@keytrace/runner 0.0.10 → 0.0.12

package/dist/serviceProviders/tangled.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tangled.js","sourceRoot":"","sources":["../../src/serviceProviders/tangled.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,MAAM,OAAO,GAAoB;IAC/B,EAAE,EAAE,SAAS;IACb,IAAI,EAAE,SAAS;IACf,QAAQ,EAAE,qBAAqB;IAE/B,+EAA+E;IAC/E,KAAK,EAAE,4DAA4D;IAEnE,WAAW,EAAE,KAAK;IAElB,EAAE,EAAE;QACF,WAAW,EAAE,2BAA2B;QACxC,IAAI,EAAE,SAAS;QACf,WAAW,EAAE,KAAK;QAClB,UAAU,EAAE,YAAY;QACxB,gBAAgB,EAAE,gDAAgD;QAClE,YAAY,EAAE;YACZ,kFAAkF;YAClF,+BAA+B;YAC/B,oDAAoD;YACpD,yCAAyC;SAC1C;QACD,aAAa,EAAE,wBAAwB;KACxC;IAED,UAAU,CAAC,GAAG,EAAE,KAAK;QACnB,MAAM,CAAC,EAAE,QAAQ,EAAE,QAAQ,CAAC,GAAG,KAAK,CAAC;QAErC,OAAO;YACL,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI,QAAQ,EAAE;gBACvB,GAAG,EAAE,uBAAuB,QAAQ,EAAE;aACvC;YACD,KAAK,EAAE;gBACL,OAAO,EAAE;oBACP,GAAG,EAAE,+BAA+B,QAAQ,IAAI,QAAQ,MAAM;oBAC9D,OAAO,EAAE,MAAM;oBACf,MAAM,EAAE,MAAM;iBACf;gBACD,MAAM,EAAE;oBACN;wBACE,IAAI,EAAE,CAAC,KAAK,CAAC;wBACb,QAAQ,EAAE,UAAU;wBACpB,MAAM,EAAE,MAAM;qBACf;iBACF;aACF;SACF,CAAC;IACJ,CAAC;IAED,WAAW,CAAC,IAAI,EAAE,KAAK;QACrB,MAAM,CAAC,EAAE,QAAQ,CAAC,GAAG,KAAK,CAAC;QAE3B,OAAO;YACL,OAAO,EAAE,QAAQ;YACjB,UAAU,EAAE,uBAAuB,QAAQ,EAAE;SAC9C,CAAC;IACJ,CAAC;IAED,YAAY,CAAC,GAAG;QACd,OAAO,sCAAsC,GAAG,EAAE,CAAC;IACrD,CAAC;IAED,gBAAgB;QACd,OAAO,oFAAoF,CAAC;IAC9F,CAAC;IAED,KAAK,EAAE;QACL,EAAE,GAAG,EAAE,6CAA6C,EAAE,WAAW,EAAE,IAAI,EAAE;QACzE,EAAE,GAAG,EAAE,mDAAmD,EAAE,WAAW,EAAE,IAAI,EAAE;QAC/E,EAAE,GAAG,EAAE,8CAA8C,EAAE,WAAW,EAAE,IAAI,EAAE;QAC1E,EAAE,GAAG,EAAE,2BAA2B,EAAE,WAAW,EAAE,KAAK,EAAE;QACxD,EAAE,GAAG,EAAE,0BAA0B,EAAE,WAAW,EAAE,KAAK,EAAE;KACxD;CACF,CAAC;AAEF,eAAe,OAAO,CAAC"}

package/dist/serviceProviders/types.d.ts

@@ -49,6 +49,21 @@ export interface ProcessedURI {
         target: ProofTarget[];
     };
 }
+/**
+ * An additional input field for the add claim wizard (beyond the main claim URI)
+ */
+export interface ExtraInput {
+    /** Unique key used as placeholder in templates, e.g. "fingerprint" → {fingerprint} */
+    key: string;
+    /** Label displayed above the input */
+    label: string;
+    /** Placeholder text */
+    placeholder: string;
+    /** Optional regex pattern for validation */
+    pattern?: string;
+    /** Validation error message shown when pattern doesn't match */
+    patternError?: string;
+}
 /**
  * UI configuration for the add claim wizard
  */
@@ -67,6 +82,10 @@ export interface ServiceProviderUI {
     instructions: string[];
     /** Template for proof content. Supports {did} and {handle} placeholders */
     proofTemplate: string;
+    /** Additional input fields beyond the main claim URI */
+    extraInputs?: ExtraInput[];
+    /** How to render the icon: "badge" (in circle bg, default) or "raw" (standalone SVG) */
+    iconDisplay?: "badge" | "raw";
 }
 /**
  * A service provider that can verify identity claims

package/dist/serviceProviders/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/serviceProviders/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,eAAe,CAAC;IAC1B,KAAK,EAAE,gBAAgB,CAAC;IACxB,WAAW,EAAE,OAAO,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,uFAAuF;IACvF,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,uDAAuD;IACvD,QAAQ,EAAE,UAAU,GAAG,QAAQ,GAAG,YAAY,CAAC;IAC/C,6BAA6B;IAC7B,MAAM,EAAE,MAAM,GAAG,KAAK,GAAG,MAAM,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,uCAAuC;IACvC,GAAG,EAAE,MAAM,CAAC;IACZ,mDAAmD;IACnD,OAAO,EAAE,MAAM,CAAC;IAChB,+BAA+B;IAC/B,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;IACxB,+BAA+B;IAC/B,OAAO,CAAC,EAAE;QACR,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAClC,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,2BAA2B;IAC3B,OAAO,EAAE;QACP,6DAA6D;QAC7D,OAAO,EAAE,MAAM,CAAC;QAChB,yCAAyC;QACzC,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;IACF,wCAAwC;IACxC,KAAK,EAAE;QACL,OAAO,EAAE,YAAY,CAAC;QACtB,MAAM,EAAE,WAAW,EAAE,CAAC;KACvB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,4EAA4E;IAC5E,WAAW,EAAE,MAAM,CAAC;IACpB,iDAAiD;IACjD,IAAI,EAAE,MAAM,CAAC;IACb,0CAA0C;IAC1C,UAAU,EAAE,MAAM,CAAC;IACnB,+CAA+C;IAC/C,gBAAgB,EAAE,MAAM,CAAC;IACzB,4FAA4F;IAC5F,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,qDAAqD;IACrD,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,2EAA2E;IAC3E,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,mBAAmB;IACnB,QAAQ,EAAE,MAAM,CAAC;IAEjB,gCAAgC;IAChC,KAAK,EAAE,MAAM,CAAC;IAEd,iFAAiF;IACjF,WAAW,CAAC,EAAE,OAAO,CAAC;IAEtB,gDAAgD;IAChD,EAAE,EAAE,iBAAiB,CAAC;IAEtB,mDAAmD;IACnD,UAAU,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,gBAAgB,GAAG,YAAY,CAAC;IAE/D,wEAAwE;IACxE,WAAW,CAAC,CACV,IAAI,EAAE,OAAO,EACb,KAAK,EAAE,gBAAgB,GACtB;QACD,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,CAAC;IAEF,2DAA2D;IAC3D,YAAY,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAEnD,+DAA+D;IAC/D,gBAAgB,CAAC,CAAC,KAAK,EAAE,gBAAgB,GAAG,MAAM,CAAC;IAEnD,gCAAgC;IAChC,KAAK,EAAE;QACL,GAAG,EAAE,MAAM,CAAC;QACZ,WAAW,EAAE,OAAO,CAAC;KACtB,EAAE,CAAC;CACL"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/serviceProviders/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,eAAe,CAAC;IAC1B,KAAK,EAAE,gBAAgB,CAAC;IACxB,WAAW,EAAE,OAAO,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,uFAAuF;IACvF,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,uDAAuD;IACvD,QAAQ,EAAE,UAAU,GAAG,QAAQ,GAAG,YAAY,CAAC;IAC/C,6BAA6B;IAC7B,MAAM,EAAE,MAAM,GAAG,KAAK,GAAG,MAAM,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,uCAAuC;IACvC,GAAG,EAAE,MAAM,CAAC;IACZ,mDAAmD;IACnD,OAAO,EAAE,MAAM,CAAC;IAChB,+BAA+B;IAC/B,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;IACxB,+BAA+B;IAC/B,OAAO,CAAC,EAAE;QACR,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAClC,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,2BAA2B;IAC3B,OAAO,EAAE;QACP,6DAA6D;QAC7D,OAAO,EAAE,MAAM,CAAC;QAChB,yCAAyC;QACzC,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;IACF,wCAAwC;IACxC,KAAK,EAAE;QACL,OAAO,EAAE,YAAY,CAAC;QACtB,MAAM,EAAE,WAAW,EAAE,CAAC;KACvB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,sFAAsF;IACtF,GAAG,EAAE,MAAM,CAAC;IACZ,sCAAsC;IACtC,KAAK,EAAE,MAAM,CAAC;IACd,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,4CAA4C;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gEAAgE;IAChE,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,4EAA4E;IAC5E,WAAW,EAAE,MAAM,CAAC;IACpB,iDAAiD;IACjD,IAAI,EAAE,MAAM,CAAC;IACb,0CAA0C;IAC1C,UAAU,EAAE,MAAM,CAAC;IACnB,+CAA+C;IAC/C,gBAAgB,EAAE,MAAM,CAAC;IACzB,4FAA4F;IAC5F,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,qDAAqD;IACrD,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,2EAA2E;IAC3E,aAAa,EAAE,MAAM,CAAC;IACtB,wDAAwD;IACxD,WAAW,CAAC,EAAE,UAAU,EAAE,CAAC;IAC3B,wFAAwF;IACxF,WAAW,CAAC,EAAE,OAAO,GAAG,KAAK,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,mBAAmB;IACnB,QAAQ,EAAE,MAAM,CAAC;IAEjB,gCAAgC;IAChC,KAAK,EAAE,MAAM,CAAC;IAEd,iFAAiF;IACjF,WAAW,CAAC,EAAE,OAAO,CAAC;IAEtB,gDAAgD;IAChD,EAAE,EAAE,iBAAiB,CAAC;IAEtB,mDAAmD;IACnD,UAAU,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,gBAAgB,GAAG,YAAY,CAAC;IAE/D,wEAAwE;IACxE,WAAW,CAAC,CACV,IAAI,EAAE,OAAO,EACb,KAAK,EAAE,gBAAgB,GACtB;QACD,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,CAAC;IAEF,2DAA2D;IAC3D,YAAY,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAEnD,+DAA+D;IAC/D,gBAAgB,CAAC,CAAC,KAAK,EAAE,gBAAgB,GAAG,MAAM,CAAC;IAEnD,gCAAgC;IAChC,KAAK,EAAE;QACL,GAAG,EAAE,MAAM,CAAC;QACZ,WAAW,EAAE,OAAO,CAAC;KACtB,EAAE,CAAC;CACL"}

package/dist/types.d.ts

@@ -54,6 +54,7 @@ export interface ProfileData {
     did: string;
     handle: string;
     displayName?: string;
+    description?: string;
     avatar?: string;
     claims: ClaimData[];
 }
@@ -68,10 +69,21 @@ export interface ClaimData {
     createdAt: string;
     rkey: string;
     identity?: IdentityMetadata;
-    /** Signing key reference from the claim record */
+    /** @deprecated Use sigs instead. Retained for backwards compat with old records. */
     sig?: {
         src?: string;
     };
+    /** Signing key references from the claim record (new format) */
+    sigs?: Array<{
+        kid?: string;
+        src?: string;
+    }>;
+    /** Current verification status. Absent on legacy records, treated as "verified". */
+    status?: "verified" | "failed" | "retracted";
+    /** Timestamp of the most recent successful re-verification */
+    lastVerifiedAt?: string;
+    /** Timestamp when the claim last failed re-verification or was retracted */
+    failedAt?: string;
 }
 /**
  * Options for verification operations

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8BAA8B;IAC9B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,+BAA+B;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,uBAAuB;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,OAAO,EAAE,OAAO,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,+BAA+B;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,yCAAyC;IACzC,OAAO,EAAE,MAAM,CAAC;IAChB,wDAAwD;IACxD,OAAO,EAAE,MAAM,CAAC;IAChB,0CAA0C;IAC1C,OAAO,EAAE,iBAAiB,EAAE,CAAC;IAC7B,sDAAsD;IACtD,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,WAAW,CAAC;IACpB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,EAAE,IAAI,CAAC;IAChB,wDAAwD;IACxD,QAAQ,CAAC,EAAE,gBAAgB,CAAC;IAC5B,gEAAgE;IAChE,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,SAAS,EAAE,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,gBAAgB,CAAC;IAC5B,kDAAkD;IAClD,GAAG,CAAC,EAAE;QAAE,GAAG,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,2CAA2C;IAC3C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,8CAA8C;IAC9C,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,oDAAoD;IACpD,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yFAAyF;IACzF,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,mCAAmC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,yFAAyF;IACzF,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,oBAAY,WAAW;IACrB,IAAI,SAAS;IACb,OAAO,YAAY;IACnB,QAAQ,aAAa;IACrB,MAAM,WAAW;IACjB,KAAK,UAAU;CAChB;AAED,2EAA2E;AAC3E,MAAM,MAAM,OAAO,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,WAAW,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAC;AAE7E,0CAA0C;AAC1C,MAAM,WAAW,YAAY;IAC3B,uDAAuD;IACvD,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,6CAA6C;IAC7C,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,+CAA+C;AAC/C,MAAM,WAAW,YAAY;IAC3B,oDAAoD;IACpD,OAAO,EAAE,MAAM,CAAC;IAChB,yBAAyB;IACzB,GAAG,EAAE,MAAM,CAAC;IACZ,4BAA4B;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,kEAAkE;IAClE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,mDAAmD;AACnD,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,EAAE,UAAU,EAAE,CAAC;IACpB,6DAA6D;IAC7D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,2CAA2C;AAC3C,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IACjB,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,oCAAoC;AACpC,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,KAAK,GAAG,MAAM,GAAG,QAAQ,CAAC;IAChC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,yDAAyD;AACzD,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,6CAA6C;AAC7C,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,UAAU,GAAG,WAAW,GAAG,YAAY,GAAG,aAAa,GAAG,SAAS,CAAC;IAC5E,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,+CAA+C;AAC/C,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,gBAAgB,EAAE,CAAC;CAC3B;AAED,kCAAkC;AAClC,MAAM,WAAW,MAAM;IACrB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,WAAW,EAAE,CAAC;IACvB,YAAY,EAAE,kBAAkB,CAAC;IACjC,YAAY,EAAE,kBAAkB,CAAC;CAClC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8BAA8B;IAC9B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,+BAA+B;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,uBAAuB;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,OAAO,EAAE,OAAO,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,+BAA+B;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,yCAAyC;IACzC,OAAO,EAAE,MAAM,CAAC;IAChB,wDAAwD;IACxD,OAAO,EAAE,MAAM,CAAC;IAChB,0CAA0C;IAC1C,OAAO,EAAE,iBAAiB,EAAE,CAAC;IAC7B,sDAAsD;IACtD,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,WAAW,CAAC;IACpB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,EAAE,IAAI,CAAC;IAChB,wDAAwD;IACxD,QAAQ,CAAC,EAAE,gBAAgB,CAAC;IAC5B,gEAAgE;IAChE,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,SAAS,EAAE,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,gBAAgB,CAAC;IAC5B,oFAAoF;IACpF,GAAG,CAAC,EAAE;QAAE,GAAG,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACvB,gEAAgE;IAChE,IAAI,CAAC,EAAE,KAAK,CAAC;QAAE,GAAG,CAAC,EAAE,MAAM,CAAC;QAAC,GAAG,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC7C,oFAAoF;IACpF,MAAM,CAAC,EAAE,UAAU,GAAG,QAAQ,GAAG,WAAW,CAAC;IAC7C,8DAA8D;IAC9D,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,4EAA4E;IAC5E,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,2CAA2C;IAC3C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,8CAA8C;IAC9C,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,oDAAoD;IACpD,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yFAAyF;IACzF,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,mCAAmC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,yFAAyF;IACzF,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,oBAAY,WAAW;IACrB,IAAI,SAAS;IACb,OAAO,YAAY;IACnB,QAAQ,aAAa;IACrB,MAAM,WAAW;IACjB,KAAK,UAAU;CAChB;AAED,2EAA2E;AAC3E,MAAM,MAAM,OAAO,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,WAAW,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAC;AAE7E,0CAA0C;AAC1C,MAAM,WAAW,YAAY;IAC3B,uDAAuD;IACvD,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,6CAA6C;IAC7C,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,+CAA+C;AAC/C,MAAM,WAAW,YAAY;IAC3B,oDAAoD;IACpD,OAAO,EAAE,MAAM,CAAC;IAChB,yBAAyB;IACzB,GAAG,EAAE,MAAM,CAAC;IACZ,4BAA4B;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,kEAAkE;IAClE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,mDAAmD;AACnD,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,EAAE,UAAU,EAAE,CAAC;IACpB,6DAA6D;IAC7D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,2CAA2C;AAC3C,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IACjB,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,oCAAoC;AACpC,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,KAAK,GAAG,MAAM,GAAG,QAAQ,CAAC;IAChC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,yDAAyD;AACzD,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,6CAA6C;AAC7C,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,UAAU,GAAG,WAAW,GAAG,YAAY,GAAG,aAAa,GAAG,SAAS,CAAC;IAC5E,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,+CAA+C;AAC/C,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,gBAAgB,EAAE,CAAC;CAC3B;AAED,kCAAkC;AAClC,MAAM,WAAW,MAAM;IACrB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,WAAW,EAAE,CAAC;IACvB,YAAY,EAAE,kBAAkB,CAAC;IACjC,YAAY,EAAE,kBAAkB,CAAC;CAClC"}

package/dist/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAuGA;;GAEG;AACH,MAAM,CAAN,IAAY,WAMX;AAND,WAAY,WAAW;IACrB,4BAAa,CAAA;IACb,kCAAmB,CAAA;IACnB,oCAAqB,CAAA;IACrB,gCAAiB,CAAA;IACjB,8BAAe,CAAA;AACjB,CAAC,EANW,WAAW,KAAX,WAAW,QAMtB"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAgHA;;GAEG;AACH,MAAM,CAAN,IAAY,WAMX;AAND,WAAY,WAAW;IACrB,4BAAa,CAAA;IACb,kCAAmB,CAAA;IACnB,oCAAqB,CAAA;IACrB,gCAAiB,CAAA;IACjB,8BAAe,CAAA;AACjB,CAAC,EANW,WAAW,KAAX,WAAW,QAMtB"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@keytrace/runner",
-  "version": "0.0.10",
+  "version": "0.0.12",
   "files": [
     "src",
     "dist"

package/src/index.ts

@@ -40,6 +40,7 @@ export { dnsTxt } from "./actions/dns-txt.js";
 // Built-in recipes
 export { githubGistRecipe } from "./recipes/github-gist.js";
 export { dnsTxtRecipe } from "./recipes/dns-txt.js";
+export { tangledRecipe } from "./recipes/tangled.js";
 
 // Claim & Profile (from runner)
 export { createClaim, matchClaim, verifyClaim, isClaimAmbiguous, getMatchedProvider, isValidDid } from "./claim.js";
@@ -52,7 +53,7 @@ export { COLLECTION_NSID, DEFAULT_TIMEOUT, PUBLIC_API_URL, PLC_DIRECTORY_URL } f
 
 // Service providers
 export * as serviceProviders from "./serviceProviders/index.js";
-export type { ServiceProvider, ServiceProviderMatch, ServiceProviderUI, ProofTarget, ProofRequest, ProcessedURI } from "./serviceProviders/types.js";
+export type { ServiceProvider, ServiceProviderMatch, ServiceProviderUI, ExtraInput, ProofTarget, ProofRequest, ProcessedURI } from "./serviceProviders/types.js";
 
 // Fetchers
 export * as fetchers from "./fetchers/index.js";

package/src/profile.ts

@@ -7,6 +7,12 @@ import type { ProfileData, ClaimData, VerifyOptions, IdentityMetadata, ProfileOp
 /** Default trusted signer handles */
 const DEFAULT_TRUSTED_SIGNERS = ["keytrace.dev"];
 
+/** Find the attestation sig (kid starting with "attest:"), falling back to first sig or legacy sig */
+function getAttestSrc(sigs?: Array<{ kid?: string; src?: string }>, sig?: { src?: string }): string | undefined {
+  const attest = sigs?.find((s) => s.kid?.startsWith("attest:"));
+  return attest?.src ?? sigs?.[0]?.src ?? sig?.src;
+}
+
 /**
  * Extract the DID from an AT URI (at://did/collection/rkey)
  */
@@ -130,13 +136,14 @@ async function fetchWithAgent(agent: AtpAgent, did: string, opts?: ProfileOption
 
   // Fetch Bluesky profile for display info via public API (not PDS)
   // The PDS doesn't serve app.bsky.actor.getProfile - only the AppView does
-  let bskyProfile: { handle: string; displayName?: string; avatar?: string } | null = null;
+  let bskyProfile: { handle: string; displayName?: string; description?: string; avatar?: string } | null = null;
   try {
     const publicAgent = new AtpAgent({ service: PUBLIC_API_URL });
     const profileRes = await publicAgent.getProfile({ actor: did });
     bskyProfile = {
       handle: profileRes.data.handle,
       displayName: profileRes.data.displayName,
+      description: profileRes.data.description,
       avatar: profileRes.data.avatar,
     };
   } catch (err: unknown) {
@@ -147,6 +154,20 @@ async function fetchWithAgent(agent: AtpAgent, did: string, opts?: ProfileOption
     }
   }
 
+  // Fetch keytrace profile record (dev.keytrace.profile/self) for bio/displayName overrides
+  let ktProfile: { displayName?: string; bio?: string } | null = null;
+  try {
+    const record = await agent.com.atproto.repo.getRecord({
+      repo: did,
+      collection: "dev.keytrace.profile",
+      rkey: "self",
+    });
+    const value = record.data.value as { displayName?: string; bio?: string };
+    ktProfile = value;
+  } catch {
+    // No keytrace profile record — that's fine
+  }
+
   // List all claim records with cursor-based pagination
   const claims: ClaimData[] = [];
   try {
@@ -167,6 +188,10 @@ async function fetchWithAgent(agent: AtpAgent, did: string, opts?: ProfileOption
           createdAt?: string;
           identity?: IdentityMetadata;
           sig?: { src?: string };
+          sigs?: Array<{ kid?: string; src?: string }>;
+          status?: "verified" | "failed" | "retracted";
+          lastVerifiedAt?: string;
+          failedAt?: string;
         };
         if (value.claimUri) {
           claims.push({
@@ -177,7 +202,11 @@ async function fetchWithAgent(agent: AtpAgent, did: string, opts?: ProfileOption
             createdAt: value.createdAt ?? new Date().toISOString(),
             rkey: parseAtUriRkey(record.uri),
             identity: value.identity,
-            sig: value.sig,
+            sig: value.sigs?.find((s) => s.kid?.startsWith("attest:")) ?? value.sigs?.[0] ?? value.sig,
+            sigs: value.sigs,
+            status: value.status,
+            lastVerifiedAt: value.lastVerifiedAt,
+            failedAt: value.failedAt,
           });
         }
       }
@@ -194,7 +223,7 @@ async function fetchWithAgent(agent: AtpAgent, did: string, opts?: ProfileOption
   // Build claim instances, marking untrusted signers as FAILED
   const claimInstances = claims.map((c) => {
     const state = createClaim(c.uri, did);
-    const trustError = checkSignerTrust(c.sig?.src, trustedDids);
+    const trustError = checkSignerTrust(getAttestSrc(c.sigs, c.sig), trustedDids);
     if (trustError) {
       state.status = ClaimStatus.FAILED;
       state.errors.push(trustError);
@@ -205,7 +234,8 @@ async function fetchWithAgent(agent: AtpAgent, did: string, opts?: ProfileOption
   return {
     did,
     handle: bskyProfile?.handle ?? did,
-    displayName: bskyProfile?.displayName,
+    displayName: ktProfile?.displayName || bskyProfile?.displayName,
+    description: ktProfile?.bio || bskyProfile?.description,
     avatar: bskyProfile?.avatar,
     claims,
     claimInstances,
@@ -269,7 +299,7 @@ export async function verifyAllClaims(profile: FetchedProfile, opts?: VerifyOpti
 
       // Check signing key provenance
       const claimData = profile.claims[i];
-      const trustError = checkSignerTrust(claimData?.sig?.src, trustedDids);
+      const trustError = checkSignerTrust(claimData ? getAttestSrc(claimData.sigs, claimData.sig) : undefined, trustedDids);
       if (trustError) {
         claim.status = ClaimStatus.FAILED;
         claim.errors.push(trustError);

package/src/recipes/index.ts

@@ -1,2 +1,3 @@
 export { githubGistRecipe } from "./github-gist.js";
 export { dnsTxtRecipe } from "./dns-txt.js";
+export { tangledRecipe } from "./tangled.js";

package/src/recipes/tangled.ts

@@ -0,0 +1,48 @@
+import type { Recipe } from "../types.js";
+
+/**
+ * Built-in recipe: Tangled Account verification via string.
+ *
+ * The user creates a string (Tangled's gist equivalent) containing
+ * their DID, then provides the string URL for verification.
+ * Raw content is fetched from {stringUrl}/raw.
+ */
+export const tangledRecipe: Recipe = {
+  $type: "dev.keytrace.recipe",
+  type: "tangled",
+  version: 1,
+  displayName: "Tangled Account (via String)",
+  params: [
+    {
+      key: "stringUrl",
+      label: "String URL",
+      type: "url",
+      placeholder: "https://tangled.org/strings/username/abc123...",
+      pattern: "^https://tangled\\.org/strings/([^/]+)/([a-z0-9]+)/?$",
+      extractFrom: "^https://tangled\\.org/strings/([^/]+)/",
+    },
+  ],
+  instructions: {
+    steps: [
+      "Go to [tangled.org/strings](https://tangled.org/strings) and create a new string",
+      "Name the file `keytrace.json`",
+      "Paste the verification content below into the file",
+      "Save the string and paste the URL below",
+    ],
+    proofTemplate: '{\n  "did": "{did}"\n}',
+    proofLocation: "Public string on tangled.org",
+  },
+  verification: {
+    steps: [
+      {
+        action: "http-get",
+        url: "{stringUrl}/raw",
+      },
+      {
+        action: "json-path",
+        selector: "$.did",
+        expect: "equals:{did}",
+      },
+    ],
+  },
+};

package/src/serviceProviders/index.ts

@@ -3,9 +3,11 @@ import dns from "./dns.js";
 import activitypub from "./activitypub.js";
 import bsky from "./bsky.js";
 import npm from "./npm.js";
+import tangled from "./tangled.js";
+import pgp from "./pgp.js";
 import type { ServiceProvider, ServiceProviderMatch } from "./types.js";
 
-export type { ServiceProvider, ServiceProviderMatch, ServiceProviderUI, ProofTarget, ProofRequest, ProcessedURI } from "./types.js";
+export type { ServiceProvider, ServiceProviderMatch, ServiceProviderUI, ExtraInput, ProofTarget, ProofRequest, ProcessedURI } from "./types.js";
 
 const providers: Record<string, ServiceProvider> = {
   github,
@@ -13,6 +15,8 @@ const providers: Record<string, ServiceProvider> = {
   activitypub,
   bsky,
   npm,
+  tangled,
+  pgp,
 };
 
 /**
@@ -62,4 +66,4 @@ export function getProofTextForProvider(providerId: string, did: string, handle?
   return provider?.getProofText(did, handle);
 }
 
-export { github, dns, activitypub, bsky, npm };
+export { github, dns, activitypub, bsky, npm, tangled, pgp };

package/src/serviceProviders/npm.ts

@@ -28,6 +28,7 @@ const npm: ServiceProvider = {
   ui: {
     description: "Link via an npm package",
     icon: "npm",
+    iconDisplay: "raw",
     inputLabel: "npm Package URL",
     inputPlaceholder: "https://www.npmjs.com/package/keytrace-yourhandle",
     inputDefaultTemplate: "https://www.npmjs.com/package/keytrace-{slugHandle}",

package/src/serviceProviders/pgp.ts

@@ -0,0 +1,181 @@
+import type { ServiceProvider } from "./types.js";
+
+/**
+ * PGP Key service provider
+ *
+ * Users prove ownership of a PGP key by clearsigning a proof message
+ * containing their DID and fingerprint, then hosting it at a URL.
+ * The claim URI format is: pgp:https://...
+ *
+ * Supported proof hosting:
+ * - GitHub Gists (fetches via API)
+ * - Tangled Strings (fetches raw content)
+ * - Any other HTTPS URL (fetches as plain text)
+ */
+const pgp: ServiceProvider = {
+  id: "pgp",
+  name: "PGP Key",
+  homepage: "https://www.openpgp.org",
+
+  // Match pgp: prefixed URLs
+  reUri: /^pgp:(https:\/\/.+)$/,
+
+  isAmbiguous: false,
+
+  ui: {
+    description: "Prove ownership of a PGP key",
+    icon: "shield",
+    inputLabel: "Proof URL",
+    inputPlaceholder: "https://gist.github.com/username/abc123...",
+    instructions: [
+      "Install [GPG tools](https://gist.github.com/jfrobbins/5c2dbceb81c33afc5b0bcbe0d3343692#1-installing-gpg)",
+      "Enter your PGP fingerprint to set up the proof (run `gpg --fingerprint` to find it)",
+      "Copy the proof text and save it to a file (e.g. `proof.txt`)",
+      "Clearsign the file with your PGP key: `gpg --clearsign proof.txt`",
+      "Host the signed output (`proof.txt.asc`) at a public URL — a [GitHub Gist](https://gist.github.com) or [Tangled String](https://tangled.org/strings/new) works well",
+      "Paste the URL below",
+    ],
+    proofTemplate: "Verifying my PGP key on keytrace\n\ndid: {did}\nfingerprint: {fingerprint}",
+    extraInputs: [
+      {
+        key: "fingerprint",
+        label: "PGP Fingerprint",
+        placeholder: "AB12 CD34 EF56 7890 1234  5678 9ABC DEF0 1234 5678",
+        pattern: "^[A-Fa-f0-9 ]{16,}$",
+        patternError: "Enter a valid PGP fingerprint (hex characters)",
+      },
+    ],
+  },
+
+  processURI(uri, match) {
+    const [, proofUrl] = match;
+
+    // Detect hosting platform to choose fetch strategy
+    const gistMatch = proofUrl.match(/^https:\/\/gist\.github\.com\/([^/]+)\/([a-f0-9]+)\/?$/);
+    const tangledMatch = proofUrl.match(/^https:\/\/tangled\.org\/strings\/([^/]+)\/([a-z0-9]+)\/?$/);
+
+    if (gistMatch) {
+      const [, , gistId] = gistMatch;
+      return {
+        profile: {
+          display: "PGP Key",
+          uri: proofUrl,
+        },
+        proof: {
+          request: {
+            uri: `https://api.github.com/gists/${gistId}`,
+            fetcher: "http",
+            format: "json",
+            options: {
+              headers: { Accept: "application/vnd.github.v3+json" },
+            },
+          },
+          target: [{ path: ["files", "*", "content"], relation: "contains", format: "text" }],
+        },
+      };
+    }
+
+    if (tangledMatch) {
+      const [, username, stringId] = tangledMatch;
+      return {
+        profile: {
+          display: "PGP Key",
+          uri: proofUrl,
+        },
+        proof: {
+          request: {
+            uri: `https://tangled.org/strings/${username}/${stringId}/raw`,
+            fetcher: "http",
+            format: "text",
+          },
+          target: [{ path: [], relation: "contains", format: "text" }],
+        },
+      };
+    }
+
+    // Generic URL: fetch as plain text
+    return {
+      profile: {
+        display: "PGP Key",
+        uri: proofUrl,
+      },
+      proof: {
+        request: {
+          uri: proofUrl,
+          fetcher: "http",
+          format: "text",
+        },
+        target: [{ path: [], relation: "contains", format: "text" }],
+      },
+    };
+  },
+
+  postprocess(data, match) {
+    const [, proofUrl] = match;
+
+    // Try to extract fingerprint from the proof text
+    let text = "";
+    if (typeof data === "string") {
+      text = data;
+    } else if (data && typeof data === "object") {
+      // For gist JSON, search through file contents
+      const gist = data as { files?: Record<string, { content?: string }>; owner?: { avatar_url?: string; login?: string } };
+      if (gist.files) {
+        for (const file of Object.values(gist.files)) {
+          if (file.content) {
+            text += file.content + "\n";
+          }
+        }
+      }
+    }
+
+    const fpMatch = text.match(/fingerprint:\s*([A-Fa-f0-9 ]{16,})/);
+    const fingerprint = fpMatch ? fpMatch[1].replace(/\s+/g, "").toLowerCase() : undefined;
+
+    const result: {
+      subject?: string;
+      avatarUrl?: string;
+      profileUrl?: string;
+      displayName?: string;
+    } = {
+      subject: fingerprint,
+      profileUrl: proofUrl,
+      displayName: "PGP Key",
+    };
+
+    // Extract avatar from GitHub gists
+    const gistMatch = proofUrl.match(/^https:\/\/gist\.github\.com\/([^/]+)\//);
+    if (gistMatch && data && typeof data === "object") {
+      const gist = data as { owner?: { avatar_url?: string; login?: string } };
+      if (gist.owner?.avatar_url) {
+        result.avatarUrl = gist.owner.avatar_url;
+      }
+    }
+
+    // Extract username from Tangled strings
+    const tangledMatch = proofUrl.match(/^https:\/\/tangled\.org\/strings\/([^/]+)\//);
+    if (tangledMatch) {
+      result.displayName = `PGP Key (${tangledMatch[1]})`;
+    }
+
+    return result;
+  },
+
+  getProofText(did) {
+    return `Verifying my PGP key on keytrace\n\ndid: ${did}\nfingerprint: {fingerprint}`;
+  },
+
+  getProofLocation() {
+    return "Host the clearsigned proof at a public URL (e.g. a GitHub Gist)";
+  },
+
+  tests: [
+    { uri: "pgp:https://gist.github.com/alice/abc123def456", shouldMatch: true },
+    { uri: "pgp:https://example.com/proof.txt", shouldMatch: true },
+    { uri: "pgp:https://tangled.org/strings/alice/abc123", shouldMatch: true },
+    { uri: "https://gist.github.com/alice/abc123", shouldMatch: false },
+    { uri: "pgp:http://example.com/proof.txt", shouldMatch: false },
+  ],
+};
+
+export default pgp;

package/src/serviceProviders/tangled.ts

@@ -0,0 +1,87 @@
+import type { ServiceProvider } from "./types.js";
+
+/**
+ * Tangled service provider
+ *
+ * Users prove ownership of their tangled.org account by creating a
+ * "string" (Tangled's equivalent of a gist) containing their DID.
+ * URL format: https://tangled.org/strings/<username>/<stringId>
+ * Raw content: https://tangled.org/strings/<username>/<stringId>/raw
+ */
+const tangled: ServiceProvider = {
+  id: "tangled",
+  name: "Tangled",
+  homepage: "https://tangled.org",
+
+  // Match tangled.org string URLs: https://tangled.org/strings/username/stringId
+  reUri: /^https:\/\/tangled\.org\/strings\/([^/]+)\/([a-z0-9]+)\/?$/,
+
+  isAmbiguous: false,
+
+  ui: {
+    description: "Link via a Tangled string",
+    icon: "tangled",
+    iconDisplay: "raw",
+    inputLabel: "String URL",
+    inputPlaceholder: "https://tangled.org/strings/username/abc123...",
+    instructions: [
+      "Go to [tangled.org/strings](https://tangled.org/strings) and create a new string",
+      "Name the file `keytrace.json`",
+      "Paste the verification content below into the file",
+      "Save the string and paste the URL below",
+    ],
+    proofTemplate: '{\n  "did": "{did}"\n}',
+  },
+
+  processURI(uri, match) {
+    const [, username, stringId] = match;
+
+    return {
+      profile: {
+        display: `@${username}`,
+        uri: `https://tangled.org/${username}`,
+      },
+      proof: {
+        request: {
+          uri: `https://tangled.org/strings/${username}/${stringId}/raw`,
+          fetcher: "http",
+          format: "json",
+        },
+        target: [
+          {
+            path: ["did"],
+            relation: "contains",
+            format: "text",
+          },
+        ],
+      },
+    };
+  },
+
+  postprocess(data, match) {
+    const [, username] = match;
+
+    return {
+      subject: username,
+      profileUrl: `https://tangled.org/${username}`,
+    };
+  },
+
+  getProofText(did) {
+    return `Verifying my identity on keytrace: ${did}`;
+  },
+
+  getProofLocation() {
+    return `Create a string on tangled.org with a keytrace.json file containing the proof text`;
+  },
+
+  tests: [
+    { uri: "https://tangled.org/strings/alice/abc123def", shouldMatch: true },
+    { uri: "https://tangled.org/strings/orta.io/3melbs7rkoz22", shouldMatch: true },
+    { uri: "https://tangled.org/strings/alice/abc123def/", shouldMatch: true },
+    { uri: "https://tangled.org/alice", shouldMatch: false },
+    { uri: "https://github.com/alice", shouldMatch: false },
+  ],
+};
+
+export default tangled;

package/src/serviceProviders/types.ts

@@ -53,6 +53,22 @@ export interface ProcessedURI {
   };
 }
 
+/**
+ * An additional input field for the add claim wizard (beyond the main claim URI)
+ */
+export interface ExtraInput {
+  /** Unique key used as placeholder in templates, e.g. "fingerprint" → {fingerprint} */
+  key: string;
+  /** Label displayed above the input */
+  label: string;
+  /** Placeholder text */
+  placeholder: string;
+  /** Optional regex pattern for validation */
+  pattern?: string;
+  /** Validation error message shown when pattern doesn't match */
+  patternError?: string;
+}
+
 /**
  * UI configuration for the add claim wizard
  */
@@ -71,6 +87,10 @@ export interface ServiceProviderUI {
   instructions: string[];
   /** Template for proof content. Supports {did} and {handle} placeholders */
   proofTemplate: string;
+  /** Additional input fields beyond the main claim URI */
+  extraInputs?: ExtraInput[];
+  /** How to render the icon: "badge" (in circle bg, default) or "raw" (standalone SVG) */
+  iconDisplay?: "badge" | "raw";
 }
 
 /**

package/src/types.ts

@@ -58,6 +58,7 @@ export interface ProfileData {
   did: string;
   handle: string;
   displayName?: string;
+  description?: string;
   avatar?: string;
   claims: ClaimData[];
 }
@@ -73,8 +74,16 @@ export interface ClaimData {
   createdAt: string;
   rkey: string;
   identity?: IdentityMetadata;
-  /** Signing key reference from the claim record */
+  /** @deprecated Use sigs instead. Retained for backwards compat with old records. */
   sig?: { src?: string };
+  /** Signing key references from the claim record (new format) */
+  sigs?: Array<{ kid?: string; src?: string }>;
+  /** Current verification status. Absent on legacy records, treated as "verified". */
+  status?: "verified" | "failed" | "retracted";
+  /** Timestamp of the most recent successful re-verification */
+  lastVerifiedAt?: string;
+  /** Timestamp when the claim last failed re-verification or was retracted */
+  failedAt?: string;
 }
 
 /**