ * Multibase / Multikey encoding primitives used by Verifiable Credential proofs
+ * and DID documents.
+ *
+ * Data Integrity proof values are **multibase base58-btc** strings (a leading
+ * `z`), and a `Multikey` verification method publishes its public key as a
+ * multibase base58-btc string over a **multicodec**-prefixed raw key. Status
+ * lists are **multibase base64url** (a leading `u`). These helpers are pure
+ * byte/string transforms with no Web Crypto or runtime dependency, so they
+ * unit-test in isolation.
+ *
+ * @see https://www.w3.org/TR/controller-document/#multikey
+ * @see https://github.com/multiformats/multibase
+ */
+/** Multibase prefix characters this module understands. */
+export declare const MULTIBASE_BASE58BTC = "z";
+export declare const MULTIBASE_BASE64URL = "u";
+/**
+ * Multicodec varint prefixes for the key types published as a `Multikey`.
+ * Encoded as unsigned LEB128 varints (the on-disk multicodec form).
+ */
+export declare const MULTICODEC_ED25519_PUB: Uint8Array<ArrayBuffer>;
+/** Encode raw bytes as base58-btc (no multibase prefix). */
+export declare function base58btcEncode(bytes: Uint8Array): string;
+/** Decode a base58-btc string (no multibase prefix) to raw bytes. */
+export declare function base58btcDecode(input: string): Uint8Array;
+/** Base64url-encode bytes without padding. */
+export declare function base64urlEncode(bytes: Uint8Array): string;
+/** Decode a base64url string (padded or not) to bytes. */
+export declare function base64urlDecode(input: string): Uint8Array;
+/** Encode bytes as a multibase base58-btc string (`z…`). */
+export declare function encodeMultibaseBase58btc(bytes: Uint8Array): string;
+/** Encode bytes as a multibase base64url string (`u…`). */
+export declare function encodeMultibaseBase64url(bytes: Uint8Array): string;
+/**
+ * Decode a multibase string, dispatching on its prefix. Supports base58-btc
+ * (`z`) and base64url (`u`) — the two encodings the VC suite emits.
+ */
+export declare function decodeMultibase(input: string): Uint8Array;
+/**
+ * Encode a raw Ed25519 public key (32 bytes) as a `Multikey`
+ * `publicKeyMultibase` value: multibase base58-btc over the
+ * multicodec-prefixed key.
+ */
+export declare function encodeEd25519Multikey(rawPublicKey: Uint8Array): string;
+/** The raw key bytes and key type recovered from a `publicKeyMultibase`. */
+export interface DecodedMultikey {
+    readonly keyType: "Ed25519";
+    readonly rawPublicKey: Uint8Array;
+}
+/**
+ * Decode a `Multikey` `publicKeyMultibase` value into its raw key bytes,
+ * validating the multicodec prefix. Only Ed25519 is supported as a Multikey;
+ * other key types are published as `publicKeyJwk` instead.
+ */
+export declare function decodeMultikey(publicKeyMultibase: string): DecodedMultikey;
+//# sourceMappingURL=multibase.d.ts.map

package/dist/multibase.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"multibase.d.ts","sourceRoot":"","sources":["../src/multibase.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAcH,2DAA2D;AAC3D,eAAO,MAAM,mBAAmB,MAAM,CAAC;AACvC,eAAO,MAAM,mBAAmB,MAAM,CAAC;AAEvC;;;GAGG;AACH,eAAO,MAAM,sBAAsB,yBAA4B,CAAC;AAEhE,4DAA4D;AAC5D,wBAAgB,eAAe,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CA2BzD;AAED,qEAAqE;AACrE,wBAAgB,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,UAAU,CA6BzD;AAED,8CAA8C;AAC9C,wBAAgB,eAAe,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAOzD;AAED,0DAA0D;AAC1D,wBAAgB,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,UAAU,CAQzD;AAED,4DAA4D;AAC5D,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAElE;AAED,2DAA2D;AAC3D,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAElE;AAED;;;GAGG;AACH,wBAAgB,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,UAAU,CASzD;AAED;;;;GAIG;AACH,wBAAgB,qBAAqB,CAAC,YAAY,EAAE,UAAU,GAAG,MAAM,CAYtE;AAED,4EAA4E;AAC5E,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC;IAC5B,QAAQ,CAAC,YAAY,EAAE,UAAU,CAAC;CACnC;AAED;;;;GAIG;AACH,wBAAgB,cAAc,CAAC,kBAAkB,EAAE,MAAM,GAAG,eAAe,CAa1E"}

package/dist/multibase.js

@@ -0,0 +1,165 @@
+/**
+ * Multibase / Multikey encoding primitives used by Verifiable Credential proofs
+ * and DID documents.
+ *
+ * Data Integrity proof values are **multibase base58-btc** strings (a leading
+ * `z`), and a `Multikey` verification method publishes its public key as a
+ * multibase base58-btc string over a **multicodec**-prefixed raw key. Status
+ * lists are **multibase base64url** (a leading `u`). These helpers are pure
+ * byte/string transforms with no Web Crypto or runtime dependency, so they
+ * unit-test in isolation.
+ *
+ * @see https://www.w3.org/TR/controller-document/#multikey
+ * @see https://github.com/multiformats/multibase
+ */
+const BASE58_ALPHABET = "123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz";
+// Reverse lookup: code point → value, built once.
+const BASE58_LOOKUP = (() => {
+    const map = {};
+    for (let i = 0; i < BASE58_ALPHABET.length; i++) {
+        map[BASE58_ALPHABET[i]] = i;
+    }
+    return map;
+})();
+/** Multibase prefix characters this module understands. */
+export const MULTIBASE_BASE58BTC = "z";
+export const MULTIBASE_BASE64URL = "u";
+/**
+ * Multicodec varint prefixes for the key types published as a `Multikey`.
+ * Encoded as unsigned LEB128 varints (the on-disk multicodec form).
+ */
+export const MULTICODEC_ED25519_PUB = Uint8Array.of(0xed, 0x01);
+/** Encode raw bytes as base58-btc (no multibase prefix). */
+export function base58btcEncode(bytes) {
+    if (bytes.length === 0)
+        return "";
+    // Count and preserve leading zero bytes as leading '1's.
+    let zeros = 0;
+    while (zeros < bytes.length && bytes[zeros] === 0)
+        zeros++;
+    // Convert the base-256 big-endian integer to base-58 via repeated division.
+    const digits = [];
+    for (let i = zeros; i < bytes.length; i++) {
+        let carry = bytes[i];
+        for (let j = 0; j < digits.length; j++) {
+            carry += digits[j] << 8;
+            digits[j] = carry % 58;
+            carry = (carry / 58) | 0;
+        }
+        while (carry > 0) {
+            digits.push(carry % 58);
+            carry = (carry / 58) | 0;
+        }
+    }
+    let out = "1".repeat(zeros);
+    for (let i = digits.length - 1; i >= 0; i--) {
+        out += BASE58_ALPHABET[digits[i]];
+    }
+    return out;
+}
+/** Decode a base58-btc string (no multibase prefix) to raw bytes. */
+export function base58btcDecode(input) {
+    if (input.length === 0)
+        return new Uint8Array(0);
+    let zeros = 0;
+    while (zeros < input.length && input[zeros] === "1")
+        zeros++;
+    const bytes = [];
+    for (let i = zeros; i < input.length; i++) {
+        const value = BASE58_LOOKUP[input[i]];
+        if (value === undefined) {
+            throw new Error(`@dwk/vc: invalid base58 character "${input[i]}"`);
+        }
+        let carry = value;
+        for (let j = 0; j < bytes.length; j++) {
+            carry += bytes[j] * 58;
+            bytes[j] = carry & 0xff;
+            carry >>= 8;
+        }
+        while (carry > 0) {
+            bytes.push(carry & 0xff);
+            carry >>= 8;
+        }
+    }
+    const out = new Uint8Array(zeros + bytes.length);
+    for (let i = 0; i < bytes.length; i++) {
+        out[zeros + bytes.length - 1 - i] = bytes[i];
+    }
+    return out;
+}
+/** Base64url-encode bytes without padding. */
+export function base64urlEncode(bytes) {
+    let binary = "";
+    for (const byte of bytes)
+        binary += String.fromCharCode(byte);
+    return btoa(binary)
+        .replace(/\+/g, "-")
+        .replace(/\//g, "_")
+        .replace(/=+$/, "");
+}
+/** Decode a base64url string (padded or not) to bytes. */
+export function base64urlDecode(input) {
+    const b64 = input.replace(/-/g, "+").replace(/_/g, "/");
+    const padded = b64.length % 4 === 0 ? b64 : b64 + "=".repeat(4 - (b64.length % 4));
+    const binary = atob(padded);
+    const bytes = new Uint8Array(binary.length);
+    for (let i = 0; i < binary.length; i++)
+        bytes[i] = binary.charCodeAt(i);
+    return bytes;
+}
+/** Encode bytes as a multibase base58-btc string (`z…`). */
+export function encodeMultibaseBase58btc(bytes) {
+    return MULTIBASE_BASE58BTC + base58btcEncode(bytes);
+}
+/** Encode bytes as a multibase base64url string (`u…`). */
+export function encodeMultibaseBase64url(bytes) {
+    return MULTIBASE_BASE64URL + base64urlEncode(bytes);
+}
+/**
+ * Decode a multibase string, dispatching on its prefix. Supports base58-btc
+ * (`z`) and base64url (`u`) — the two encodings the VC suite emits.
+ */
+export function decodeMultibase(input) {
+    if (input.length === 0) {
+        throw new Error("@dwk/vc: empty multibase value");
+    }
+    const prefix = input[0];
+    const rest = input.slice(1);
+    if (prefix === MULTIBASE_BASE58BTC)
+        return base58btcDecode(rest);
+    if (prefix === MULTIBASE_BASE64URL)
+        return base64urlDecode(rest);
+    throw new Error(`@dwk/vc: unsupported multibase prefix "${prefix ?? ""}"`);
+}
+/**
+ * Encode a raw Ed25519 public key (32 bytes) as a `Multikey`
+ * `publicKeyMultibase` value: multibase base58-btc over the
+ * multicodec-prefixed key.
+ */
+export function encodeEd25519Multikey(rawPublicKey) {
+    if (rawPublicKey.length !== 32) {
+        throw new Error(`@dwk/vc: Ed25519 public key must be 32 bytes, got ${rawPublicKey.length}`);
+    }
+    const prefixed = new Uint8Array(MULTICODEC_ED25519_PUB.length + rawPublicKey.length);
+    prefixed.set(MULTICODEC_ED25519_PUB, 0);
+    prefixed.set(rawPublicKey, MULTICODEC_ED25519_PUB.length);
+    return encodeMultibaseBase58btc(prefixed);
+}
+/**
+ * Decode a `Multikey` `publicKeyMultibase` value into its raw key bytes,
+ * validating the multicodec prefix. Only Ed25519 is supported as a Multikey;
+ * other key types are published as `publicKeyJwk` instead.
+ */
+export function decodeMultikey(publicKeyMultibase) {
+    const bytes = decodeMultibase(publicKeyMultibase);
+    if (bytes.length === MULTICODEC_ED25519_PUB.length + 32 &&
+        bytes[0] === MULTICODEC_ED25519_PUB[0] &&
+        bytes[1] === MULTICODEC_ED25519_PUB[1]) {
+        return {
+            keyType: "Ed25519",
+            rawPublicKey: bytes.slice(MULTICODEC_ED25519_PUB.length),
+        };
+    }
+    throw new Error("@dwk/vc: unsupported or malformed Multikey prefix");
+}
+//# sourceMappingURL=multibase.js.map

package/dist/multibase.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"multibase.js","sourceRoot":"","sources":["../src/multibase.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,MAAM,eAAe,GACnB,4DAA4D,CAAC;AAE/D,kDAAkD;AAClD,MAAM,aAAa,GAAqC,CAAC,GAAG,EAAE;IAC5D,MAAM,GAAG,GAA2B,EAAE,CAAC;IACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,eAAe,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAChD,GAAG,CAAC,eAAe,CAAC,CAAC,CAAE,CAAC,GAAG,CAAC,CAAC;IAC/B,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC,CAAC,EAAE,CAAC;AAEL,2DAA2D;AAC3D,MAAM,CAAC,MAAM,mBAAmB,GAAG,GAAG,CAAC;AACvC,MAAM,CAAC,MAAM,mBAAmB,GAAG,GAAG,CAAC;AAEvC;;;GAGG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG,UAAU,CAAC,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;AAEhE,4DAA4D;AAC5D,MAAM,UAAU,eAAe,CAAC,KAAiB;IAC/C,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAElC,yDAAyD;IACzD,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,OAAO,KAAK,GAAG,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC;QAAE,KAAK,EAAE,CAAC;IAE3D,4EAA4E;IAC5E,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,KAAK,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC1C,IAAI,KAAK,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;QACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACvC,KAAK,IAAI,MAAM,CAAC,CAAC,CAAE,IAAI,CAAC,CAAC;YACzB,MAAM,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,EAAE,CAAC;YACvB,KAAK,GAAG,CAAC,KAAK,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;QACD,OAAO,KAAK,GAAG,CAAC,EAAE,CAAC;YACjB,MAAM,CAAC,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC,CAAC;YACxB,KAAK,GAAG,CAAC,KAAK,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,IAAI,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5C,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC,CAAE,CAAC,CAAC;IACrC,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,qEAAqE;AACrE,MAAM,UAAU,eAAe,CAAC,KAAa;IAC3C,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;IAEjD,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,OAAO,KAAK,GAAG,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,GAAG;QAAE,KAAK,EAAE,CAAC;IAE7D,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,IAAI,CAAC,GAAG,KAAK,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC1C,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,CAAC;QACvC,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,sCAAsC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,KAAK,GAAG,KAAK,CAAC;QAClB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,KAAK,IAAI,KAAK,CAAC,CAAC,CAAE,GAAG,EAAE,CAAC;YACxB,KAAK,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,IAAI,CAAC;YACxB,KAAK,KAAK,CAAC,CAAC;QACd,CAAC;QACD,OAAO,KAAK,GAAG,CAAC,EAAE,CAAC;YACjB,KAAK,CAAC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,CAAC;YACzB,KAAK,KAAK,CAAC,CAAC;QACd,CAAC;IACH,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;IACjD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,GAAG,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC,GAAG,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;IAChD,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,8CAA8C;AAC9C,MAAM,UAAU,eAAe,CAAC,KAAiB;IAC/C,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,MAAM,IAAI,IAAI,KAAK;QAAE,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IAC9D,OAAO,IAAI,CAAC,MAAM,CAAC;SAChB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACxB,CAAC;AAED,0DAA0D;AAC1D,MAAM,UAAU,eAAe,CAAC,KAAa;IAC3C,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IACxD,MAAM,MAAM,GACV,GAAG,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;IACtE,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;IAC5B,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC5C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,KAAK,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;IACxE,OAAO,KAAK,CAAC;AACf,CAAC;AAED,4DAA4D;AAC5D,MAAM,UAAU,wBAAwB,CAAC,KAAiB;IACxD,OAAO,mBAAmB,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;AACtD,CAAC;AAED,2DAA2D;AAC3D,MAAM,UAAU,wBAAwB,CAAC,KAAiB;IACxD,OAAO,mBAAmB,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;AACtD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,eAAe,CAAC,KAAa;IAC3C,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvB,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACpD,CAAC;IACD,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IACxB,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC5B,IAAI,MAAM,KAAK,mBAAmB;QAAE,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC;IACjE,IAAI,MAAM,KAAK,mBAAmB;QAAE,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC;IACjE,MAAM,IAAI,KAAK,CAAC,0CAA0C,MAAM,IAAI,EAAE,GAAG,CAAC,CAAC;AAC7E,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,qBAAqB,CAAC,YAAwB;IAC5D,IAAI,YAAY,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CACb,qDAAqD,YAAY,CAAC,MAAM,EAAE,CAC3E,CAAC;IACJ,CAAC;IACD,MAAM,QAAQ,GAAG,IAAI,UAAU,CAC7B,sBAAsB,CAAC,MAAM,GAAG,YAAY,CAAC,MAAM,CACpD,CAAC;IACF,QAAQ,CAAC,GAAG,CAAC,sBAAsB,EAAE,CAAC,CAAC,CAAC;IACxC,QAAQ,CAAC,GAAG,CAAC,YAAY,EAAE,sBAAsB,CAAC,MAAM,CAAC,CAAC;IAC1D,OAAO,wBAAwB,CAAC,QAAQ,CAAC,CAAC;AAC5C,CAAC;AAQD;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAC,kBAA0B;IACvD,MAAM,KAAK,GAAG,eAAe,CAAC,kBAAkB,CAAC,CAAC;IAClD,IACE,KAAK,CAAC,MAAM,KAAK,sBAAsB,CAAC,MAAM,GAAG,EAAE;QACnD,KAAK,CAAC,CAAC,CAAC,KAAK,sBAAsB,CAAC,CAAC,CAAC;QACtC,KAAK,CAAC,CAAC,CAAC,KAAK,sBAAsB,CAAC,CAAC,CAAC,EACtC,CAAC;QACD,OAAO;YACL,OAAO,EAAE,SAAS;YAClB,YAAY,EAAE,KAAK,CAAC,KAAK,CAAC,sBAAsB,CAAC,MAAM,CAAC;SACzD,CAAC;IACJ,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;AACvE,CAAC"}

package/dist/status-list.d.ts

@@ -0,0 +1,116 @@
+/**
+ * Bitstring Status List support: the encoded-list codec, credential/entry
+ * builders, and a D1-backed authority for flipping a credential's status.
+ *
+ * A status list is a GZIP-compressed bitstring, multibase base64url-encoded,
+ * published inside a `BitstringStatusListCredential`. A credential opts in by
+ * carrying a `BitstringStatusListEntry` that points at a list and an index;
+ * verifiers read the bit at that index. Flipping a bit (revoking, suspending) is
+ * stateful and security-sensitive, so the authoritative bits live in **D1** — a
+ * strongly-consistent store — never KV (see `spec/non-functional-requirements.md`).
+ *
+ * The codec and builders are pure (GZIP via `CompressionStream`, available under
+ * both Node and workerd); only {@link createVcStatusStore} touches a binding.
+ *
+ * @see https://www.w3.org/TR/vc-bitstring-status-list/
+ */
+import type { JsonObject } from "./data-integrity";
+/**
+ * The minimum bitstring length the spec mandates (131,072 bits / 16 KB), chosen
+ * so an individual entry's index does not leak which credential it refers to.
+ */
+export declare const DEFAULT_STATUS_LIST_LENGTH = 131072;
+export declare const BITSTRING_STATUS_LIST_CREDENTIAL_TYPE = "BitstringStatusListCredential";
+export declare const BITSTRING_STATUS_LIST_ENTRY_TYPE = "BitstringStatusListEntry";
+export declare const BITSTRING_STATUS_LIST_SUBJECT_TYPE = "BitstringStatusList";
+/** A status purpose. `revocation` is permanent; `suspension` is reversible. */
+export type StatusPurpose = "revocation" | "suspension" | (string & {});
+/**
+ * A `statusPurpose` value as it appears on a credential or entry. The Bitstring
+ * Status List spec allows "one or more" purposes, so a single purpose or an
+ * array of them are both valid.
+ */
+export type StatusPurposeValue = StatusPurpose | readonly StatusPurpose[];
+/** Get the bit at `index` in a most-significant-bit-first bitstring. */
+export declare function getBit(bits: Uint8Array, index: number): boolean;
+/** Set the bit at `index` in a most-significant-bit-first bitstring. */
+export declare function setBit(bits: Uint8Array, index: number, value: boolean): void;
+/** GZIP-compress a bitstring and multibase base64url-encode it (`encodedList`). */
+export declare function encodeBitstring(bits: Uint8Array): Promise<string>;
+/** Decode an `encodedList` (multibase base64url + GZIP) back to its bitstring. */
+export declare function decodeBitstring(encodedList: string): Promise<Uint8Array>;
+/**
+ * Build an `encodedList` of `length` bits with the given indices set to 1.
+ * `length` is the bit count (rounded up to whole bytes).
+ */
+export declare function buildEncodedList(setIndices: Iterable<number>, length?: number): Promise<string>;
+/** Options for {@link buildStatusListCredential}. */
+export interface StatusListCredentialOptions {
+    /** The status list credential's id (a URL). */
+    readonly id: string;
+    /** The status purpose(s) this list tracks (one or more). */
+    readonly statusPurpose: StatusPurposeValue;
+    /** The pre-built `encodedList` value. */
+    readonly encodedList: string;
+    /** The issuer (string or object with id). */
+    readonly issuer: string | (JsonObject & {
+        id: string;
+    });
+    /** `validFrom` (XSD dateTime). Defaults to now when omitted. */
+    readonly validFrom?: Date | string;
+    /**
+     * `validUntil` (XSD dateTime). Bounds how long a verifier may treat the
+     * cached status as authoritative.
+     */
+    readonly validUntil?: Date | string;
+    /**
+     * Cache time-to-live in milliseconds, advertised on both the credential and
+     * its status-list subject so verifiers can bound status caching.
+     */
+    readonly ttl?: number;
+}
+/**
+ * Assemble an **unsigned** `BitstringStatusListCredential`. The caller signs it
+ * with {@link ./data-integrity.addProof} before publishing.
+ *
+ * Per the Bitstring Status List spec, `validFrom`/`validUntil`/`ttl` bound how
+ * long the published status may be cached; `validUntil` and `ttl` are emitted on
+ * the credential (and `ttl` also on the subject) when supplied.
+ */
+export declare function buildStatusListCredential(options: StatusListCredentialOptions): JsonObject;
+/** Build a `credentialStatus` entry referencing a list index. */
+export declare function buildStatusEntry(options: {
+    readonly statusListCredential: string;
+    readonly statusListIndex: number;
+    readonly statusPurpose: StatusPurposeValue;
+    readonly id?: string;
+}): JsonObject;
+/** Read a `statusListIndex` from a credential's `credentialStatus` entry. */
+export declare function statusEntryIndex(entry: JsonObject): number | undefined;
+/** Locate a `credentialStatus` entry for a purpose on a credential. */
+export declare function findStatusEntry(credential: JsonObject, statusPurpose: StatusPurpose): JsonObject | undefined;
+/** Cloudflare bindings required by the D1-backed status store. */
+export interface VcStatusStoreEnv {
+    /** D1 database holding per-list status bits and index allocations. */
+    readonly VC_STATUS_DB: D1Database;
+}
+/** Authoritative store for credential status bits, backed by D1. */
+export interface VcStatusStore {
+    /** Create the schema if absent. Idempotent. */
+    init(): Promise<void>;
+    /** Allocate and return the next unused index for a list + purpose. */
+    allocateIndex(listId: string, statusPurpose: StatusPurpose): Promise<number>;
+    /** Set the status bit at an index (e.g. revoke). */
+    setStatus(listId: string, statusPurpose: StatusPurpose, index: number, value: boolean): Promise<void>;
+    /** Read the status bit at an index (defaults to `false`/unset). */
+    getStatus(listId: string, statusPurpose: StatusPurpose, index: number): Promise<boolean>;
+    /** The set (value-1) indices for a list + purpose, ascending. */
+    setIndices(listId: string, statusPurpose: StatusPurpose): Promise<number[]>;
+}
+/**
+ * Create the D1-backed {@link VcStatusStore}. Fails loudly if the required
+ * `VC_STATUS_DB` binding is missing — no silent degradation (composition
+ * contract).
+ */
+export declare function createVcStatusStore(env: VcStatusStoreEnv): VcStatusStore;
+//# sourceMappingURL=status-list.d.ts.map