@motebit/protocol 2.0.1 → 3.0.0

package/README.md

@@ -37,12 +37,17 @@ const relayFee = PLATFORM_FEE_RATE; // 0.05 — the universal 5% relay fee.
 - **Identity** — `MotebitIdentity`, `KeySuccessionRecord`, `DeviceRegistration`
 - **Execution receipts** — `ExecutionReceipt` with nested delegation chains
 - **Credentials** — W3C VC 2.0 types (`ReputationCredentialSubject`, `TrustCredentialSubject`)
-- **Settlement** — `BudgetAllocation`, `SettlementRecord`, `PLATFORM_FEE_RATE`; `SettlementMode` closed union (`"relay" | "p2p"`) with `ALL_SETTLEMENT_MODES` for iteration and `isSettlementMode` for narrowing wire-format payloads pulled from discovery / peer-negotiation responses; `SettlementAsset` closed union (`"USDC"` at sub-phase A) with `ALL_SETTLEMENT_ASSETS` for iteration and `isSettlementAsset` for narrowing — the typed vocabulary of stablecoin assets the protocol clears settlement in; `SovereignRail.asset` is structurally tightened to this union so a peer announcing an unknown asset fails closed. **Guest-rail capability marker interfaces** + type guards — `GuestRail` carries `supportsDeposit` / `supportsWithdraw` / `supportsBatch` discriminants; `DepositableGuestRail` / `WithdrawableGuestRail` / `BatchableGuestRail` add the corresponding methods; `isDepositableRail` / `isWithdrawableRail` / `isBatchableRail` narrow at the call site. The marker on `WithdrawableGuestRail` is the structural enforcement of the off-ramp doctrine: rails that don't opt in (e.g., Bridge, treasury-only) cannot drive user-facing withdrawals because `withdraw` does not exist on the base type
+- **Settlement** — `BudgetAllocation`, `SettlementRecord`, `PLATFORM_FEE_RATE`; `computeP2pFeeMicro(netCostMicro, feeRate)` for the canonical P2P fee-leg amount in micro-units (`gross - net`) — the relay's proof validator and the delegator client building the proof share it so the fee can't drift; `computeFederatedFeeSplit(budgetMicro, feeRate)` for the cross-operator fee-from-budget split (origin-fee / executor-fee / worker-net legs, spec §7.1), shared the same way; `SettlementMode` closed union (`"relay" | "p2p"`) with `ALL_SETTLEMENT_MODES` for iteration and `isSettlementMode` for narrowing wire-format payloads pulled from discovery / peer-negotiation responses; `SettlementAsset` closed union (`"USDC"` at sub-phase A) with `ALL_SETTLEMENT_ASSETS` for iteration and `isSettlementAsset` for narrowing — the typed vocabulary of stablecoin assets the protocol clears settlement in; `SovereignRail.asset` is structurally tightened to this union so a peer announcing an unknown asset fails closed. **Guest-rail capability marker interfaces** + type guards — `GuestRail` carries `supportsDeposit` / `supportsWithdraw` / `supportsBatch` discriminants; `DepositableGuestRail` / `WithdrawableGuestRail` / `BatchableGuestRail` add the corresponding methods; `isDepositableRail` / `isWithdrawableRail` / `isBatchableRail` narrow at the call site. The marker on `WithdrawableGuestRail` is the structural enforcement of the off-ramp doctrine: rails that don't opt in (e.g., Bridge, treasury-only) cannot drive user-facing withdrawals because `withdraw` does not exist on the base type
+- **Sovereign wallet port** — `SovereignWalletRail` (extends `SovereignRail` with `send` / `isAvailable`) + `SovereignSendResult`; the rail interface the interior consumes so a runtime can use a sovereign rail without depending on a settlement-rail provider package
+- **Encoding** — `base58Encode`, a pure chain-agnostic base58btc codec (Bitcoin alphabet; the encoding behind Solana address derivation), sibling to the money converters
 - **Trust algebra** — semiring operations for delegation-chain trust computation
 - **Policy** — `ToolDefinition`, `PolicyDecision`, `RiskLevel`, `SensitivityLevel` (the 5-tier privacy ladder, the most load-bearing closed registry; `ALL_SENSITIVITY_LEVELS` for iteration, `isSensitivityLevel` for narrowing unknown payloads, `rankSensitivity` / `maxSensitivity` / `sensitivityPermits` for the algebra)
 - **Event-log vocabulary** — `EventType` closed enum (59 entries spanning identity / memory / goals / approvals / plans / consolidation / co-browse / agents); `ALL_EVENT_TYPES` for iteration, `isEventType` for narrowing wire-format payloads pulled from sync peers or federation
+- **Agent revocation** — the operator's de-list power, made sovereign-verifiable: `AgentRevocationRecord` / `AgentRevocationFeed` (signed under `AGENT_REVOCATION_SUITE`, spec id `AGENT_REVOCATION_SPEC_ID`) are the wire types for a relay's public, append-only moderation history at `GET /api/v1/agents/revocations`; `AgentRevocationReason` closed registry (`ALL_AGENT_REVOCATION_REASONS` for iteration, `isAgentRevocationReason` for narrowing — `operator_test_cleanup` / `spam` / `abuse` / `malware` / `policy_violation` / `dmca` / `reinstated`) keeps the feed legible. De-list, never de-identify; verify with `@motebit/state-export-client::verifyAgentRevocationFeed`. See [`spec/agent-revocation-v1.md`](../../spec/agent-revocation-v1.md)
+- **Content provenance** — `ContentArtifactType` closed registry of `artifact_type` values for the C2PA-shape `ContentArtifactManifest`; named constants per category, incl. `SETTLEMENT_SUMMARY_ARTIFACT` for the per-peer economic projection a relay emits at `GET /api/v1/agents/:motebitId/settlements` (wire body `SettlementSummaryExport` / `SettlementSummaryPeer` / `SettlementSummaryUnattributed`). The money side of the first-person trust graph — a materialized projection over the signed settlement ledger, never a denormalized balance; verify with `@motebit/state-export-client::verifiedSettlementSummaryFetch`
 - **Storage adapters** — pluggable persistence contracts for any backend
 - **Cryptosuite registry** — `SuiteId` union for crypto-agile wire artifacts
+- **Merkle tree-hash registry** — `MerkleTreeVersion` closed union (RFC 6962 §2.1 leaf/node domain separation as an agility axis) with `MERKLE_TREE_VERSION_REGISTRY` + `ALL_MERKLE_TREE_VERSIONS` for iteration, `isMerkleTreeVersion` / `getMerkleTreeVersionEntry` for narrowing/lookup, and `DEFAULT_MERKLE_TREE_VERSION` — the absent ⇒ v1 downgrade-safety default for a proof's optional `tree_hash_version` field
 - **Auto-router registry** — `TaskShape` closed union (`ALL_TASK_SHAPES`, `isTaskShape`) for the model-selection primitive; named constants `QUICK_TASK_SHAPE`, `CHAT_TASK_SHAPE`, `REASONING_TASK_SHAPE`, `CODE_TASK_SHAPE`, `RESEARCH_TASK_SHAPE`, `CREATIVE_TASK_SHAPE`, `MATH_TASK_SHAPE`. Paired with `ProviderCapability` + `RoutingConstraint` + `RoutingDecision` types consumed by `@motebit/policy::dispatchRouting`
 
 Product-level types (state vectors, creature behavior, rendering spec) live in [`@motebit/sdk`](https://www.npmjs.com/package/@motebit/sdk), which re-exports everything here plus the product vocabulary.

package/dist/agent-revocation.d.ts

@@ -0,0 +1,184 @@
+/**
+ * Agent-revocation — the operator's de-list power, made sovereign-verifiable.
+ *
+ * A permissionless relay accumulates junk: spam listings, abandoned test
+ * agents, abusive capabilities. The only automatic remedy is the 90-day
+ * no-heartbeat TTL — too slow for live abuse. The operator therefore needs
+ * a hygiene tool: remove an agent from Discover.
+ *
+ * But an operator who can silently disappear an agent is exactly the trust
+ * root the relay is forbidden from being (`services/relay/CLAUDE.md` rule 6:
+ * "the relay is a convenience layer, not a trust root"). The move that keeps
+ * this on-thesis is the same one motebit makes everywhere else — declared
+ * posture → *proven* posture: every revocation is a **signed, reasoned,
+ * publicly-fetchable statement**, not a silent DB flip.
+ *
+ * What revocation is and is not:
+ *   - It is a **de-list**, not a **de-identify**. It sets the relay's
+ *     `agent_registry.revoked` flag, which Discover filters
+ *     (`task-routing.ts` `revokedFilter`). The agent's identity, key,
+ *     succession chain, and receipts stay served by the
+ *     identity-transparency endpoint — it remains hireable directly by id.
+ *   - It is **post-hoc hygiene**, not **editorial curation**. Discovery
+ *     stays permissionless (no allowlist, no pre-approval); the operator
+ *     *removes* junk/abuse, it never *picks* winners.
+ *   - It is **reversible**. An `unrevoke` is itself a signed record; the
+ *     append-only feed is the operator's complete, auditable moderation
+ *     history. A third party verifies each record against the relay's
+ *     pinned public key — the same key the transparency declaration commits.
+ *
+ * This module exports the wire types only. The producer (signed-record
+ * construction, the `agent_revocations` store, the revoke/unrevoke routes,
+ * the `GET /api/v1/agents/revocations` feed) lives in `services/relay`.
+ *
+ * Doctrine: `docs/doctrine/agents-as-first-person-trust-graph.md`,
+ * `docs/doctrine/operator-transparency.md`,
+ * `docs/doctrine/self-attesting-system.md`.
+ *
+ * Permissive floor (Apache-2.0), type-only, zero runtime deps.
+ */
+/**
+ * The closed vocabulary of *why* an operator de-listed an agent (or
+ * reinstated one). Carried on every `AgentRevocationRecord`, so the public
+ * revocations feed is legible — a verifier reading the feed learns not just
+ * *that* the operator removed an agent but *under what category*, which is
+ * what converts "operator power" into "operator accountability."
+ *
+ * Registered registry per
+ * [`docs/doctrine/registry-pattern-canonical.md`](../../../docs/doctrine/registry-pattern-canonical.md)
+ * — the ninth instance after `SuiteId`, `TokenAudience`,
+ * `ContentArtifactType`, `TaskShape`, `SensitivityLevel`, `EventType`,
+ * `SettlementMode`, and `MerkleTreeVersion`. The four criteria are met:
+ * interop law (a verifier reading the signed feed must agree on the reason
+ * vocabulary), multi-consumer (relay producer, verifier, Discover UI),
+ * wire-format presence (`AgentRevocationRecord.reason`), anticipated drift
+ * (the categories will grow — `trademark`, `sanctions`, `court_order` — and
+ * silently widening them would break feed consumers without the lock).
+ *
+ * `reinstated` is the canonical reason on an `unrevoke` (an
+ * `AgentRevocationRecord` with `revoked: false`): the record still needs a
+ * categorized reason so the append-only feed reads cleanly as a sequence of
+ * state changes.
+ */
+export type AgentRevocationReason = "operator_test_cleanup" | "spam" | "abuse" | "malware" | "policy_violation" | "dmca" | "reinstated";
+/**
+ * Canonical iteration order over `AgentRevocationReason`, frozen. Single
+ * source of truth for "every revocation reason" — exhaustive switches, the
+ * relay's reason validation, and the coverage gate
+ * (`check-agent-revocation-reason-canonical`) all enumerate through this.
+ *
+ * Same shape as `ALL_SUITE_IDS`, `ALL_SETTLEMENT_MODES`, `ALL_EVENT_TYPES`.
+ * Adding a reason is intentional protocol-level work: new union entry + new
+ * entry here + gate reference update.
+ */
+export declare const ALL_AGENT_REVOCATION_REASONS: readonly AgentRevocationReason[];
+/**
+ * Type guard — narrows `unknown` to `AgentRevocationReason`. The relay calls
+ * this on the operator-supplied `reason` before signing a record so an
+ * unrecognized reason fails closed rather than landing an un-typed value in
+ * the signed, externally-verified feed.
+ *
+ * Same shape as `isSuiteId`, `isSettlementMode`, `isEventType`.
+ */
+export declare function isAgentRevocationReason(value: unknown): value is AgentRevocationReason;
+/**
+ * The pinned cryptosuite for revocation records. JCS canonicalization
+ * (RFC 8785) + Ed25519 + hex signature — the same family as the transparency
+ * declaration, identity-file, and content-artifact manifests, so a verifier
+ * that already pins the relay key for the transparency declaration verifies
+ * revocations with no new machinery. See `SUITE_REGISTRY` in `./crypto-suite.ts`.
+ */
+export declare const AGENT_REVOCATION_SUITE: "motebit-jcs-ed25519-hex-v1";
+/**
+ * Current spec identifier for the revocation wire format. Bumps require a
+ * new wire-format spec doc; verifiers MUST reject records with an
+ * unrecognized `spec`.
+ */
+export declare const AGENT_REVOCATION_SPEC_ID: "motebit-agent-revocation/draft-2026-06-04";
+/**
+ * Who performed the state change. `operator` = the relay operator using the
+ * hygiene tool (master-token authed). `self` = the agent deregistering
+ * itself with its own key. The distinction is part of the record's
+ * accountability surface: a verifier can separate operator moderation from
+ * voluntary self-removal.
+ */
+export type AgentRevocationActor = "operator" | "self";
+/**
+ * A single, signed agent-revocation state change — one entry in the relay's
+ * append-only revocations feed.
+ *
+ * Wire format (foundation law). Field names, types, and the canonical-JSON
+ * ordering of the signed payload are protocol law. Each record is an
+ * immutable event: a `revoke` (`revoked: true`) or an `unrevoke`
+ * (`revoked: false`). Current state for a `motebit_id` is the latest record;
+ * the full feed is the operator's auditable moderation history.
+ *
+ * Hash derivation: `sha256(utf8(canonicalJson(payload)))` where `payload` is
+ * the `AgentRevocationSignedPayload` projection — the post-sign fields
+ * (`hash`, `suite`, `signature`) are NOT part of the canonical bytes. Two
+ * implementations hashing the same payload MUST produce the same hex.
+ */
+export interface AgentRevocationRecord {
+    /** Spec identifier — e.g. `"motebit-agent-revocation/draft-2026-06-04"`. */
+    readonly spec: string;
+    /** The agent whose discoverability changed. Same MotebitId space as agent identities. */
+    readonly motebit_id: string;
+    /** Resulting state: `true` = de-listed from Discover, `false` = reinstated. */
+    readonly revoked: boolean;
+    /** Categorized reason. `reinstated` accompanies `revoked: false`. */
+    readonly reason: AgentRevocationReason;
+    /** Who performed the change. */
+    readonly actor: AgentRevocationActor;
+    /** Optional free-text operator note (human context; not a substitute for `reason`). */
+    readonly note?: string;
+    /** Epoch milliseconds when the change took effect. */
+    readonly effective_at: number;
+    /** Relay's identity — same MotebitId space as agent identities. */
+    readonly relay_id: string;
+    /** Hex-encoded Ed25519 public key of the relay (32 bytes / 64 chars) — the trust anchor. */
+    readonly relay_public_key: string;
+    /** Hex-encoded SHA-256 of the canonical-JSON of the signed payload. */
+    readonly hash: string;
+    /** Cryptosuite identifier — `motebit-jcs-ed25519-hex-v1` today. */
+    readonly suite: "motebit-jcs-ed25519-hex-v1";
+    /** Hex-encoded Ed25519 signature over the canonical-JSON of the signed payload. */
+    readonly signature: string;
+}
+/**
+ * The signed payload — exactly what `hash` and `signature` cover. Exposed so
+ * producers construct + canonicalize the precise bytes the verifier checks.
+ * The post-sign fields (`hash`, `suite`, `signature`) are appended AFTER
+ * signing and are NOT part of this payload. `note` is included when present
+ * (optional fields participate in JCS only when defined).
+ */
+export type AgentRevocationSignedPayload = Pick<AgentRevocationRecord, "spec" | "motebit_id" | "revoked" | "reason" | "actor" | "note" | "effective_at" | "relay_id" | "relay_public_key">;
+/**
+ * The signed feed envelope served at `GET /api/v1/agents/revocations`. The
+ * relay signs the list digest so a consumer can fetch the operator's entire
+ * moderation history in one verifiable response (in addition to each record
+ * being independently signed). Same suite + relay key as the records.
+ */
+export interface AgentRevocationFeed {
+    /** Spec identifier — matches the records' `spec`. */
+    readonly spec: string;
+    /** The relay's identity. */
+    readonly relay_id: string;
+    /** Hex-encoded Ed25519 public key of the relay. */
+    readonly relay_public_key: string;
+    /** Epoch milliseconds when the feed snapshot was minted. */
+    readonly generated_at: number;
+    /** Every revocation state change, oldest-first. */
+    readonly records: readonly AgentRevocationRecord[];
+    /** Cryptosuite identifier. */
+    readonly suite: "motebit-jcs-ed25519-hex-v1";
+    /** Ed25519 signature over the canonical-JSON of `{spec, relay_id, relay_public_key, generated_at, records}`. */
+    readonly signature: string;
+}
+/**
+ * Type guard — narrows `unknown` to `AgentRevocationRecord`. Structural shape
+ * only; does NOT verify the signature. Verifiers call this before parsing,
+ * then proceed through the verification algorithm (strip post-sign fields,
+ * canonicalize, Ed25519-verify against the pinned relay key).
+ */
+export declare function isAgentRevocationRecord(value: unknown): value is AgentRevocationRecord;
+//# sourceMappingURL=agent-revocation.d.ts.map

package/dist/agent-revocation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-revocation.d.ts","sourceRoot":"","sources":["../src/agent-revocation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AAIH;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAM,MAAM,qBAAqB,GAC7B,uBAAuB,GACvB,MAAM,GACN,OAAO,GACP,SAAS,GACT,kBAAkB,GAClB,MAAM,GACN,YAAY,CAAC;AAEjB;;;;;;;;;GASG;AACH,eAAO,MAAM,4BAA4B,EAAE,SAAS,qBAAqB,EAQ5C,CAAC;AAE9B;;;;;;;GAOG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,qBAAqB,CAItF;AAID;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,EAAG,4BAAqC,CAAC;AAE5E;;;;GAIG;AACH,eAAO,MAAM,wBAAwB,EAAG,2CAAoD,CAAC;AAE7F;;;;;;GAMG;AACH,MAAM,MAAM,oBAAoB,GAAG,UAAU,GAAG,MAAM,CAAC;AAEvD;;;;;;;;;;;;;;GAcG;AACH,MAAM,WAAW,qBAAqB;IACpC,4EAA4E;IAC5E,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,yFAAyF;IACzF,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,+EAA+E;IAC/E,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAC;IAC1B,qEAAqE;IACrE,QAAQ,CAAC,MAAM,EAAE,qBAAqB,CAAC;IACvC,gCAAgC;IAChC,QAAQ,CAAC,KAAK,EAAE,oBAAoB,CAAC;IACrC,uFAAuF;IACvF,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IACvB,sDAAsD;IACtD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,mEAAmE;IACnE,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;IAC1B,4FAA4F;IAC5F,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAC;IAClC,uEAAuE;IACvE,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,mEAAmE;IACnE,QAAQ,CAAC,KAAK,EAAE,4BAA4B,CAAC;IAC7C,mFAAmF;IACnF,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;CAC5B;AAED;;;;;;GAMG;AACH,MAAM,MAAM,4BAA4B,GAAG,IAAI,CAC7C,qBAAqB,EACnB,MAAM,GACN,YAAY,GACZ,SAAS,GACT,QAAQ,GACR,OAAO,GACP,MAAM,GACN,cAAc,GACd,UAAU,GACV,kBAAkB,CACrB,CAAC;AAEF;;;;;GAKG;AACH,MAAM,WAAW,mBAAmB;IAClC,qDAAqD;IACrD,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,4BAA4B;IAC5B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;IAC1B,mDAAmD;IACnD,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAC;IAClC,4DAA4D;IAC5D,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,mDAAmD;IACnD,QAAQ,CAAC,OAAO,EAAE,SAAS,qBAAqB,EAAE,CAAC;IACnD,8BAA8B;IAC9B,QAAQ,CAAC,KAAK,EAAE,4BAA4B,CAAC;IAC7C,gHAAgH;IAChH,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;CAC5B;AAED;;;;;GAKG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,qBAAqB,CAiBtF"}

package/dist/agent-revocation.js

@@ -0,0 +1,108 @@
+/**
+ * Agent-revocation — the operator's de-list power, made sovereign-verifiable.
+ *
+ * A permissionless relay accumulates junk: spam listings, abandoned test
+ * agents, abusive capabilities. The only automatic remedy is the 90-day
+ * no-heartbeat TTL — too slow for live abuse. The operator therefore needs
+ * a hygiene tool: remove an agent from Discover.
+ *
+ * But an operator who can silently disappear an agent is exactly the trust
+ * root the relay is forbidden from being (`services/relay/CLAUDE.md` rule 6:
+ * "the relay is a convenience layer, not a trust root"). The move that keeps
+ * this on-thesis is the same one motebit makes everywhere else — declared
+ * posture → *proven* posture: every revocation is a **signed, reasoned,
+ * publicly-fetchable statement**, not a silent DB flip.
+ *
+ * What revocation is and is not:
+ *   - It is a **de-list**, not a **de-identify**. It sets the relay's
+ *     `agent_registry.revoked` flag, which Discover filters
+ *     (`task-routing.ts` `revokedFilter`). The agent's identity, key,
+ *     succession chain, and receipts stay served by the
+ *     identity-transparency endpoint — it remains hireable directly by id.
+ *   - It is **post-hoc hygiene**, not **editorial curation**. Discovery
+ *     stays permissionless (no allowlist, no pre-approval); the operator
+ *     *removes* junk/abuse, it never *picks* winners.
+ *   - It is **reversible**. An `unrevoke` is itself a signed record; the
+ *     append-only feed is the operator's complete, auditable moderation
+ *     history. A third party verifies each record against the relay's
+ *     pinned public key — the same key the transparency declaration commits.
+ *
+ * This module exports the wire types only. The producer (signed-record
+ * construction, the `agent_revocations` store, the revoke/unrevoke routes,
+ * the `GET /api/v1/agents/revocations` feed) lives in `services/relay`.
+ *
+ * Doctrine: `docs/doctrine/agents-as-first-person-trust-graph.md`,
+ * `docs/doctrine/operator-transparency.md`,
+ * `docs/doctrine/self-attesting-system.md`.
+ *
+ * Permissive floor (Apache-2.0), type-only, zero runtime deps.
+ */
+/**
+ * Canonical iteration order over `AgentRevocationReason`, frozen. Single
+ * source of truth for "every revocation reason" — exhaustive switches, the
+ * relay's reason validation, and the coverage gate
+ * (`check-agent-revocation-reason-canonical`) all enumerate through this.
+ *
+ * Same shape as `ALL_SUITE_IDS`, `ALL_SETTLEMENT_MODES`, `ALL_EVENT_TYPES`.
+ * Adding a reason is intentional protocol-level work: new union entry + new
+ * entry here + gate reference update.
+ */
+export const ALL_AGENT_REVOCATION_REASONS = Object.freeze([
+    "operator_test_cleanup",
+    "spam",
+    "abuse",
+    "malware",
+    "policy_violation",
+    "dmca",
+    "reinstated",
+]);
+/**
+ * Type guard — narrows `unknown` to `AgentRevocationReason`. The relay calls
+ * this on the operator-supplied `reason` before signing a record so an
+ * unrecognized reason fails closed rather than landing an un-typed value in
+ * the signed, externally-verified feed.
+ *
+ * Same shape as `isSuiteId`, `isSettlementMode`, `isEventType`.
+ */
+export function isAgentRevocationReason(value) {
+    return (typeof value === "string" && ALL_AGENT_REVOCATION_REASONS.includes(value));
+}
+// === Agent Revocation Record (signed envelope) ===
+/**
+ * The pinned cryptosuite for revocation records. JCS canonicalization
+ * (RFC 8785) + Ed25519 + hex signature — the same family as the transparency
+ * declaration, identity-file, and content-artifact manifests, so a verifier
+ * that already pins the relay key for the transparency declaration verifies
+ * revocations with no new machinery. See `SUITE_REGISTRY` in `./crypto-suite.ts`.
+ */
+export const AGENT_REVOCATION_SUITE = "motebit-jcs-ed25519-hex-v1";
+/**
+ * Current spec identifier for the revocation wire format. Bumps require a
+ * new wire-format spec doc; verifiers MUST reject records with an
+ * unrecognized `spec`.
+ */
+export const AGENT_REVOCATION_SPEC_ID = "motebit-agent-revocation/draft-2026-06-04";
+/**
+ * Type guard — narrows `unknown` to `AgentRevocationRecord`. Structural shape
+ * only; does NOT verify the signature. Verifiers call this before parsing,
+ * then proceed through the verification algorithm (strip post-sign fields,
+ * canonicalize, Ed25519-verify against the pinned relay key).
+ */
+export function isAgentRevocationRecord(value) {
+    if (typeof value !== "object" || value === null)
+        return false;
+    const o = value;
+    return (typeof o.spec === "string" &&
+        typeof o.motebit_id === "string" &&
+        typeof o.revoked === "boolean" &&
+        isAgentRevocationReason(o.reason) &&
+        (o.actor === "operator" || o.actor === "self") &&
+        (o.note === undefined || typeof o.note === "string") &&
+        typeof o.effective_at === "number" &&
+        typeof o.relay_id === "string" &&
+        typeof o.relay_public_key === "string" &&
+        typeof o.hash === "string" &&
+        typeof o.suite === "string" &&
+        typeof o.signature === "string");
+}
+//# sourceMappingURL=agent-revocation.js.map

package/dist/agent-revocation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-revocation.js","sourceRoot":"","sources":["../src/agent-revocation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AAoCH;;;;;;;;;GASG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAqC,MAAM,CAAC,MAAM,CAAC;IAC1F,uBAAuB;IACvB,MAAM;IACN,OAAO;IACP,SAAS;IACT,kBAAkB;IAClB,MAAM;IACN,YAAY;CACc,CAAC,CAAC;AAE9B;;;;;;;GAOG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAc;IACpD,OAAO,CACL,OAAO,KAAK,KAAK,QAAQ,IAAK,4BAAkD,CAAC,QAAQ,CAAC,KAAK,CAAC,CACjG,CAAC;AACJ,CAAC;AAED,oDAAoD;AAEpD;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG,4BAAqC,CAAC;AAE5E;;;;GAIG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAAG,2CAAoD,CAAC;AAgG7F;;;;;GAKG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAc;IACpD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,KAAK,CAAC;IAC9D,MAAM,CAAC,GAAG,KAAgC,CAAC;IAC3C,OAAO,CACL,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ;QAC1B,OAAO,CAAC,CAAC,UAAU,KAAK,QAAQ;QAChC,OAAO,CAAC,CAAC,OAAO,KAAK,SAAS;QAC9B,uBAAuB,CAAC,CAAC,CAAC,MAAM,CAAC;QACjC,CAAC,CAAC,CAAC,KAAK,KAAK,UAAU,IAAI,CAAC,CAAC,KAAK,KAAK,MAAM,CAAC;QAC9C,CAAC,CAAC,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC;QACpD,OAAO,CAAC,CAAC,YAAY,KAAK,QAAQ;QAClC,OAAO,CAAC,CAAC,QAAQ,KAAK,QAAQ;QAC9B,OAAO,CAAC,CAAC,gBAAgB,KAAK,QAAQ;QACtC,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ;QAC1B,OAAO,CAAC,CAAC,KAAK,KAAK,QAAQ;QAC3B,OAAO,CAAC,CAAC,SAAS,KAAK,QAAQ,CAChC,CAAC;AACJ,CAAC"}

package/dist/agent-settlement-anchor.d.ts

@@ -14,6 +14,7 @@
  * Any implementation can produce and verify per-agent settlement anchor proofs
  * using these types and the shared Merkle library.
  */
+import type { MerkleTreeVersion } from "./merkle-tree-hash.js";
 /**
  * A batch of per-agent settlement leaf hashes anchored as a Merkle tree.
  *
@@ -98,5 +99,16 @@ export interface AgentSettlementAnchorProof {
     batch_signature: string;
     /** Onchain anchor metadata, or null if not yet submitted. */
     anchor: AgentSettlementChainAnchor | null;
+    /**
+     * Tree-hash recipe for the Merkle path (leaf-domain / node-domain tags +
+     * hash). A `MerkleTreeVersion` from `merkle-tree-hash.ts`. **Absent ⇒
+     * `merkle-sha256-plain-v1`** — every proof minted before this axis existed
+     * still verifies offline. Verifiers resolve absent to the default and reject
+     * an unknown value fail-closed (never silently downgrade); a v2 producer MUST
+     * emit it rather than rely on the default. Separate axis from `suite` (the
+     * batch-signature recipe). See
+     * `docs/doctrine/merkle-tree-hash-versioning.md`.
+     */
+    tree_hash_version?: MerkleTreeVersion;
 }
 //# sourceMappingURL=agent-settlement-anchor.d.ts.map

package/dist/agent-settlement-anchor.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"agent-settlement-anchor.d.ts","sourceRoot":"","sources":["../src/agent-settlement-anchor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAIH;;;;;;GAMG;AACH,MAAM,WAAW,0BAA0B;IACzC,gCAAgC;IAChC,QAAQ,EAAE,MAAM,CAAC;IACjB,sDAAsD;IACtD,QAAQ,EAAE,MAAM,CAAC;IACjB,uCAAuC;IACvC,WAAW,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,gBAAgB,EAAE,MAAM,CAAC;IACzB,mEAAmE;IACnE,eAAe,EAAE,MAAM,CAAC;IACxB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,SAAS,EAAE,MAAM,CAAC;IAClB,wEAAwE;IACxE,MAAM,EAAE,0BAA0B,GAAG,IAAI,CAAC;CAC3C;AAED,iDAAiD;AACjD,MAAM,WAAW,0BAA0B;IACzC,yCAAyC;IACzC,KAAK,EAAE,MAAM,CAAC;IACd,gEAAgE;IAChE,OAAO,EAAE,MAAM,CAAC;IAChB,4CAA4C;IAC5C,OAAO,EAAE,MAAM,CAAC;IAChB,2DAA2D;IAC3D,WAAW,EAAE,MAAM,CAAC;CACrB;AAID,8FAA8F;AAC9F,MAAM,WAAW,0BAA0B;IACzC,6BAA6B;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB;;;;OAIG;IACH,eAAe,EAAE,MAAM,CAAC;IACxB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,4CAA4C;IAC5C,WAAW,EAAE,MAAM,CAAC;IACpB,qFAAqF;IACrF,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,gBAAgB,EAAE,MAAM,CAAC;IACzB,mEAAmE;IACnE,eAAe,EAAE,MAAM,CAAC;IACxB,8DAA8D;IAC9D,UAAU,EAAE,MAAM,CAAC;IACnB,+DAA+D;IAC/D,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,oDAAoD;IACpD,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,qDAAqD;IACrD,QAAQ,EAAE,MAAM,CAAC;IACjB,sFAAsF;IACtF,gBAAgB,EAAE,MAAM,CAAC;IACzB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,eAAe,EAAE,MAAM,CAAC;IACxB,6DAA6D;IAC7D,MAAM,EAAE,0BAA0B,GAAG,IAAI,CAAC;CAC3C"}
+{"version":3,"file":"agent-settlement-anchor.d.ts","sourceRoot":"","sources":["../src/agent-settlement-anchor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAI/D;;;;;;GAMG;AACH,MAAM,WAAW,0BAA0B;IACzC,gCAAgC;IAChC,QAAQ,EAAE,MAAM,CAAC;IACjB,sDAAsD;IACtD,QAAQ,EAAE,MAAM,CAAC;IACjB,uCAAuC;IACvC,WAAW,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,gBAAgB,EAAE,MAAM,CAAC;IACzB,mEAAmE;IACnE,eAAe,EAAE,MAAM,CAAC;IACxB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,SAAS,EAAE,MAAM,CAAC;IAClB,wEAAwE;IACxE,MAAM,EAAE,0BAA0B,GAAG,IAAI,CAAC;CAC3C;AAED,iDAAiD;AACjD,MAAM,WAAW,0BAA0B;IACzC,yCAAyC;IACzC,KAAK,EAAE,MAAM,CAAC;IACd,gEAAgE;IAChE,OAAO,EAAE,MAAM,CAAC;IAChB,4CAA4C;IAC5C,OAAO,EAAE,MAAM,CAAC;IAChB,2DAA2D;IAC3D,WAAW,EAAE,MAAM,CAAC;CACrB;AAID,8FAA8F;AAC9F,MAAM,WAAW,0BAA0B;IACzC,6BAA6B;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB;;;;OAIG;IACH,eAAe,EAAE,MAAM,CAAC;IACxB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,4CAA4C;IAC5C,WAAW,EAAE,MAAM,CAAC;IACpB,qFAAqF;IACrF,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,gBAAgB,EAAE,MAAM,CAAC;IACzB,mEAAmE;IACnE,eAAe,EAAE,MAAM,CAAC;IACxB,8DAA8D;IAC9D,UAAU,EAAE,MAAM,CAAC;IACnB,+DAA+D;IAC/D,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,oDAAoD;IACpD,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,qDAAqD;IACrD,QAAQ,EAAE,MAAM,CAAC;IACjB,sFAAsF;IACtF,gBAAgB,EAAE,MAAM,CAAC;IACzB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,eAAe,EAAE,MAAM,CAAC;IACxB,6DAA6D;IAC7D,MAAM,EAAE,0BAA0B,GAAG,IAAI,CAAC;IAC1C;;;;;;;;;OASG;IACH,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;CACvC"}

package/dist/artifact-type.d.ts

@@ -31,14 +31,15 @@
  */
 /**
  * The closed set of content-artifact categories motebit currently
- * signs. The first twelve cover the state-export endpoints at
+ * signs. Thirteen cover the state-export endpoints at
  * `services/relay/src/state-export.ts` (relay-assembled bundles
  * the relay signs as a witness over its database state per the
- * recognition note in `docs/doctrine/nist-alignment.md` §8). The
- * thirteenth — `goal-result` — is the **first non-relay-state-export
- * consumer**: a motebit-direct, per-fire artifact that the motebit
- * itself signs as the producer (the agent's own work product, not
- * a relay-assembled bundle). The expansion is doctrinally aligned —
+ * recognition note in `docs/doctrine/nist-alignment.md` §8) — the
+ * original twelve plus `settlement-summary` (the per-peer economic
+ * projection over `relay_settlements`). `goal-result` is the **first
+ * non-relay-state-export consumer**: a motebit-direct, per-fire
+ * artifact that the motebit itself signs as the producer (the agent's
+ * own work product, not a relay-assembled bundle). The expansion is doctrinally aligned —
  * the registry's stated semantic is "content-artifact category for
  * C2PA-shape provenance," not "relay state-export bundle." Goals
  * is the first arc to prove the registry generalizes; future
@@ -78,6 +79,15 @@
  *     categories" — the artifact category's cryptographic
  *     provenance envelope. Bound to the fire via `invocation`
  *     (goal_id + execution-receipt id when present).
+ *   - `settlement-summary` — per-peer economic history projected
+ *     from the relay's signed settlement ledger
+ *     (`/api/v1/agents/:motebitId/settlements`). Relay-assembled witness
+ *     over `relay_settlements`: for the calling motebit, what it
+ *     earned from and paid to each counterparty, in micro-units.
+ *     The money side of the first-person trust graph — receipts
+ *     stay source of truth, this is a materialized projection, never
+ *     a denormalized balance. Doctrine:
+ *     `docs/doctrine/agents-as-first-person-trust-graph.md` §6.
  *
  * Adding an endpoint is intentional protocol-level work: a new
  * `ContentArtifactType` entry here, a new named constant, a new
@@ -89,7 +99,7 @@
  * not to motebit-direct consumers like `goal-result`, which the
  * runtime signs at fire-time through its own helper.
  */
-export type ContentArtifactType = "state-snapshot" | "memory-export" | "goal-list" | "conversation-list" | "conversation-messages" | "device-list" | "audit-trail" | "plan-list" | "plan-detail" | "gradient-history" | "sync-pull" | "execution-ledger" | "goal-result";
+export type ContentArtifactType = "state-snapshot" | "memory-export" | "goal-list" | "conversation-list" | "conversation-messages" | "device-list" | "audit-trail" | "plan-list" | "plan-detail" | "gradient-history" | "sync-pull" | "execution-ledger" | "goal-result" | "settlement-summary";
 /** Relay's stored state-vector snapshot for a motebit. */
 export declare const STATE_SNAPSHOT_ARTIFACT: ContentArtifactType;
 /** Relay-assembled memory-graph snapshot (nodes + edges). */
@@ -128,6 +138,14 @@ export declare const EXECUTION_LEDGER_ARTIFACT: ContentArtifactType;
  * artifact category's cryptographic provenance envelope.
  */
 export declare const GOAL_RESULT_ARTIFACT: ContentArtifactType;
+/**
+ * Relay-assembled per-peer economic history for a motebit — what it
+ * earned from and paid to each counterparty, projected from the signed
+ * `relay_settlements` ledger. The money side of the first-person trust
+ * graph; a materialized projection, never a stored balance. Doctrine:
+ * `docs/doctrine/agents-as-first-person-trust-graph.md` §6.
+ */
+export declare const SETTLEMENT_SUMMARY_ARTIFACT: ContentArtifactType;
 /**
  * Canonical iteration order, frozen. Consumers that need to iterate
  * (drift gates, tooling, docs) use this so TypeScript sees the narrow

package/dist/artifact-type.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"artifact-type.d.ts","sourceRoot":"","sources":["../src/artifact-type.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAEH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2DG;AACH,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,GAChB,eAAe,GACf,WAAW,GACX,mBAAmB,GACnB,uBAAuB,GACvB,aAAa,GACb,aAAa,GACb,WAAW,GACX,aAAa,GACb,kBAAkB,GAClB,WAAW,GACX,kBAAkB,GAClB,aAAa,CAAC;AAUlB,0DAA0D;AAC1D,eAAO,MAAM,uBAAuB,EAAE,mBAAsC,CAAC;AAE7E,6DAA6D;AAC7D,eAAO,MAAM,sBAAsB,EAAE,mBAAqC,CAAC;AAE3E,+CAA+C;AAC/C,eAAO,MAAM,kBAAkB,EAAE,mBAAiC,CAAC;AAEnE,wDAAwD;AACxD,eAAO,MAAM,0BAA0B,EAAE,mBAAyC,CAAC;AAEnF,mEAAmE;AACnE,eAAO,MAAM,8BAA8B,EAAE,mBAA6C,CAAC;AAE3F,+DAA+D;AAC/D,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE,+CAA+C;AAC/C,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE,6EAA6E;AAC7E,eAAO,MAAM,kBAAkB,EAAE,mBAAiC,CAAC;AAEnE,yDAAyD;AACzD,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE,4DAA4D;AAC5D,eAAO,MAAM,yBAAyB,EAAE,mBAAwC,CAAC;AAEjF,sEAAsE;AACtE,eAAO,MAAM,kBAAkB,EAAE,mBAAiC,CAAC;AAEnE;;;;;GAKG;AACH,eAAO,MAAM,yBAAyB,EAAE,mBAAwC,CAAC;AAEjF;;;;;;;GAOG;AACH,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAIvE;;;;GAIG;AACH,eAAO,MAAM,0BAA0B,EAAE,SAAS,mBAAmB,EAcnE,CAAC;AAEH;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,mBAAmB,CAIlF"}
+{"version":3,"file":"artifact-type.d.ts","sourceRoot":"","sources":["../src/artifact-type.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAEH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqEG;AACH,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,GAChB,eAAe,GACf,WAAW,GACX,mBAAmB,GACnB,uBAAuB,GACvB,aAAa,GACb,aAAa,GACb,WAAW,GACX,aAAa,GACb,kBAAkB,GAClB,WAAW,GACX,kBAAkB,GAClB,aAAa,GACb,oBAAoB,CAAC;AAUzB,0DAA0D;AAC1D,eAAO,MAAM,uBAAuB,EAAE,mBAAsC,CAAC;AAE7E,6DAA6D;AAC7D,eAAO,MAAM,sBAAsB,EAAE,mBAAqC,CAAC;AAE3E,+CAA+C;AAC/C,eAAO,MAAM,kBAAkB,EAAE,mBAAiC,CAAC;AAEnE,wDAAwD;AACxD,eAAO,MAAM,0BAA0B,EAAE,mBAAyC,CAAC;AAEnF,mEAAmE;AACnE,eAAO,MAAM,8BAA8B,EAAE,mBAA6C,CAAC;AAE3F,+DAA+D;AAC/D,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE,+CAA+C;AAC/C,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE,6EAA6E;AAC7E,eAAO,MAAM,kBAAkB,EAAE,mBAAiC,CAAC;AAEnE,yDAAyD;AACzD,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE,4DAA4D;AAC5D,eAAO,MAAM,yBAAyB,EAAE,mBAAwC,CAAC;AAEjF,sEAAsE;AACtE,eAAO,MAAM,kBAAkB,EAAE,mBAAiC,CAAC;AAEnE;;;;;GAKG;AACH,eAAO,MAAM,yBAAyB,EAAE,mBAAwC,CAAC;AAEjF;;;;;;;GAOG;AACH,eAAO,MAAM,oBAAoB,EAAE,mBAAmC,CAAC;AAEvE;;;;;;GAMG;AACH,eAAO,MAAM,2BAA2B,EAAE,mBAA0C,CAAC;AAIrF;;;;GAIG;AACH,eAAO,MAAM,0BAA0B,EAAE,SAAS,mBAAmB,EAenE,CAAC;AAEH;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,mBAAmB,CAIlF"}

package/dist/artifact-type.js

@@ -74,6 +74,14 @@ export const EXECUTION_LEDGER_ARTIFACT = "execution-ledger";
  * artifact category's cryptographic provenance envelope.
  */
 export const GOAL_RESULT_ARTIFACT = "goal-result";
+/**
+ * Relay-assembled per-peer economic history for a motebit — what it
+ * earned from and paid to each counterparty, projected from the signed
+ * `relay_settlements` ledger. The money side of the first-person trust
+ * graph; a materialized projection, never a stored balance. Doctrine:
+ * `docs/doctrine/agents-as-first-person-trust-graph.md` §6.
+ */
+export const SETTLEMENT_SUMMARY_ARTIFACT = "settlement-summary";
 // === Iteration + type guard =================================================
 /**
  * Canonical iteration order, frozen. Consumers that need to iterate
@@ -94,6 +102,7 @@ export const ALL_CONTENT_ARTIFACT_TYPES = Object.freeze([
     "sync-pull",
     "execution-ledger",
     "goal-result",
+    "settlement-summary",
 ]);
 /**
  * Type guard — narrows `unknown` to `ContentArtifactType`. Drift-gate-driven

package/dist/artifact-type.js.map

@@ -1 +1 @@
-{"version":3,"file":"artifact-type.js","sourceRoot":"","sources":["../src/artifact-type.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AA6EH,+EAA+E;AAC/E,EAAE;AACF,yEAAyE;AACzE,0EAA0E;AAC1E,4EAA4E;AAC5E,6EAA6E;AAC7E,kBAAkB;AAElB,0DAA0D;AAC1D,MAAM,CAAC,MAAM,uBAAuB,GAAwB,gBAAgB,CAAC;AAE7E,6DAA6D;AAC7D,MAAM,CAAC,MAAM,sBAAsB,GAAwB,eAAe,CAAC;AAE3E,+CAA+C;AAC/C,MAAM,CAAC,MAAM,kBAAkB,GAAwB,WAAW,CAAC;AAEnE,wDAAwD;AACxD,MAAM,CAAC,MAAM,0BAA0B,GAAwB,mBAAmB,CAAC;AAEnF,mEAAmE;AACnE,MAAM,CAAC,MAAM,8BAA8B,GAAwB,uBAAuB,CAAC;AAE3F,+DAA+D;AAC/D,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,+CAA+C;AAC/C,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,6EAA6E;AAC7E,MAAM,CAAC,MAAM,kBAAkB,GAAwB,WAAW,CAAC;AAEnE,yDAAyD;AACzD,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,4DAA4D;AAC5D,MAAM,CAAC,MAAM,yBAAyB,GAAwB,kBAAkB,CAAC;AAEjF,sEAAsE;AACtE,MAAM,CAAC,MAAM,kBAAkB,GAAwB,WAAW,CAAC;AAEnE;;;;;GAKG;AACH,MAAM,CAAC,MAAM,yBAAyB,GAAwB,kBAAkB,CAAC;AAEjF;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,+EAA+E;AAE/E;;;;GAIG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAmC,MAAM,CAAC,MAAM,CAAC;IACtF,gBAAgB;IAChB,eAAe;IACf,WAAW;IACX,mBAAmB;IACnB,uBAAuB;IACvB,aAAa;IACb,aAAa;IACb,WAAW;IACX,aAAa;IACb,kBAAkB;IAClB,WAAW;IACX,kBAAkB;IAClB,aAAa;CACd,CAAC,CAAC;AAEH;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,KAAc;IAClD,OAAO,CACL,OAAO,KAAK,KAAK,QAAQ,IAAK,0BAAgD,CAAC,QAAQ,CAAC,KAAK,CAAC,CAC/F,CAAC;AACJ,CAAC"}
+{"version":3,"file":"artifact-type.js","sourceRoot":"","sources":["../src/artifact-type.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAwFH,+EAA+E;AAC/E,EAAE;AACF,yEAAyE;AACzE,0EAA0E;AAC1E,4EAA4E;AAC5E,6EAA6E;AAC7E,kBAAkB;AAElB,0DAA0D;AAC1D,MAAM,CAAC,MAAM,uBAAuB,GAAwB,gBAAgB,CAAC;AAE7E,6DAA6D;AAC7D,MAAM,CAAC,MAAM,sBAAsB,GAAwB,eAAe,CAAC;AAE3E,+CAA+C;AAC/C,MAAM,CAAC,MAAM,kBAAkB,GAAwB,WAAW,CAAC;AAEnE,wDAAwD;AACxD,MAAM,CAAC,MAAM,0BAA0B,GAAwB,mBAAmB,CAAC;AAEnF,mEAAmE;AACnE,MAAM,CAAC,MAAM,8BAA8B,GAAwB,uBAAuB,CAAC;AAE3F,+DAA+D;AAC/D,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,+CAA+C;AAC/C,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,6EAA6E;AAC7E,MAAM,CAAC,MAAM,kBAAkB,GAAwB,WAAW,CAAC;AAEnE,yDAAyD;AACzD,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE,4DAA4D;AAC5D,MAAM,CAAC,MAAM,yBAAyB,GAAwB,kBAAkB,CAAC;AAEjF,sEAAsE;AACtE,MAAM,CAAC,MAAM,kBAAkB,GAAwB,WAAW,CAAC;AAEnE;;;;;GAKG;AACH,MAAM,CAAC,MAAM,yBAAyB,GAAwB,kBAAkB,CAAC;AAEjF;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAwB,aAAa,CAAC;AAEvE;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,2BAA2B,GAAwB,oBAAoB,CAAC;AAErF,+EAA+E;AAE/E;;;;GAIG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAmC,MAAM,CAAC,MAAM,CAAC;IACtF,gBAAgB;IAChB,eAAe;IACf,WAAW;IACX,mBAAmB;IACnB,uBAAuB;IACvB,aAAa;IACb,aAAa;IACb,WAAW;IACX,aAAa;IACb,kBAAkB;IAClB,WAAW;IACX,kBAAkB;IAClB,aAAa;IACb,oBAAoB;CACrB,CAAC,CAAC;AAEH;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,KAAc;IAClD,OAAO,CACL,OAAO,KAAK,KAAK,QAAQ,IAAK,0BAAgD,CAAC,QAAQ,CAAC,KAAK,CAAC,CAC/F,CAAC;AACJ,CAAC"}

package/dist/base58.d.ts

@@ -0,0 +1,20 @@
+/**
+ * base58btc encoding (Bitcoin alphabet) — a pure, chain-agnostic codec.
+ *
+ * This is NOT a Solana primitive: base58btc is the shared encoding used by
+ * Bitcoin, IPFS (CIDv0), Solana addresses, and others. It lives in
+ * `@motebit/protocol` as a sibling to the money converters (`toMicro` /
+ * `fromMicro`) — pure deterministic byte math, no I/O, no chain awareness.
+ *
+ * The motebit use today: a Solana address is `base58Encode(ed25519_pubkey)` —
+ * the sovereign rail's "identity key = address" property. That chain-specific
+ * knowledge ("Solana address = base58 of the 32-byte pubkey") stays at the call
+ * site; this module only knows bytes → base58 string.
+ */
+/**
+ * Encode bytes as a base58btc string. Leading zero bytes map to leading `1`s
+ * (base58btc convention), so the encoding is length-preserving for zero
+ * prefixes — the property addresses and CIDs depend on.
+ */
+export declare function base58Encode(bytes: Uint8Array): string;
+//# sourceMappingURL=base58.d.ts.map

package/dist/base58.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base58.d.ts","sourceRoot":"","sources":["../src/base58.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH;;;;GAIG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CA0BtD"}

package/dist/base58.js

@@ -0,0 +1,47 @@
+/**
+ * base58btc encoding (Bitcoin alphabet) — a pure, chain-agnostic codec.
+ *
+ * This is NOT a Solana primitive: base58btc is the shared encoding used by
+ * Bitcoin, IPFS (CIDv0), Solana addresses, and others. It lives in
+ * `@motebit/protocol` as a sibling to the money converters (`toMicro` /
+ * `fromMicro`) — pure deterministic byte math, no I/O, no chain awareness.
+ *
+ * The motebit use today: a Solana address is `base58Encode(ed25519_pubkey)` —
+ * the sovereign rail's "identity key = address" property. That chain-specific
+ * knowledge ("Solana address = base58 of the 32-byte pubkey") stays at the call
+ * site; this module only knows bytes → base58 string.
+ */
+const ALPHABET = "123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz";
+/**
+ * Encode bytes as a base58btc string. Leading zero bytes map to leading `1`s
+ * (base58btc convention), so the encoding is length-preserving for zero
+ * prefixes — the property addresses and CIDs depend on.
+ */
+export function base58Encode(bytes) {
+    if (bytes.length === 0)
+        return "";
+    // Leading zero bytes become leading '1' characters.
+    let zeros = 0;
+    while (zeros < bytes.length && bytes[zeros] === 0)
+        zeros++;
+    // Convert the big-endian byte array to a little-endian base-58 digit array
+    // by treating it as a base-256 number and repeatedly carrying into base 58.
+    const digits = [];
+    for (let i = zeros; i < bytes.length; i++) {
+        let carry = bytes[i];
+        for (let j = 0; j < digits.length; j++) {
+            carry += digits[j] << 8;
+            digits[j] = carry % 58;
+            carry = (carry / 58) | 0;
+        }
+        while (carry > 0) {
+            digits.push(carry % 58);
+            carry = (carry / 58) | 0;
+        }
+    }
+    let out = "1".repeat(zeros);
+    for (let k = digits.length - 1; k >= 0; k--)
+        out += ALPHABET[digits[k]];
+    return out;
+}
+//# sourceMappingURL=base58.js.map

package/dist/base58.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"base58.js","sourceRoot":"","sources":["../src/base58.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,MAAM,QAAQ,GAAG,4DAA4D,CAAC;AAE9E;;;;GAIG;AACH,MAAM,UAAU,YAAY,CAAC,KAAiB;IAC5C,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAElC,oDAAoD;IACpD,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,OAAO,KAAK,GAAG,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC;QAAE,KAAK,EAAE,CAAC;IAE3D,2EAA2E;IAC3E,4EAA4E;IAC5E,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,KAAK,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC1C,IAAI,KAAK,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;QACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACvC,KAAK,IAAI,MAAM,CAAC,CAAC,CAAE,IAAI,CAAC,CAAC;YACzB,MAAM,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,EAAE,CAAC;YACvB,KAAK,GAAG,CAAC,KAAK,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;QACD,OAAO,KAAK,GAAG,CAAC,EAAE,CAAC;YACjB,MAAM,CAAC,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC,CAAC;YACxB,KAAK,GAAG,CAAC,KAAK,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,IAAI,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE;QAAE,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAE,CAAC,CAAC;IACzE,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/credential-anchor.d.ts

@@ -5,6 +5,7 @@
  * for credential anchoring. Any implementation can produce and verify anchor
  * proofs using these types.
  */
+import type { MerkleTreeVersion } from "./merkle-tree-hash.js";
 /** A batch of credential hashes anchored as a Merkle tree. */
 export interface CredentialAnchorBatch {
     /** UUID v4 batch identifier. */
@@ -79,6 +80,17 @@ export interface CredentialAnchorProof {
     batch_signature: string;
     /** Onchain anchor metadata, or null if not yet submitted. */
     anchor: CredentialChainAnchor | null;
+    /**
+     * Tree-hash recipe for the Merkle path (leaf-domain / node-domain tags +
+     * hash). A `MerkleTreeVersion` from `merkle-tree-hash.ts`. **Absent ⇒
+     * `merkle-sha256-plain-v1`** — every proof minted before this axis existed
+     * still verifies offline. Verifiers resolve absent to the default and reject
+     * an unknown value fail-closed (never silently downgrade); a v2 producer MUST
+     * emit it rather than rely on the default. Separate axis from `suite` (the
+     * batch-signature recipe). See
+     * `docs/doctrine/merkle-tree-hash-versioning.md`.
+     */
+    tree_hash_version?: MerkleTreeVersion;
 }
 /**
  * Chain-agnostic interface for submitting Merkle roots onchain.

package/dist/credential-anchor.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"credential-anchor.d.ts","sourceRoot":"","sources":["../src/credential-anchor.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,8DAA8D;AAC9D,MAAM,WAAW,qBAAqB;IACpC,gCAAgC;IAChC,QAAQ,EAAE,MAAM,CAAC;IACjB,sDAAsD;IACtD,QAAQ,EAAE,MAAM,CAAC;IACjB,uCAAuC;IACvC,WAAW,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,eAAe,EAAE,MAAM,CAAC;IACxB,mEAAmE;IACnE,cAAc,EAAE,MAAM,CAAC;IACvB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,SAAS,EAAE,MAAM,CAAC;IAClB,wEAAwE;IACxE,MAAM,EAAE,qBAAqB,GAAG,IAAI,CAAC;CACtC;AAED,iDAAiD;AACjD,MAAM,WAAW,qBAAqB;IACpC,yCAAyC;IACzC,KAAK,EAAE,MAAM,CAAC;IACd,mFAAmF;IACnF,OAAO,EAAE,MAAM,CAAC;IAChB,4CAA4C;IAC5C,OAAO,EAAE,MAAM,CAAC;IAChB,2DAA2D;IAC3D,WAAW,EAAE,MAAM,CAAC;CACrB;AAID,oFAAoF;AACpF,MAAM,WAAW,qBAAqB;IACpC,6BAA6B;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB,yEAAyE;IACzE,eAAe,EAAE,MAAM,CAAC;IACxB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,4CAA4C;IAC5C,WAAW,EAAE,MAAM,CAAC;IACpB,+EAA+E;IAC/E,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,eAAe,EAAE,MAAM,CAAC;IACxB,mEAAmE;IACnE,cAAc,EAAE,MAAM,CAAC;IACvB,8DAA8D;IAC9D,UAAU,EAAE,MAAM,CAAC;IACnB,+DAA+D;IAC/D,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,oDAAoD;IACpD,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,qDAAqD;IACrD,QAAQ,EAAE,MAAM,CAAC;IACjB,gFAAgF;IAChF,gBAAgB,EAAE,MAAM,CAAC;IACzB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,eAAe,EAAE,MAAM,CAAC;IACxB,6DAA6D;IAC7D,MAAM,EAAE,qBAAqB,GAAG,IAAI,CAAC;CACtC;AAID;;;;;GAKG;AACH,MAAM,WAAW,oBAAoB;IACnC,mDAAmD;IACnD,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,iCAAiC;IACjC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,kEAAkE;IAClE,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAChG,8EAA8E;IAC9E,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;CACjC"}
+{"version":3,"file":"credential-anchor.d.ts","sourceRoot":"","sources":["../src/credential-anchor.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAI/D,8DAA8D;AAC9D,MAAM,WAAW,qBAAqB;IACpC,gCAAgC;IAChC,QAAQ,EAAE,MAAM,CAAC;IACjB,sDAAsD;IACtD,QAAQ,EAAE,MAAM,CAAC;IACjB,uCAAuC;IACvC,WAAW,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,eAAe,EAAE,MAAM,CAAC;IACxB,mEAAmE;IACnE,cAAc,EAAE,MAAM,CAAC;IACvB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,SAAS,EAAE,MAAM,CAAC;IAClB,wEAAwE;IACxE,MAAM,EAAE,qBAAqB,GAAG,IAAI,CAAC;CACtC;AAED,iDAAiD;AACjD,MAAM,WAAW,qBAAqB;IACpC,yCAAyC;IACzC,KAAK,EAAE,MAAM,CAAC;IACd,mFAAmF;IACnF,OAAO,EAAE,MAAM,CAAC;IAChB,4CAA4C;IAC5C,OAAO,EAAE,MAAM,CAAC;IAChB,2DAA2D;IAC3D,WAAW,EAAE,MAAM,CAAC;CACrB;AAID,oFAAoF;AACpF,MAAM,WAAW,qBAAqB;IACpC,6BAA6B;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB,yEAAyE;IACzE,eAAe,EAAE,MAAM,CAAC;IACxB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,4CAA4C;IAC5C,WAAW,EAAE,MAAM,CAAC;IACpB,+EAA+E;IAC/E,UAAU,EAAE,MAAM,CAAC;IACnB,qEAAqE;IACrE,eAAe,EAAE,MAAM,CAAC;IACxB,mEAAmE;IACnE,cAAc,EAAE,MAAM,CAAC;IACvB,8DAA8D;IAC9D,UAAU,EAAE,MAAM,CAAC;IACnB,+DAA+D;IAC/D,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,oDAAoD;IACpD,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,qDAAqD;IACrD,QAAQ,EAAE,MAAM,CAAC;IACjB,gFAAgF;IAChF,gBAAgB,EAAE,MAAM,CAAC;IACzB;;;;;OAKG;IACH,KAAK,EAAE,4BAA4B,CAAC;IACpC,sEAAsE;IACtE,eAAe,EAAE,MAAM,CAAC;IACxB,6DAA6D;IAC7D,MAAM,EAAE,qBAAqB,GAAG,IAAI,CAAC;IACrC;;;;;;;;;OASG;IACH,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;CACvC;AAID;;;;;GAKG;AACH,MAAM,WAAW,oBAAoB;IACnC,mDAAmD;IACnD,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,iCAAiC;IACjC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,kEAAkE;IAClE,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAChG,8EAA8E;IAC9E,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;CACjC"}