@gera-services/mcp-gera-verify 1.1.0 → 1.2.0

package/README.md

@@ -41,6 +41,8 @@ with **no backend, no network, no auth**.
 | `get_vouch_public_key` | Returns the Ed25519 public key + `key_id` + verification recipe so **any party can independently verify** an `issue_attestation` receipt without trusting the transport. |
 | `issue_mandate` | **Gera Agent Mandate.** A human/business grants an agent a scoped, revocable, **Ed25519-signed spend mandate** (cap, currency, merchant allowlist, categories, expiry). Pure authorization — no money moves. |
 | `verify_mandate` | Verify a mandate before honouring an action: checks signature, expiry, spend cap, and merchant/category scope against the intended action. **Fails closed** — forged/expired/over-cap/out-of-scope all return `valid:false` with reasons. |
+| `issue_receipt` | **Gera Ledger.** After an agent acts, mint a **signed receipt** of what happened — optionally linking the Vouch attestation + Agent Mandate it acted under. A verifiable proof-of-action (not a settlement). |
+| `verify_receipt` | Verify a receipt's Ed25519 signature against the Gera issuer key — confirms Gera recorded the action, unaltered. Fails closed. |
 
 A typical agent flow: `check_business_trust` (or `get_trust_summary`) → drill
 into `lookup_food_hygiene` / `lookup_care_rating` / `verify_provider` for the

package/dist/server.js

@@ -23,7 +23,7 @@ import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
 import { z } from 'zod';
 import { fhrs, cqc, doctors, providers, findByName, norm, } from './data.js';
-import { signAttestation, publicKeyInfo } from './sign.js';
+import { signAttestation, verifyAttestation, publicKeyInfo } from './sign.js';
 import { checkMandate } from './mandate.js';
 function asText(payload) {
     return {
@@ -464,6 +464,73 @@ export function registerTools(server) {
         const result = checkMandate(mandate, signature_b64url, { amount, merchant, category });
         return asText({ ...result, honesty_note: HONESTY_NOTE });
     });
+    // ── Tool 10: issue_receipt (Gera Ledger) ──────────────────────────────────
+    // Completes the spine chain (verify -> vouch -> mandate -> RECEIPT): once an
+    // agent takes an action, it mints a cryptographically signed receipt that the
+    // action happened, optionally linking the attestation/mandate it acted under.
+    // A verifiable proof-of-action; the hosted append-only registry + dispute
+    // resolution is roadmap (this is the stateless signed-receipt primitive).
+    server.registerTool('issue_receipt', {
+        title: 'Gera Ledger: issue a signed receipt for a completed agent action',
+        description: 'After an AI agent acts (books, pays, dispatches), mint a cryptographically signed receipt recording what happened, optionally referencing the Vouch attestation and/or Agent Mandate it acted under. Any party verifies it with verify_receipt + the public key from get_vouch_public_key. A verifiable proof-of-action — not a settlement; Gera moves no money here.',
+        inputSchema: {
+            action: z.string().describe('What the agent did, e.g. "booked a cleaner".'),
+            agent_id: z.string().describe('Identifier of the acting agent.'),
+            subject: z.string().describe('Who/what the action was taken on (merchant, provider, counterparty).'),
+            outcome: z.enum(['completed', 'failed', 'pending']).optional().describe('Action outcome. Defaults to completed.'),
+            amount: z.number().optional().describe('Amount involved, if any.'),
+            currency: z.string().optional().describe('ISO currency code. Defaults to GBP when amount is set.'),
+            mandate_signature: z.string().optional().describe('The mandate signature this action was authorised under (links the receipt to its mandate).'),
+            attestation_signature: z.string().optional().describe('The Vouch attestation signature relied on (links the receipt to its diligence).'),
+            evidence: z.array(z.string()).optional().describe('Evidence references (URLs, geo/photo/check-in IDs). Stored verbatim, not validated.'),
+            occurred_at: z.string().optional().describe('ISO 8601 time the action occurred. Defaults to now.'),
+        },
+    }, async ({ action, agent_id, subject, outcome, amount, currency, mandate_signature, attestation_signature, evidence, occurred_at }) => {
+        const now = new Date();
+        const receipt = {
+            receipt_version: '0.1',
+            issuer: 'Gera Ledger — a Gera Systems product (gera.services)',
+            action,
+            agent_id,
+            subject,
+            outcome: outcome ?? 'completed',
+            amount: amount ?? null,
+            currency: amount != null ? currency ?? 'GBP' : null,
+            references: {
+                mandate_signature: mandate_signature ?? null,
+                attestation_signature: attestation_signature ?? null,
+            },
+            evidence: evidence ?? [],
+            occurred_at: occurred_at ?? now.toISOString(),
+            issued_at: now.toISOString(),
+        };
+        const signature = signAttestation(receipt);
+        return asText({
+            receipt,
+            signature,
+            verify: 'Pass `receipt` + `signature.signature_b64url` to verify_receipt. Public key from get_vouch_public_key.',
+            note: 'A signed receipt proves Gera recorded this action as stated, as of issued_at. It is a proof-of-action, not a settlement or guarantee. A hosted, queryable append-only ledger + dispute resolution is on the roadmap.',
+        });
+    });
+    // ── Tool 11: verify_receipt ───────────────────────────────────────────────
+    server.registerTool('verify_receipt', {
+        title: 'Gera Ledger: verify a signed action receipt',
+        description: 'Verify a receipt from issue_receipt: checks the Ed25519 signature against the Gera issuer key. Returns signature_valid plus the receipt, so any party can confirm Gera recorded this action without trusting the transport. Fails closed on any alteration.',
+        inputSchema: {
+            receipt: z.record(z.any()).describe('The receipt object returned by issue_receipt.'),
+            signature_b64url: z.string().describe('The signature.signature_b64url from issue_receipt.'),
+        },
+    }, async ({ receipt, signature_b64url }) => {
+        const signature_valid = verifyAttestation(receipt, signature_b64url);
+        return asText({
+            signature_valid,
+            receipt,
+            result: signature_valid
+                ? 'Valid: Gera recorded this action as stated; the receipt has not been altered.'
+                : 'INVALID: signature does not verify — the receipt is forged or altered.',
+            honesty_note: HONESTY_NOTE,
+        });
+    });
 }
 /**
  * Construct a fully-configured Gera Verify McpServer (all tools registered).

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gera-services/mcp-gera-verify",
-  "version": "1.1.0",
+  "version": "1.2.0",
   "description": "Gera Verify MCP server — \"Proof-of-Real\": let AI agents check if a UK business / food establishment / care provider is real and how trustworthy it is, using real verified FSA food-hygiene, CQC care-registry and Gera verified-provider data. Offline, source-attributed, no auth. A Gera Systems product.",
   "license": "MIT",
   "type": "module",

package/server.json

@@ -2,7 +2,7 @@
   "$schema": "https://static.modelcontextprotocol.io/schemas/2025-12-11/server.schema.json",
   "name": "io.github.geraservicesuk/mcp-gera-verify",
   "description": "Verify if a UK business, food establishment or care provider is real (FSA, CQC and Gera data), and issue a cryptographically signed attestation an AI agent can present before it acts (Gera Vouch).",
-  "version": "1.1.0",
+  "version": "1.2.0",
   "repository": {
     "url": "https://github.com/geraservicesuk/globetura",
     "source": "github",
@@ -13,7 +13,7 @@
     {
       "registryType": "npm",
       "identifier": "@gera-services/mcp-gera-verify",
-      "version": "1.1.0",
+      "version": "1.2.0",
       "transport": {
         "type": "stdio"
       }