@kya-os/mcp-i-core 1.4.18 → 1.6.0

package/dist/index.d.ts

@@ -8,6 +8,7 @@ export { CryptoProvider, ClockProvider, FetchProvider, StorageProvider, NonceCac
 export { MemoryStorageProvider, MemoryNonceCacheProvider, MemoryIdentityProvider, } from "./providers/memory";
 export { MCPIRuntimeBase } from "./runtime/base";
 export type { RuntimeWithAccessControl } from "./runtime/base";
+export { CONSENT_UI_RESOURCE_URI } from "./runtime/ext-apps-constants";
 export type { IAuditLogger } from "./runtime/audit-logger";
 export * from "./utils";
 export { ToolProtectionService } from "./services/tool-protection.service";
@@ -55,6 +56,7 @@ export { DelegationGraphManager, createDelegationGraph, type DelegationNode, typ
 export { CascadingRevocationManager, createCascadingRevocationManager, type RevocationEvent, type RevocationHook, type CascadingRevocationOptions, } from "./delegation/cascading-revocation";
 export { MemoryStatusListStorage } from "./delegation/storage/memory-statuslist-storage";
 export { MemoryDelegationGraphStorage } from "./delegation/storage/memory-graph-storage";
+export { buildDelegationProofJWT, buildChainString, type DelegationProofOptions, type Ed25519PrivateJWK, } from "./delegation/outbound-proof";
 export { createDidKeyResolver, isEd25519DidKey, extractPublicKeyFromDidKey, publicKeyToJwk, resolveDidKeySync, } from "./delegation/did-key-resolver";
 export { base58Encode, base58Decode, isValidBase58 } from "./utils/base58";
 export { SchemaVerifier, createSchemaVerifier, type SchemaMetadata, type FieldComplianceResult, type SchemaComplianceReport, type FullComplianceReport, } from "./compliance/schema-verifier";
@@ -71,4 +73,7 @@ export { IdpTokenResolver } from "./identity/idp-token-resolver";
 export type { IdpTokenResolverConfig } from "./identity/idp-token-resolver";
 export type { IIdpTokenStorage, TokenUsageMetadata, IdpTokensWithMetadata, } from "./identity/idp-token-storage.interface";
 export { logger, createDefaultConsoleLogger, type Logger, type Level, } from "./logging";
+export { ProofGenerator, createProofResponse, extractCanonicalData, type ProofAgentIdentity, type ToolRequest, type ToolResponse, type ProofOptions, } from "./proof";
+export { SessionManager, createHandshakeRequest, validateHandshakeFormat, type SessionConfig, type HandshakeResult, } from "./session";
+export { verifyOrHints, hasSensitiveScopes, MemoryResumeTokenStore, type AuthHandshakeConfig, type VerifyOrHintsResult, type AgentReputation, type ResumeTokenStore, type DelegationVerifier, type VerifyDelegationResult, } from "./auth";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.js

@@ -20,8 +20,9 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.createStatusListManager = exports.StatusList2021Manager = exports.createDelegationVerifier = exports.DelegationCredentialVerifier = exports.createDelegationIssuer = exports.DelegationCredentialIssuer = exports.createDelegationErrorFormatter = exports.DelegationErrorFormatter = exports.OAuthRequiredError = exports.DelegationRequiredError = exports.NoOpToolProtectionCache = exports.InMemoryToolProtectionCache = exports.createProofVerificationError = exports.PROOF_VERIFICATION_ERROR_CODES = exports.ProofVerificationError = exports.migrateLegacyKeys = exports.StorageKeyHelpers = exports.createStorageProviders = exports.NoOpOAuthConfigCache = exports.InMemoryOAuthConfigCache = exports.BatchDelegationService = exports.OAuthTokenRetrievalService = exports.ProviderValidationError = exports.ProviderValidator = exports.CredentialAuthModeError = exports.ConsentOnlyModeError = exports.ProviderResolver = exports.OAuthProviderRegistry = exports.ToolContextBuilder = exports.defaultSecretResolver = exports.OAuthService = exports.OAuthConfigService = exports.createSessionRegistrationService = exports.SessionRegistrationService = exports.authorizationMatches = exports.AccessControlApiService = exports.ProofVerifier = exports.CryptoService = exports.PolicyService = exports.ToolProtectionService = exports.MCPIRuntimeBase = exports.MemoryIdentityProvider = exports.MemoryNonceCacheProvider = exports.MemoryStorageProvider = exports.IdentityProvider = exports.NonceCacheProvider = exports.StorageProvider = exports.FetchProvider = exports.ClockProvider = exports.CryptoProvider = void 0;
-exports.createDefaultConsoleLogger = exports.logger = exports.IdpTokenResolver = exports.UserDidManager = exports.isPolicyEnabled = exports.hasMergedPolicy = exports.extractPolicy = exports.getPolicy = exports.hasMergedToolProtections = exports.extractToolProtections = exports.getToolProtection = exports.fetchRemoteConfig = exports.bytesToBase64 = exports.base64urlDecodeToString = exports.base64urlDecodeToBytes = exports.base64urlEncodeFromString = exports.base64urlEncodeFromBytes = exports.parseVCJWT = exports.completeVCJWT = exports.createUnsignedVCJWT = exports.canonicalizeJSON = exports.getSchemaStats = exports.getCriticalSchemas = exports.getSchemaById = exports.getSchemasByCategory = exports.getAllSchemas = exports.SCHEMA_REGISTRY = exports.createSchemaVerifier = exports.SchemaVerifier = exports.isValidBase58 = exports.base58Decode = exports.base58Encode = exports.resolveDidKeySync = exports.publicKeyToJwk = exports.extractPublicKeyFromDidKey = exports.isEd25519DidKey = exports.createDidKeyResolver = exports.MemoryDelegationGraphStorage = exports.MemoryStatusListStorage = exports.createCascadingRevocationManager = exports.CascadingRevocationManager = exports.createDelegationGraph = exports.DelegationGraphManager = exports.isIndexSet = exports.BitstringManager = void 0;
+exports.StatusList2021Manager = exports.createDelegationVerifier = exports.DelegationCredentialVerifier = exports.createDelegationIssuer = exports.DelegationCredentialIssuer = exports.createDelegationErrorFormatter = exports.DelegationErrorFormatter = exports.OAuthRequiredError = exports.DelegationRequiredError = exports.NoOpToolProtectionCache = exports.InMemoryToolProtectionCache = exports.createProofVerificationError = exports.PROOF_VERIFICATION_ERROR_CODES = exports.ProofVerificationError = exports.migrateLegacyKeys = exports.StorageKeyHelpers = exports.createStorageProviders = exports.NoOpOAuthConfigCache = exports.InMemoryOAuthConfigCache = exports.BatchDelegationService = exports.OAuthTokenRetrievalService = exports.ProviderValidationError = exports.ProviderValidator = exports.CredentialAuthModeError = exports.ConsentOnlyModeError = exports.ProviderResolver = exports.OAuthProviderRegistry = exports.ToolContextBuilder = exports.defaultSecretResolver = exports.OAuthService = exports.OAuthConfigService = exports.createSessionRegistrationService = exports.SessionRegistrationService = exports.authorizationMatches = exports.AccessControlApiService = exports.ProofVerifier = exports.CryptoService = exports.PolicyService = exports.ToolProtectionService = exports.CONSENT_UI_RESOURCE_URI = exports.MCPIRuntimeBase = exports.MemoryIdentityProvider = exports.MemoryNonceCacheProvider = exports.MemoryStorageProvider = exports.IdentityProvider = exports.NonceCacheProvider = exports.StorageProvider = exports.FetchProvider = exports.ClockProvider = exports.CryptoProvider = void 0;
+exports.createProofResponse = exports.ProofGenerator = exports.createDefaultConsoleLogger = exports.logger = exports.IdpTokenResolver = exports.UserDidManager = exports.isPolicyEnabled = exports.hasMergedPolicy = exports.extractPolicy = exports.getPolicy = exports.hasMergedToolProtections = exports.extractToolProtections = exports.getToolProtection = exports.fetchRemoteConfig = exports.bytesToBase64 = exports.base64urlDecodeToString = exports.base64urlDecodeToBytes = exports.base64urlEncodeFromString = exports.base64urlEncodeFromBytes = exports.parseVCJWT = exports.completeVCJWT = exports.createUnsignedVCJWT = exports.canonicalizeJSON = exports.getSchemaStats = exports.getCriticalSchemas = exports.getSchemaById = exports.getSchemasByCategory = exports.getAllSchemas = exports.SCHEMA_REGISTRY = exports.createSchemaVerifier = exports.SchemaVerifier = exports.isValidBase58 = exports.base58Decode = exports.base58Encode = exports.resolveDidKeySync = exports.publicKeyToJwk = exports.extractPublicKeyFromDidKey = exports.isEd25519DidKey = exports.createDidKeyResolver = exports.buildChainString = exports.buildDelegationProofJWT = exports.MemoryDelegationGraphStorage = exports.MemoryStatusListStorage = exports.createCascadingRevocationManager = exports.CascadingRevocationManager = exports.createDelegationGraph = exports.DelegationGraphManager = exports.isIndexSet = exports.BitstringManager = exports.createStatusListManager = void 0;
+exports.MemoryResumeTokenStore = exports.hasSensitiveScopes = exports.verifyOrHints = exports.validateHandshakeFormat = exports.createHandshakeRequest = exports.SessionManager = exports.extractCanonicalData = void 0;
 // Base providers
 var base_1 = require("./providers/base");
 Object.defineProperty(exports, "CryptoProvider", { enumerable: true, get: function () { return base_1.CryptoProvider; } });
@@ -38,6 +39,9 @@ Object.defineProperty(exports, "MemoryIdentityProvider", { enumerable: true, get
 // Runtime
 var base_2 = require("./runtime/base");
 Object.defineProperty(exports, "MCPIRuntimeBase", { enumerable: true, get: function () { return base_2.MCPIRuntimeBase; } });
+// MCP Apps consent constants
+var ext_apps_constants_1 = require("./runtime/ext-apps-constants");
+Object.defineProperty(exports, "CONSENT_UI_RESOURCE_URI", { enumerable: true, get: function () { return ext_apps_constants_1.CONSENT_UI_RESOURCE_URI; } });
 // Utilities
 __exportStar(require("./utils"), exports);
 // Tool Protection
@@ -139,6 +143,10 @@ var memory_statuslist_storage_1 = require("./delegation/storage/memory-statuslis
 Object.defineProperty(exports, "MemoryStatusListStorage", { enumerable: true, get: function () { return memory_statuslist_storage_1.MemoryStatusListStorage; } });
 var memory_graph_storage_1 = require("./delegation/storage/memory-graph-storage");
 Object.defineProperty(exports, "MemoryDelegationGraphStorage", { enumerable: true, get: function () { return memory_graph_storage_1.MemoryDelegationGraphStorage; } });
+// Outbound Delegation Proof (Phase 1 — Outbound Propagation)
+var outbound_proof_1 = require("./delegation/outbound-proof");
+Object.defineProperty(exports, "buildDelegationProofJWT", { enumerable: true, get: function () { return outbound_proof_1.buildDelegationProofJWT; } });
+Object.defineProperty(exports, "buildChainString", { enumerable: true, get: function () { return outbound_proof_1.buildChainString; } });
 // DID:key Resolver (Phase 3 VC Verification)
 var did_key_resolver_1 = require("./delegation/did-key-resolver");
 Object.defineProperty(exports, "createDidKeyResolver", { enumerable: true, get: function () { return did_key_resolver_1.createDidKeyResolver; } });
@@ -198,4 +206,19 @@ Object.defineProperty(exports, "IdpTokenResolver", { enumerable: true, get: func
 var logging_1 = require("./logging");
 Object.defineProperty(exports, "logger", { enumerable: true, get: function () { return logging_1.logger; } });
 Object.defineProperty(exports, "createDefaultConsoleLogger", { enumerable: true, get: function () { return logging_1.createDefaultConsoleLogger; } });
+// Proof generation (platform-agnostic protocol reference — Phase 2)
+var proof_1 = require("./proof");
+Object.defineProperty(exports, "ProofGenerator", { enumerable: true, get: function () { return proof_1.ProofGenerator; } });
+Object.defineProperty(exports, "createProofResponse", { enumerable: true, get: function () { return proof_1.createProofResponse; } });
+Object.defineProperty(exports, "extractCanonicalData", { enumerable: true, get: function () { return proof_1.extractCanonicalData; } });
+// Session management (platform-agnostic protocol reference — Phase 2)
+var session_1 = require("./session");
+Object.defineProperty(exports, "SessionManager", { enumerable: true, get: function () { return session_1.SessionManager; } });
+Object.defineProperty(exports, "createHandshakeRequest", { enumerable: true, get: function () { return session_1.createHandshakeRequest; } });
+Object.defineProperty(exports, "validateHandshakeFormat", { enumerable: true, get: function () { return session_1.validateHandshakeFormat; } });
+// Auth handshake (platform-agnostic protocol reference — Phase 2)
+var auth_1 = require("./auth");
+Object.defineProperty(exports, "verifyOrHints", { enumerable: true, get: function () { return auth_1.verifyOrHints; } });
+Object.defineProperty(exports, "hasSensitiveScopes", { enumerable: true, get: function () { return auth_1.hasSensitiveScopes; } });
+Object.defineProperty(exports, "MemoryResumeTokenStore", { enumerable: true, get: function () { return auth_1.MemoryResumeTokenStore; } });
 //# sourceMappingURL=index.js.map

package/dist/proof/generator.d.ts

@@ -0,0 +1,109 @@
+/**
+ * Proof Generation — Platform-agnostic Protocol Reference
+ *
+ * Handles JCS canonicalization, SHA-256 digest generation, and Ed25519 JWS
+ * signing (compact format) according to MCP-I requirements 5.1, 5.2, 5.3, 5.6.
+ *
+ * This module is the authoritative proof implementation. All platform adapters
+ * (Node.js, Cloudflare Workers) inject a CryptoProvider and delegate here.
+ */
+import { DetachedProof } from "@kya-os/contracts/proof";
+import { SessionContext } from "@kya-os/contracts/handshake";
+import { CryptoProvider } from "../providers/base";
+/**
+ * Minimal agent identity required by ProofGenerator.
+ * Structurally compatible with both AgentIdentity definitions
+ * in mcp-i-core (providers/base) and packages/mcp-i (runtime/identity).
+ */
+export interface ProofAgentIdentity {
+    did: string;
+    kid: string;
+    privateKey: string;
+    publicKey: string;
+}
+/**
+ * Tool request structure for proof generation
+ */
+export interface ToolRequest {
+    method: string;
+    params?: unknown;
+}
+/**
+ * Tool response structure for proof generation
+ */
+export interface ToolResponse {
+    data: unknown;
+    meta?: {
+        proof?: DetachedProof;
+        [key: string]: unknown;
+    };
+}
+/**
+ * Proof generation options
+ */
+export interface ProofOptions {
+    scopeId?: string;
+    delegationRef?: string;
+    clientDid?: string;
+}
+/**
+ * Platform-agnostic proof generator.
+ * Requires a CryptoProvider for all cryptographic operations.
+ */
+export declare class ProofGenerator {
+    private identity;
+    private cryptoProvider;
+    constructor(identity: ProofAgentIdentity, cryptoProvider: CryptoProvider);
+    /**
+     * Generate proof for tool request/response.
+     * Requirements: 5.1, 5.2, 5.3, 5.6
+     */
+    generateProof(request: ToolRequest, response: ToolResponse, session: SessionContext, options?: ProofOptions): Promise<DetachedProof>;
+    /**
+     * Generate canonical hashes for request and response.
+     * Requirement: 5.1
+     */
+    private generateCanonicalHashes;
+    /**
+     * Generate SHA-256 hash with JCS canonicalization.
+     * Requirement: 5.2
+     *
+     * Delegates to CryptoProvider.hash() which must return "sha256:<hex>".
+     */
+    private generateSHA256Hash;
+    /**
+     * JCS canonicalization implementation (RFC 8785)
+     */
+    private canonicalizeJSON;
+    /**
+     * Generate Ed25519 JWS in compact format (header.payload.signature).
+     * Requirement: 5.3
+     *
+     * Uses standard JWT claims (aud, sub, iss) in addition to custom claims.
+     */
+    private generateJWS;
+    /**
+     * Format base64 private key as PKCS#8 PEM for JOSE library.
+     */
+    private formatPrivateKeyAsPEM;
+    /**
+     * Verify a proof (for testing/validation).
+     */
+    verifyProof(proof: DetachedProof, request: ToolRequest, response: ToolResponse): Promise<boolean>;
+    /**
+     * Convert base64 public key to Ed25519 JWK format.
+     */
+    private base64PublicKeyToJWK;
+}
+/**
+ * Create a tool response with proof.
+ */
+export declare function createProofResponse(request: ToolRequest, data: unknown, identity: ProofAgentIdentity, session: SessionContext, cryptoProvider: CryptoProvider, options?: ProofOptions): Promise<ToolResponse>;
+/**
+ * Extract canonical data for hashing (utility for testing).
+ */
+export declare function extractCanonicalData(request: ToolRequest, response: ToolResponse): {
+    request: unknown;
+    response: unknown;
+};
+//# sourceMappingURL=generator.d.ts.map

package/dist/proof/generator.js

@@ -0,0 +1,236 @@
+"use strict";
+/**
+ * Proof Generation — Platform-agnostic Protocol Reference
+ *
+ * Handles JCS canonicalization, SHA-256 digest generation, and Ed25519 JWS
+ * signing (compact format) according to MCP-I requirements 5.1, 5.2, 5.3, 5.6.
+ *
+ * This module is the authoritative proof implementation. All platform adapters
+ * (Node.js, Cloudflare Workers) inject a CryptoProvider and delegate here.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProofGenerator = void 0;
+exports.createProofResponse = createProofResponse;
+exports.extractCanonicalData = extractCanonicalData;
+const jose_1 = require("jose");
+const json_canonicalize_1 = require("json-canonicalize");
+const crypto_service_1 = require("../services/crypto.service");
+/**
+ * Platform-agnostic proof generator.
+ * Requires a CryptoProvider for all cryptographic operations.
+ */
+class ProofGenerator {
+    identity;
+    cryptoProvider;
+    constructor(identity, cryptoProvider) {
+        this.identity = identity;
+        this.cryptoProvider = cryptoProvider;
+    }
+    /**
+     * Generate proof for tool request/response.
+     * Requirements: 5.1, 5.2, 5.3, 5.6
+     */
+    async generateProof(request, response, session, options = {}) {
+        const hashes = await this.generateCanonicalHashes(request, response);
+        const meta = {
+            did: this.identity.did,
+            kid: this.identity.kid,
+            ts: Math.floor(Date.now() / 1000),
+            nonce: session.nonce,
+            audience: session.audience,
+            sessionId: session.sessionId,
+            requestHash: hashes.requestHash,
+            responseHash: hashes.responseHash,
+            ...options,
+        };
+        const jws = await this.generateJWS(meta);
+        return { jws, meta };
+    }
+    /**
+     * Generate canonical hashes for request and response.
+     * Requirement: 5.1
+     */
+    async generateCanonicalHashes(request, response) {
+        const canonicalRequest = {
+            method: request.method,
+            ...(request.params ? { params: request.params } : {}),
+        };
+        const canonicalResponse = response.data;
+        const requestHash = await this.generateSHA256Hash(canonicalRequest);
+        const responseHash = await this.generateSHA256Hash(canonicalResponse);
+        return { requestHash, responseHash };
+    }
+    /**
+     * Generate SHA-256 hash with JCS canonicalization.
+     * Requirement: 5.2
+     *
+     * Delegates to CryptoProvider.hash() which must return "sha256:<hex>".
+     */
+    async generateSHA256Hash(data) {
+        const canonicalJson = this.canonicalizeJSON(data);
+        const encoded = new TextEncoder().encode(canonicalJson);
+        return this.cryptoProvider.hash(encoded);
+    }
+    /**
+     * JCS canonicalization implementation (RFC 8785)
+     */
+    canonicalizeJSON(obj) {
+        return (0, json_canonicalize_1.canonicalize)(obj);
+    }
+    /**
+     * Generate Ed25519 JWS in compact format (header.payload.signature).
+     * Requirement: 5.3
+     *
+     * Uses standard JWT claims (aud, sub, iss) in addition to custom claims.
+     */
+    async generateJWS(meta) {
+        try {
+            const privateKeyPem = this.formatPrivateKeyAsPEM(this.identity.privateKey);
+            const privateKey = await (0, jose_1.importPKCS8)(privateKeyPem, "EdDSA");
+            const payload = {
+                aud: meta.audience,
+                sub: meta.did,
+                iss: meta.did,
+                requestHash: meta.requestHash,
+                responseHash: meta.responseHash,
+                ts: meta.ts,
+                nonce: meta.nonce,
+                sessionId: meta.sessionId,
+                ...(meta.scopeId && { scopeId: meta.scopeId }),
+                ...(meta.delegationRef && { delegationRef: meta.delegationRef }),
+                ...(meta.clientDid && { clientDid: meta.clientDid }),
+            };
+            const jwt = await new jose_1.SignJWT(payload)
+                .setProtectedHeader({
+                alg: "EdDSA",
+                kid: this.identity.kid,
+            })
+                .sign(privateKey);
+            return jwt;
+        }
+        catch (error) {
+            throw new Error(`Failed to generate JWS: ${error instanceof Error ? error.message : "Unknown error"}`);
+        }
+    }
+    /**
+     * Format base64 private key as PKCS#8 PEM for JOSE library.
+     */
+    formatPrivateKeyAsPEM(base64PrivateKey) {
+        // Decode the base64 private key bytes
+        // Use platform-agnostic approach (atob + Uint8Array)
+        const binaryStr = atob(base64PrivateKey);
+        const keyData = new Uint8Array(binaryStr.length);
+        for (let i = 0; i < binaryStr.length; i++) {
+            keyData[i] = binaryStr.charCodeAt(i);
+        }
+        // Ed25519 PKCS#8 header (ASN.1 encoding)
+        const pkcs8Header = new Uint8Array([
+            0x30,
+            0x2e, // SEQUENCE, length 46
+            0x02,
+            0x01,
+            0x00, // INTEGER version 0
+            0x30,
+            0x05, // SEQUENCE, length 5
+            0x06,
+            0x03,
+            0x2b,
+            0x65,
+            0x70, // OID for Ed25519
+            0x04,
+            0x22, // OCTET STRING, length 34
+            0x04,
+            0x20, // OCTET STRING, length 32 (the actual key)
+        ]);
+        // Take first 32 bytes of key (Ed25519 raw private key)
+        const rawKey = keyData.subarray(0, 32);
+        const fullKey = new Uint8Array(pkcs8Header.length + rawKey.length);
+        fullKey.set(pkcs8Header);
+        fullKey.set(rawKey, pkcs8Header.length);
+        // Base64-encode the full DER-encoded key
+        let binaryStrOut = "";
+        for (let i = 0; i < fullKey.length; i++) {
+            binaryStrOut += String.fromCharCode(fullKey[i]);
+        }
+        const base64Key = btoa(binaryStrOut);
+        // Format as PEM with 64-char line breaks
+        const formattedKey = base64Key.match(/.{1,64}/g)?.join("\n") ?? base64Key;
+        return ("-----BEGIN PRIVATE KEY-----\n" +
+            formattedKey +
+            "\n-----END PRIVATE KEY-----");
+    }
+    /**
+     * Verify a proof (for testing/validation).
+     */
+    async verifyProof(proof, request, response) {
+        try {
+            const expectedHashes = await this.generateCanonicalHashes(request, response);
+            if (proof.meta.requestHash !== expectedHashes.requestHash ||
+                proof.meta.responseHash !== expectedHashes.responseHash) {
+                return false;
+            }
+            const publicKeyJwk = this.base64PublicKeyToJWK(this.identity.publicKey);
+            const cryptoService = new crypto_service_1.CryptoService(this.cryptoProvider);
+            return cryptoService.verifyJWS(proof.jws, publicKeyJwk, {
+                expectedKid: this.identity.kid,
+                alg: "EdDSA",
+            });
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * Convert base64 public key to Ed25519 JWK format.
+     */
+    base64PublicKeyToJWK(publicKeyBase64) {
+        // Decode base64 to bytes (platform-agnostic)
+        const binaryStr = atob(publicKeyBase64);
+        const publicKeyBytes = new Uint8Array(binaryStr.length);
+        for (let i = 0; i < binaryStr.length; i++) {
+            publicKeyBytes[i] = binaryStr.charCodeAt(i);
+        }
+        if (publicKeyBytes.length !== 32) {
+            throw new Error(`Invalid Ed25519 public key length: ${publicKeyBytes.length}`);
+        }
+        // Convert to base64url
+        let binaryStrOut = "";
+        for (let i = 0; i < publicKeyBytes.length; i++) {
+            binaryStrOut += String.fromCharCode(publicKeyBytes[i]);
+        }
+        const base64url = btoa(binaryStrOut)
+            .replace(/\+/g, "-")
+            .replace(/\//g, "_")
+            .replace(/=/g, "");
+        return {
+            kty: "OKP",
+            crv: "Ed25519",
+            x: base64url,
+            kid: this.identity.kid,
+        };
+    }
+}
+exports.ProofGenerator = ProofGenerator;
+/**
+ * Create a tool response with proof.
+ */
+async function createProofResponse(request, data, identity, session, cryptoProvider, options = {}) {
+    const response = { data };
+    const proofGenerator = new ProofGenerator(identity, cryptoProvider);
+    const proof = await proofGenerator.generateProof(request, response, session, options);
+    response.meta = { proof };
+    return response;
+}
+/**
+ * Extract canonical data for hashing (utility for testing).
+ */
+function extractCanonicalData(request, response) {
+    return {
+        request: {
+            method: request.method,
+            ...(request.params ? { params: request.params } : {}),
+        },
+        response: response.data,
+    };
+}
+//# sourceMappingURL=generator.js.map

package/dist/proof/index.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Proof module — platform-agnostic proof generation reference implementation.
+ */
+export { ProofGenerator, createProofResponse, extractCanonicalData, type ProofAgentIdentity, type ToolRequest, type ToolResponse, type ProofOptions, } from "./generator";
+//# sourceMappingURL=index.d.ts.map

package/dist/proof/index.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractCanonicalData = exports.createProofResponse = exports.ProofGenerator = void 0;
+/**
+ * Proof module — platform-agnostic proof generation reference implementation.
+ */
+var generator_1 = require("./generator");
+Object.defineProperty(exports, "ProofGenerator", { enumerable: true, get: function () { return generator_1.ProofGenerator; } });
+Object.defineProperty(exports, "createProofResponse", { enumerable: true, get: function () { return generator_1.createProofResponse; } });
+Object.defineProperty(exports, "extractCanonicalData", { enumerable: true, get: function () { return generator_1.extractCanonicalData; } });
+//# sourceMappingURL=index.js.map

package/dist/providers/base.d.ts

@@ -14,7 +14,11 @@ export declare abstract class CryptoProvider {
         privateKey: string;
         publicKey: string;
     }>;
-    abstract hash(data: Uint8Array): Promise<Uint8Array>;
+    /**
+     * Compute SHA-256 hash of data.
+     * Returns "sha256:<hex>" format for cross-platform parity.
+     */
+    abstract hash(data: Uint8Array): Promise<string>;
     abstract randomBytes(length: number): Promise<Uint8Array>;
 }
 /**