@nexart/ai-execution 0.10.0 → 0.12.0

package/dist/index.d.cts

@@ -1,5 +1,5 @@
-import { C as CreateSnapshotParams, A as AiExecutionSnapshotV1, V as VerificationResult, a as CerMeta, B as BundleDeclaration, b as CerAiExecutionBundle, c as CertifyDecisionParams, R as RunBuilderOptions, S as StepParams, d as RunSummary, e as AttestOptions, f as AttestationResult, g as SanitizeStorageOptions, h as AttestationReceipt, N as NodeKeysDocument, i as NodeReceiptVerifyResult, j as SignedAttestationReceipt, k as CerVerifyCode, l as AiefVerifyResult, T as ToolEvent, m as RunSummaryVerifyResult, n as AiefProfile } from './types-C5t12OK8.cjs';
-export { o as AiExecutionParameters, p as AttestationReceiptResult, q as ClientDefaults, r as NexArtClient, P as ProviderCallParams, s as ProviderCallResult, t as ProviderConfig, u as RedactionEnvelope, W as WrappedExecutionParams, v as WrappedExecutionResult } from './types-C5t12OK8.cjs';
+import { C as CreateSnapshotParams, A as AiExecutionSnapshotV1, V as VerificationResult, a as CerMeta, B as BundleDeclaration, b as CerContextSignal, c as CerAiExecutionBundle, d as CertifyDecisionParams, R as RunBuilderOptions, S as StepParams, e as RunSummary, f as AttestOptions, g as AttestationResult, h as SanitizeStorageOptions, i as AttestationReceipt, N as NodeKeysDocument, j as NodeReceiptVerifyResult, k as SignedAttestationReceipt, l as CerVerifyCode, m as AiefVerifyResult, T as ToolEvent, n as RunSummaryVerifyResult, o as AiefProfile } from './types-C_M2xSWK.cjs';
+export { p as AiExecutionParameters, q as AttestationReceiptResult, r as CerContext, s as ClientDefaults, t as NexArtClient, P as ProviderCallParams, u as ProviderCallResult, v as ProviderConfig, w as RedactionEnvelope, W as WrappedExecutionParams, x as WrappedExecutionResult } from './types-C_M2xSWK.cjs';
 export { wrapProvider } from './providers/wrap.cjs';
 export { AttestDecisionFn, LangChainAttestedResult, LangChainCerResult, LangChainCertificationInput, certifyLangChainRun, createLangChainCer } from './langchain.cjs';
 
@@ -29,6 +29,8 @@ declare function sealCer(snapshot: AiExecutionSnapshotV1, options?: {
     createdAt?: string;
     meta?: CerMeta;
     declaration?: BundleDeclaration;
+    /** v0.10.0 — upstream signals to bind as evidence. Included in certificateHash. */
+    signals?: CerContextSignal[];
 }): CerAiExecutionBundle;
 declare function verifyCer(bundle: CerAiExecutionBundle): VerificationResult;
 
@@ -566,4 +568,116 @@ interface CerVerificationResult {
  */
 declare function verifyAiCerBundleDetailed(bundle: unknown): CerVerificationResult;
 
-export { AiExecutionSnapshotV1, AiefProfile, AiefVerifyResult, AttestOptions, AttestationReceipt, AttestationResult, BundleDeclaration, CerAiExecutionBundle, CerAttestationError, CerMeta, CerVerificationError, type CerVerificationResult, CerVerifyCode, CerVerifyCode as CerVerifyCodeType, type CertifyAndAttestRunOptions, type CertifyAndAttestRunResult, CertifyDecisionParams, type CheckStatus, CreateSnapshotParams, type ExportVerifiableRedactedOptions, type ExportVerifiableRedactedProvenance, type ExportVerifiableRedactedResult, type MakeToolEventParams, NodeKeysDocument, NodeReceiptVerifyResult, type ProfileValidationResult, ReasonCode, ReasonCode as ReasonCodeType, type RedactBeforeSealPolicy, RunBuilder, RunBuilderOptions, RunSummary, RunSummaryVerifyResult, SanitizeStorageOptions, SignedAttestationReceipt, StepParams, ToolEvent, VerificationResult, type VerificationStatus, type VerifyRunSummaryOptions, attest, attestIfNeeded, certifyAndAttestDecision, certifyAndAttestRun, certifyDecision, certifyDecisionFromProviderCall, computeInputHash, computeOutputHash, createClient, createSnapshot, exportCer, exportVerifiableRedacted, fetchNodeKeys, getAttestationReceipt, hasAttestation, hashCanonicalJson, hashToolOutput, hashUtf8, importCer, makeToolEvent, mapToAiefReason, redactBeforeSeal, sanitizeForAttestation, sanitizeForStamp, sanitizeForStorage, sealCer, selectNodeKey, sha256Hex, toCanonicalJson, validateProfile, verifyCer as verify, verifyAiCerBundleDetailed, verifyAief, verifyBundleAttestation, verifyCer, verifyNodeReceiptSignature, verifyRunSummary, verifySnapshot };
+/**
+ * @nexart/ai-execution — CER package helpers (v0.12.0)
+ *
+ * A "CER package" is a transport/export envelope that wraps a sealed
+ * cer.ai.execution.v1 bundle with optional receipt, signature, and
+ * attestation metadata.
+ *
+ * These helpers sit around the existing core and do NOT change CER hashing,
+ * canonicalization, attestation, or verification semantics in any way.
+ *
+ * @example
+ * ```ts
+ * import { certifyDecision } from '@nexart/ai-execution';
+ * import { createCerPackage, exportCerPackage, importCerPackage } from '@nexart/ai-execution';
+ *
+ * const cer = certifyDecision({ ... });
+ * const pkg = createCerPackage({ cer });
+ * const json = exportCerPackage(pkg);
+ * const restored = importCerPackage(json); // verifies inner CER
+ * ```
+ */
+
+/**
+ * A CER package — a transport/export envelope for a sealed CER bundle.
+ *
+ * The `cer` field is the only required field. All other fields are additive
+ * transport/export metadata and do not affect CER hashing or verification.
+ */
+interface AiCerPackage {
+    /** The sealed cer.ai.execution.v1 bundle. Required. */
+    cer: CerAiExecutionBundle;
+    /** Optional attestation receipt from a NexArt attestation node. */
+    receipt?: AttestationReceipt;
+    /**
+     * Optional base64url-encoded signature covering the package.
+     * NexArt does not interpret or verify this field — it is opaque transport metadata.
+     */
+    signature?: string;
+    /**
+     * Optional attestation summary block.
+     * NexArt does not interpret or verify its contents.
+     */
+    attestation?: Record<string, unknown>;
+    /**
+     * Optional verification envelope metadata.
+     * NexArt does not interpret or verify its contents.
+     */
+    verificationEnvelope?: Record<string, unknown>;
+    /**
+     * Optional base64url-encoded signature covering verificationEnvelope.
+     * NexArt does not interpret or verify this field — it is opaque transport metadata.
+     */
+    verificationEnvelopeSignature?: string;
+}
+/** Input parameters for createCerPackage(). Structurally identical to AiCerPackage. */
+type CreateCerPackageParams = AiCerPackage;
+/**
+ * Type guard: returns true if `value` is shaped like a CER package.
+ *
+ * A value qualifies as a CER package if it is a plain object whose `cer`
+ * field is a plain object with `bundleType === 'cer.ai.execution.v1'`.
+ *
+ * Lightweight structural check only — does NOT verify the inner CER hash.
+ * Use `verifyCerPackage()` or `importCerPackage()` for integrity verification.
+ */
+declare function isCerPackage(value: unknown): value is AiCerPackage;
+/**
+ * Assemble a CER package from a sealed CER bundle and optional transport metadata.
+ *
+ * Simple assembly only. Does NOT sign, re-hash, or re-verify the CER.
+ * The `cer.certificateHash` is taken as-is and remains authoritative.
+ * Only fields explicitly provided in `params` are included in the returned package.
+ */
+declare function createCerPackage(params: CreateCerPackageParams): AiCerPackage;
+/**
+ * Extract the inner CER bundle from a CER package.
+ *
+ * Throws `CerVerificationError` if `pkg` is not a valid CER package shape.
+ * Does NOT re-verify the CER hash — use `verifyCerPackage()` if verification is needed.
+ */
+declare function getCerFromPackage(pkg: unknown): CerAiExecutionBundle;
+/**
+ * Serialize a CER package to a stable canonical JSON string for transport or storage.
+ *
+ * Uses the same canonicalJson serializer as the rest of the SDK for
+ * predictable, stable output across environments.
+ */
+declare function exportCerPackage(pkg: AiCerPackage): string;
+/**
+ * Parse a CER package JSON string, validate its shape, and verify the inner CER bundle.
+ *
+ * Throws `CerVerificationError` if:
+ * - the JSON string is malformed
+ * - the parsed value is not a CER package shape
+ * - the inner `cer` bundle fails `verifyCer()`
+ *
+ * Does NOT change or reinterpret the bundle — returns it exactly as parsed.
+ */
+declare function importCerPackage(json: string): AiCerPackage;
+/**
+ * Verify the inner CER bundle of a package using the existing `verifyCer()`.
+ *
+ * Conservative by design:
+ * - ONLY verifies the inner `cer` bundle (certificate hash, snapshot hashes, input/output hashes).
+ * - Does NOT verify `receipt`, `signature`, `verificationEnvelope`, or any other
+ *   package-level fields — those require provider-specific trust semantics outside this SDK.
+ *
+ * Returns the same `VerificationResult` shape as `verifyCer()`.
+ * When `pkg` is not a valid package shape, returns `ok: false` with code `SCHEMA_ERROR`.
+ */
+declare function verifyCerPackage(pkg: unknown): VerificationResult;
+
+export { type AiCerPackage, AiExecutionSnapshotV1, AiefProfile, AiefVerifyResult, AttestOptions, AttestationReceipt, AttestationResult, BundleDeclaration, CerAiExecutionBundle, CerAttestationError, CerContextSignal, CerMeta, CerVerificationError, type CerVerificationResult, CerVerifyCode, CerVerifyCode as CerVerifyCodeType, type CertifyAndAttestRunOptions, type CertifyAndAttestRunResult, CertifyDecisionParams, type CheckStatus, type CreateCerPackageParams, CreateSnapshotParams, type ExportVerifiableRedactedOptions, type ExportVerifiableRedactedProvenance, type ExportVerifiableRedactedResult, type MakeToolEventParams, NodeKeysDocument, NodeReceiptVerifyResult, type ProfileValidationResult, ReasonCode, ReasonCode as ReasonCodeType, type RedactBeforeSealPolicy, RunBuilder, RunBuilderOptions, RunSummary, RunSummaryVerifyResult, SanitizeStorageOptions, SignedAttestationReceipt, StepParams, ToolEvent, VerificationResult, type VerificationStatus, type VerifyRunSummaryOptions, attest, attestIfNeeded, certifyAndAttestDecision, certifyAndAttestRun, certifyDecision, certifyDecisionFromProviderCall, computeInputHash, computeOutputHash, createCerPackage, createClient, createSnapshot, exportCer, exportCerPackage, exportVerifiableRedacted, fetchNodeKeys, getAttestationReceipt, getCerFromPackage, hasAttestation, hashCanonicalJson, hashToolOutput, hashUtf8, importCer, importCerPackage, isCerPackage, makeToolEvent, mapToAiefReason, redactBeforeSeal, sanitizeForAttestation, sanitizeForStamp, sanitizeForStorage, sealCer, selectNodeKey, sha256Hex, toCanonicalJson, validateProfile, verifyCer as verify, verifyAiCerBundleDetailed, verifyAief, verifyBundleAttestation, verifyCer, verifyCerPackage, verifyNodeReceiptSignature, verifyRunSummary, verifySnapshot };

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-import { C as CreateSnapshotParams, A as AiExecutionSnapshotV1, V as VerificationResult, a as CerMeta, B as BundleDeclaration, b as CerAiExecutionBundle, c as CertifyDecisionParams, R as RunBuilderOptions, S as StepParams, d as RunSummary, e as AttestOptions, f as AttestationResult, g as SanitizeStorageOptions, h as AttestationReceipt, N as NodeKeysDocument, i as NodeReceiptVerifyResult, j as SignedAttestationReceipt, k as CerVerifyCode, l as AiefVerifyResult, T as ToolEvent, m as RunSummaryVerifyResult, n as AiefProfile } from './types-C5t12OK8.js';
-export { o as AiExecutionParameters, p as AttestationReceiptResult, q as ClientDefaults, r as NexArtClient, P as ProviderCallParams, s as ProviderCallResult, t as ProviderConfig, u as RedactionEnvelope, W as WrappedExecutionParams, v as WrappedExecutionResult } from './types-C5t12OK8.js';
+import { C as CreateSnapshotParams, A as AiExecutionSnapshotV1, V as VerificationResult, a as CerMeta, B as BundleDeclaration, b as CerContextSignal, c as CerAiExecutionBundle, d as CertifyDecisionParams, R as RunBuilderOptions, S as StepParams, e as RunSummary, f as AttestOptions, g as AttestationResult, h as SanitizeStorageOptions, i as AttestationReceipt, N as NodeKeysDocument, j as NodeReceiptVerifyResult, k as SignedAttestationReceipt, l as CerVerifyCode, m as AiefVerifyResult, T as ToolEvent, n as RunSummaryVerifyResult, o as AiefProfile } from './types-C_M2xSWK.js';
+export { p as AiExecutionParameters, q as AttestationReceiptResult, r as CerContext, s as ClientDefaults, t as NexArtClient, P as ProviderCallParams, u as ProviderCallResult, v as ProviderConfig, w as RedactionEnvelope, W as WrappedExecutionParams, x as WrappedExecutionResult } from './types-C_M2xSWK.js';
 export { wrapProvider } from './providers/wrap.js';
 export { AttestDecisionFn, LangChainAttestedResult, LangChainCerResult, LangChainCertificationInput, certifyLangChainRun, createLangChainCer } from './langchain.js';
 
@@ -29,6 +29,8 @@ declare function sealCer(snapshot: AiExecutionSnapshotV1, options?: {
     createdAt?: string;
     meta?: CerMeta;
     declaration?: BundleDeclaration;
+    /** v0.10.0 — upstream signals to bind as evidence. Included in certificateHash. */
+    signals?: CerContextSignal[];
 }): CerAiExecutionBundle;
 declare function verifyCer(bundle: CerAiExecutionBundle): VerificationResult;
 
@@ -566,4 +568,116 @@ interface CerVerificationResult {
  */
 declare function verifyAiCerBundleDetailed(bundle: unknown): CerVerificationResult;
 
-export { AiExecutionSnapshotV1, AiefProfile, AiefVerifyResult, AttestOptions, AttestationReceipt, AttestationResult, BundleDeclaration, CerAiExecutionBundle, CerAttestationError, CerMeta, CerVerificationError, type CerVerificationResult, CerVerifyCode, CerVerifyCode as CerVerifyCodeType, type CertifyAndAttestRunOptions, type CertifyAndAttestRunResult, CertifyDecisionParams, type CheckStatus, CreateSnapshotParams, type ExportVerifiableRedactedOptions, type ExportVerifiableRedactedProvenance, type ExportVerifiableRedactedResult, type MakeToolEventParams, NodeKeysDocument, NodeReceiptVerifyResult, type ProfileValidationResult, ReasonCode, ReasonCode as ReasonCodeType, type RedactBeforeSealPolicy, RunBuilder, RunBuilderOptions, RunSummary, RunSummaryVerifyResult, SanitizeStorageOptions, SignedAttestationReceipt, StepParams, ToolEvent, VerificationResult, type VerificationStatus, type VerifyRunSummaryOptions, attest, attestIfNeeded, certifyAndAttestDecision, certifyAndAttestRun, certifyDecision, certifyDecisionFromProviderCall, computeInputHash, computeOutputHash, createClient, createSnapshot, exportCer, exportVerifiableRedacted, fetchNodeKeys, getAttestationReceipt, hasAttestation, hashCanonicalJson, hashToolOutput, hashUtf8, importCer, makeToolEvent, mapToAiefReason, redactBeforeSeal, sanitizeForAttestation, sanitizeForStamp, sanitizeForStorage, sealCer, selectNodeKey, sha256Hex, toCanonicalJson, validateProfile, verifyCer as verify, verifyAiCerBundleDetailed, verifyAief, verifyBundleAttestation, verifyCer, verifyNodeReceiptSignature, verifyRunSummary, verifySnapshot };
+/**
+ * @nexart/ai-execution — CER package helpers (v0.12.0)
+ *
+ * A "CER package" is a transport/export envelope that wraps a sealed
+ * cer.ai.execution.v1 bundle with optional receipt, signature, and
+ * attestation metadata.
+ *
+ * These helpers sit around the existing core and do NOT change CER hashing,
+ * canonicalization, attestation, or verification semantics in any way.
+ *
+ * @example
+ * ```ts
+ * import { certifyDecision } from '@nexart/ai-execution';
+ * import { createCerPackage, exportCerPackage, importCerPackage } from '@nexart/ai-execution';
+ *
+ * const cer = certifyDecision({ ... });
+ * const pkg = createCerPackage({ cer });
+ * const json = exportCerPackage(pkg);
+ * const restored = importCerPackage(json); // verifies inner CER
+ * ```
+ */
+
+/**
+ * A CER package — a transport/export envelope for a sealed CER bundle.
+ *
+ * The `cer` field is the only required field. All other fields are additive
+ * transport/export metadata and do not affect CER hashing or verification.
+ */
+interface AiCerPackage {
+    /** The sealed cer.ai.execution.v1 bundle. Required. */
+    cer: CerAiExecutionBundle;
+    /** Optional attestation receipt from a NexArt attestation node. */
+    receipt?: AttestationReceipt;
+    /**
+     * Optional base64url-encoded signature covering the package.
+     * NexArt does not interpret or verify this field — it is opaque transport metadata.
+     */
+    signature?: string;
+    /**
+     * Optional attestation summary block.
+     * NexArt does not interpret or verify its contents.
+     */
+    attestation?: Record<string, unknown>;
+    /**
+     * Optional verification envelope metadata.
+     * NexArt does not interpret or verify its contents.
+     */
+    verificationEnvelope?: Record<string, unknown>;
+    /**
+     * Optional base64url-encoded signature covering verificationEnvelope.
+     * NexArt does not interpret or verify this field — it is opaque transport metadata.
+     */
+    verificationEnvelopeSignature?: string;
+}
+/** Input parameters for createCerPackage(). Structurally identical to AiCerPackage. */
+type CreateCerPackageParams = AiCerPackage;
+/**
+ * Type guard: returns true if `value` is shaped like a CER package.
+ *
+ * A value qualifies as a CER package if it is a plain object whose `cer`
+ * field is a plain object with `bundleType === 'cer.ai.execution.v1'`.
+ *
+ * Lightweight structural check only — does NOT verify the inner CER hash.
+ * Use `verifyCerPackage()` or `importCerPackage()` for integrity verification.
+ */
+declare function isCerPackage(value: unknown): value is AiCerPackage;
+/**
+ * Assemble a CER package from a sealed CER bundle and optional transport metadata.
+ *
+ * Simple assembly only. Does NOT sign, re-hash, or re-verify the CER.
+ * The `cer.certificateHash` is taken as-is and remains authoritative.
+ * Only fields explicitly provided in `params` are included in the returned package.
+ */
+declare function createCerPackage(params: CreateCerPackageParams): AiCerPackage;
+/**
+ * Extract the inner CER bundle from a CER package.
+ *
+ * Throws `CerVerificationError` if `pkg` is not a valid CER package shape.
+ * Does NOT re-verify the CER hash — use `verifyCerPackage()` if verification is needed.
+ */
+declare function getCerFromPackage(pkg: unknown): CerAiExecutionBundle;
+/**
+ * Serialize a CER package to a stable canonical JSON string for transport or storage.
+ *
+ * Uses the same canonicalJson serializer as the rest of the SDK for
+ * predictable, stable output across environments.
+ */
+declare function exportCerPackage(pkg: AiCerPackage): string;
+/**
+ * Parse a CER package JSON string, validate its shape, and verify the inner CER bundle.
+ *
+ * Throws `CerVerificationError` if:
+ * - the JSON string is malformed
+ * - the parsed value is not a CER package shape
+ * - the inner `cer` bundle fails `verifyCer()`
+ *
+ * Does NOT change or reinterpret the bundle — returns it exactly as parsed.
+ */
+declare function importCerPackage(json: string): AiCerPackage;
+/**
+ * Verify the inner CER bundle of a package using the existing `verifyCer()`.
+ *
+ * Conservative by design:
+ * - ONLY verifies the inner `cer` bundle (certificate hash, snapshot hashes, input/output hashes).
+ * - Does NOT verify `receipt`, `signature`, `verificationEnvelope`, or any other
+ *   package-level fields — those require provider-specific trust semantics outside this SDK.
+ *
+ * Returns the same `VerificationResult` shape as `verifyCer()`.
+ * When `pkg` is not a valid package shape, returns `ok: false` with code `SCHEMA_ERROR`.
+ */
+declare function verifyCerPackage(pkg: unknown): VerificationResult;
+
+export { type AiCerPackage, AiExecutionSnapshotV1, AiefProfile, AiefVerifyResult, AttestOptions, AttestationReceipt, AttestationResult, BundleDeclaration, CerAiExecutionBundle, CerAttestationError, CerContextSignal, CerMeta, CerVerificationError, type CerVerificationResult, CerVerifyCode, CerVerifyCode as CerVerifyCodeType, type CertifyAndAttestRunOptions, type CertifyAndAttestRunResult, CertifyDecisionParams, type CheckStatus, type CreateCerPackageParams, CreateSnapshotParams, type ExportVerifiableRedactedOptions, type ExportVerifiableRedactedProvenance, type ExportVerifiableRedactedResult, type MakeToolEventParams, NodeKeysDocument, NodeReceiptVerifyResult, type ProfileValidationResult, ReasonCode, ReasonCode as ReasonCodeType, type RedactBeforeSealPolicy, RunBuilder, RunBuilderOptions, RunSummary, RunSummaryVerifyResult, SanitizeStorageOptions, SignedAttestationReceipt, StepParams, ToolEvent, VerificationResult, type VerificationStatus, type VerifyRunSummaryOptions, attest, attestIfNeeded, certifyAndAttestDecision, certifyAndAttestRun, certifyDecision, certifyDecisionFromProviderCall, computeInputHash, computeOutputHash, createCerPackage, createClient, createSnapshot, exportCer, exportCerPackage, exportVerifiableRedacted, fetchNodeKeys, getAttestationReceipt, getCerFromPackage, hasAttestation, hashCanonicalJson, hashToolOutput, hashUtf8, importCer, importCerPackage, isCerPackage, makeToolEvent, mapToAiefReason, redactBeforeSeal, sanitizeForAttestation, sanitizeForStamp, sanitizeForStorage, sealCer, selectNodeKey, sha256Hex, toCanonicalJson, validateProfile, verifyCer as verify, verifyAiCerBundleDetailed, verifyAief, verifyBundleAttestation, verifyCer, verifyCerPackage, verifyNodeReceiptSignature, verifyRunSummary, verifySnapshot };

package/dist/index.mjs

@@ -258,14 +258,22 @@ function computeCertificateHash(payload) {
   const canonical = toCanonicalJson(payload);
   return `sha256:${sha256Hex(canonical)}`;
 }
+function buildContext(signals) {
+  if (!signals || signals.length === 0) return void 0;
+  return { signals };
+}
 function sealCer(snapshot, options) {
   const createdAt = options?.createdAt ?? (/* @__PURE__ */ new Date()).toISOString();
+  const context = buildContext(options?.signals);
   const payload = {
     bundleType: "cer.ai.execution.v1",
     createdAt,
     snapshot,
     version: "0.1"
   };
+  if (context) {
+    payload.context = context;
+  }
   const certificateHash = computeCertificateHash(payload);
   const bundle = {
     bundleType: "cer.ai.execution.v1",
@@ -274,6 +282,9 @@ function sealCer(snapshot, options) {
     version: "0.1",
     snapshot
   };
+  if (context) {
+    bundle.context = context;
+  }
   if (options?.meta) {
     bundle.meta = options.meta;
   }
@@ -322,6 +333,10 @@ function verifyCer(bundle) {
       snapshot: bundle.snapshot,
       version: "0.1"
     };
+    const verifyContext = buildContext(bundle.context?.signals);
+    if (verifyContext) {
+      payload.context = verifyContext;
+    }
     const expectedHash = computeCertificateHash(payload);
     if (bundle.certificateHash !== expectedHash) {
       certHashErrors.push(`certificateHash mismatch: expected ${expectedHash}, got ${bundle.certificateHash}`);
@@ -382,7 +397,11 @@ function certifyDecision(params) {
     conversationId: params.conversationId,
     prevStepHash: params.prevStepHash
   });
-  return sealCer(snapshot, { createdAt: params.createdAt, meta: params.meta });
+  return sealCer(snapshot, {
+    createdAt: params.createdAt,
+    meta: params.meta,
+    signals: params.signals
+  });
 }
 
 // src/run.ts
@@ -2607,7 +2626,8 @@ function buildCertifyParams(input, executionId) {
     runId: typeof input.metadata?.runId === "string" ? input.metadata.runId : void 0,
     workflowId: typeof input.metadata?.workflowId === "string" ? input.metadata.workflowId : void 0,
     conversationId: typeof input.metadata?.conversationId === "string" ? input.metadata.conversationId : void 0,
-    meta: buildMeta(input.metadata)
+    meta: buildMeta(input.metadata),
+    signals: input.signals
   };
 }
 function createLangChainCer(input) {
@@ -2636,6 +2656,67 @@ function certifyLangChainRun(input, _options) {
   }
   return createLangChainCer(input);
 }
+
+// src/package.ts
+function isCerPackage(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const pkg = value;
+  if (typeof pkg["cer"] !== "object" || pkg["cer"] === null) return false;
+  const cer = pkg["cer"];
+  return cer["bundleType"] === "cer.ai.execution.v1";
+}
+function createCerPackage(params) {
+  const pkg = { cer: params.cer };
+  if (params.receipt !== void 0) pkg.receipt = params.receipt;
+  if (params.signature !== void 0) pkg.signature = params.signature;
+  if (params.attestation !== void 0) pkg.attestation = params.attestation;
+  if (params.verificationEnvelope !== void 0) pkg.verificationEnvelope = params.verificationEnvelope;
+  if (params.verificationEnvelopeSignature !== void 0) pkg.verificationEnvelopeSignature = params.verificationEnvelopeSignature;
+  return pkg;
+}
+function getCerFromPackage(pkg) {
+  if (!isCerPackage(pkg)) {
+    throw new CerVerificationError([
+      "getCerFromPackage: value is not a valid CER package (missing or invalid cer field)"
+    ]);
+  }
+  return pkg.cer;
+}
+function exportCerPackage(pkg) {
+  return toCanonicalJson(pkg);
+}
+function importCerPackage(json) {
+  let parsed;
+  try {
+    parsed = JSON.parse(json);
+  } catch (err2) {
+    throw new CerVerificationError([
+      `importCerPackage: invalid JSON: ${err2.message}`
+    ]);
+  }
+  if (!isCerPackage(parsed)) {
+    throw new CerVerificationError([
+      "importCerPackage: parsed value is not a CER package (missing or invalid cer field)"
+    ]);
+  }
+  const result = verifyCer(parsed.cer);
+  if (!result.ok) {
+    throw new CerVerificationError([
+      `importCerPackage: inner CER failed verification: ${result.errors.join("; ")}`
+    ]);
+  }
+  return parsed;
+}
+function verifyCerPackage(pkg) {
+  if (!isCerPackage(pkg)) {
+    return {
+      ok: false,
+      errors: ["verifyCerPackage: value is not a CER package (missing or invalid cer field)"],
+      code: CerVerifyCode.SCHEMA_ERROR
+    };
+  }
+  return verifyCer(pkg.cer);
+}
 export {
   CerAttestationError,
   CerVerificationError,
@@ -2651,18 +2732,23 @@ export {
   certifyLangChainRun,
   computeInputHash,
   computeOutputHash,
+  createCerPackage,
   createClient,
   createLangChainCer,
   createSnapshot,
   exportCer,
+  exportCerPackage,
   exportVerifiableRedacted,
   fetchNodeKeys,
   getAttestationReceipt,
+  getCerFromPackage,
   hasAttestation,
   hashCanonicalJson,
   hashToolOutput,
   hashUtf8,
   importCer,
+  importCerPackage,
+  isCerPackage,
   makeToolEvent,
   mapToAiefReason,
   redactBeforeSeal,
@@ -2679,6 +2765,7 @@ export {
   verifyAief,
   verifyBundleAttestation,
   verifyCer,
+  verifyCerPackage,
   verifyNodeReceiptSignature,
   verifyRunSummary,
   verifySnapshot,