npm - @ternent/core - Versions diffs - 0.0.1 - Mend

@ternent/core 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (313) hide show

package/.changeset/README.md +8 -0
package/.changeset/config.json +17 -0
package/.github/workflows/deploy-armour.yml +42 -0
package/.github/workflows/deploy-identity.yml +42 -0
package/.github/workflows/deploy-seal.yml +42 -0
package/.github/workflows/deploy-ui.yml +42 -0
package/.github/workflows/deploy-utils.yml +42 -0
package/.github/workflows/release-create.yml +59 -0
package/.github/workflows/release-publish.yml +54 -0
package/.nvmrc +1 -0
package/.ops/publish.mjs +31 -0
package/package.json +16 -0
package/packages/README.md +0 -0
package/packages/armour/CHANGELOG.md +66 -0
package/packages/armour/CLAUDE.md +8 -0
package/packages/armour/README.md +103 -0
package/packages/armour/SPEC.md +92 -0
package/packages/armour/package.json +45 -0
package/packages/armour/src/constants.ts +5 -0
package/packages/armour/src/deps.d.ts +56 -0
package/packages/armour/src/errors.ts +172 -0
package/packages/armour/src/files.ts +73 -0
package/packages/armour/src/identity.ts +72 -0
package/packages/armour/src/index.ts +56 -0
package/packages/armour/src/init.ts +10 -0
package/packages/armour/src/passphrase.ts +33 -0
package/packages/armour/src/recipients.ts +73 -0
package/packages/armour/src/text.ts +68 -0
package/packages/armour/src/types.ts +93 -0
package/packages/armour/test/armour.test.ts +270 -0
package/packages/armour/tsconfig.build.json +12 -0
package/packages/armour/tsconfig.json +12 -0
package/packages/armour/vite.config.ts +29 -0
package/packages/concord/CHANGELOG.md +83 -0
package/packages/concord/CLAUDE.md +9 -0
package/packages/concord/README.md +146 -0
package/packages/concord/SPEC.md +287 -0
package/packages/concord/package.json +51 -0
package/packages/concord/src/app.ts +717 -0
package/packages/concord/src/errors.ts +9 -0
package/packages/concord/src/index.ts +20 -0
package/packages/concord/src/types.ts +127 -0
package/packages/concord/test/concord.test.ts +978 -0
package/packages/concord/tsconfig.json +12 -0
package/packages/concord/vite.browser.config.ts +27 -0
package/packages/concord/vite.config.ts +35 -0
package/packages/concord/vite.config.ts.timestamp-1774262297922-ffd76e35ea668.mjs +83 -0
package/packages/identity/CHANGELOG.md +47 -0
package/packages/identity/README.md +236 -0
package/packages/identity/package.json +41 -0
package/packages/identity/src/index.ts +538 -0
package/packages/identity/test/identity.test.ts +172 -0
package/packages/identity/tsconfig.build.json +12 -0
package/packages/identity/vite.config.ts +17 -0
package/packages/ledger/CHANGELOG.md +69 -0
package/packages/ledger/CLAUDE.md +9 -0
package/packages/ledger/SPEC.md +304 -0
package/packages/ledger/package.json +48 -0
package/packages/ledger/src/index.ts +2 -0
package/packages/ledger/src/ledger.ts +1286 -0
package/packages/ledger/src/seal-cli.d.ts +25 -0
package/packages/ledger/src/types.ts +294 -0
package/packages/ledger/test/ledger.test.ts +838 -0
package/packages/ledger/tsconfig.json +12 -0
package/packages/ledger/vite.browser.config.ts +27 -0
package/packages/ledger/vite.config.ts +39 -0
package/packages/seal/CHANGELOG.md +137 -0
package/packages/seal/CLAUDE.md +8 -0
package/packages/seal/README.md +258 -0
package/packages/seal/bin/seal +6 -0
package/packages/seal/package.json +59 -0
package/packages/seal/src/artifact.ts +380 -0
package/packages/seal/src/cli.ts +372 -0
package/packages/seal/src/commands/identity.ts +52 -0
package/packages/seal/src/commands/manifest.ts +71 -0
package/packages/seal/src/commands/publicKey.ts +7 -0
package/packages/seal/src/commands/sign.ts +56 -0
package/packages/seal/src/commands/verify.ts +54 -0
package/packages/seal/src/crypto.ts +85 -0
package/packages/seal/src/errors.ts +88 -0
package/packages/seal/src/index.ts +5 -0
package/packages/seal/src/manifest.ts +114 -0
package/packages/seal/src/node.ts +18 -0
package/packages/seal/src/proof.ts +344 -0
package/packages/seal/test/artifact.test.ts +86 -0
package/packages/seal/test/cli.test.ts +208 -0
package/packages/seal/test/crypto.test.ts +21 -0
package/packages/seal/test/manifest.test.ts +32 -0
package/packages/seal/test/proof.test.ts +60 -0
package/packages/seal/tsconfig.json +12 -0
package/packages/seal/vite.config.ts +54 -0
package/packages/ui/CHANGELOG.md +393 -0
package/packages/ui/README.md +57 -0
package/packages/ui/jsconfig.json +19 -0
package/packages/ui/package.json +64 -0
package/packages/ui/scripts/check-tokens.js +56 -0
package/packages/ui/scripts/generate-theme-css.mjs +85 -0
package/packages/ui/src/design-system/base.css +8 -0
package/packages/ui/src/design-system/docs/ACCESSIBILITY_RULES.md +186 -0
package/packages/ui/src/design-system/docs/AI_SYSTEM.md +281 -0
package/packages/ui/src/design-system/docs/PATTERN_RULES.md +83 -0
package/packages/ui/src/design-system/docs/PRIMITIVE_RULES.md +258 -0
package/packages/ui/src/design-system/docs/TOKEN_RULES.md +235 -0
package/packages/ui/src/design-system/docs/VISUAL_DIRECTION.md +68 -0
package/packages/ui/src/design-system/foundation.js +420 -0
package/packages/ui/src/design-system/tokens.css +140 -0
package/packages/ui/src/design-system/tokens.js +327 -0
package/packages/ui/src/design-system/utils.js +246 -0
package/packages/ui/src/main.js +4 -0
package/packages/ui/src/patterns/FeatureCard/FeatureCard.spec.md +24 -0
package/packages/ui/src/patterns/FeatureCard/FeatureCard.types.ts +8 -0
package/packages/ui/src/patterns/FeatureCard/FeatureCard.vue +175 -0
package/packages/ui/src/patterns/FormField/FormField.spec.md +65 -0
package/packages/ui/src/patterns/FormField/FormField.types.ts +11 -0
package/packages/ui/src/patterns/FormField/FormField.vue +87 -0
package/packages/ui/src/patterns/IdentityGlyph/IdentityGlyph.vue +61 -0
package/packages/ui/src/patterns/IdentityGlyph/IdentityHandle.vue +58 -0
package/packages/ui/src/patterns/IdentityGlyph/identityGlyph.types.ts +36 -0
package/packages/ui/src/patterns/IdentityGlyph/identityGlyph.utils.ts +585 -0
package/packages/ui/src/patterns/IdentityGlyph/index.ts +5 -0
package/packages/ui/src/patterns/KeyValueList/KeyValueList.spec.md +28 -0
package/packages/ui/src/patterns/KeyValueList/KeyValueList.types.ts +16 -0
package/packages/ui/src/patterns/KeyValueList/KeyValueList.vue +50 -0
package/packages/ui/src/patterns/LandingPage/LandingIcon.vue +90 -0
package/packages/ui/src/patterns/LandingPage/LandingPage.spec.md +24 -0
package/packages/ui/src/patterns/LandingPage/LandingPage.types.ts +212 -0
package/packages/ui/src/patterns/LandingPage/LandingPage.vue +599 -0
package/packages/ui/src/patterns/ListWorkspaceLayout/ListWorkspaceLayout.test.ts +33 -0
package/packages/ui/src/patterns/ListWorkspaceLayout/ListWorkspaceLayout.vue +44 -0
package/packages/ui/src/patterns/Logo/Logo.spec.md +22 -0
package/packages/ui/src/patterns/Logo/Logo.vue +160 -0
package/packages/ui/src/patterns/PageSurface/PageSurface.spec.md +15 -0
package/packages/ui/src/patterns/PageSurface/PageSurface.vue +85 -0
package/packages/ui/src/patterns/PanelChrome/PanelChrome.spec.md +39 -0
package/packages/ui/src/patterns/PanelChrome/PanelChrome.types.ts +1 -0
package/packages/ui/src/patterns/PanelChrome/PanelChrome.vue +187 -0
package/packages/ui/src/patterns/PreviewPanel/PreviewPanel.spec.md +31 -0
package/packages/ui/src/patterns/PreviewPanel/PreviewPanel.types.ts +23 -0
package/packages/ui/src/patterns/PreviewPanel/PreviewPanel.vue +354 -0
package/packages/ui/src/patterns/RecordList/RecordList.spec.md +35 -0
package/packages/ui/src/patterns/RecordList/RecordList.test.ts +42 -0
package/packages/ui/src/patterns/RecordList/RecordList.types.ts +9 -0
package/packages/ui/src/patterns/RecordList/RecordList.utils.ts +5 -0
package/packages/ui/src/patterns/RecordList/RecordList.vue +134 -0
package/packages/ui/src/patterns/SectionClarifier/SectionClarifier.vue +85 -0
package/packages/ui/src/patterns/SectionIntro/SectionIntro.spec.md +25 -0
package/packages/ui/src/patterns/SectionIntro/SectionIntro.types.ts +7 -0
package/packages/ui/src/patterns/SectionIntro/SectionIntro.vue +141 -0
package/packages/ui/src/patterns/SidebarNav/SidebarNav.spec.md +34 -0
package/packages/ui/src/patterns/SidebarNav/SidebarNav.types.ts +17 -0
package/packages/ui/src/patterns/SidebarNav/SidebarNav.vue +110 -0
package/packages/ui/src/patterns/SplitView/SplitView.spec.md +28 -0
package/packages/ui/src/patterns/SplitView/SplitView.test.ts +22 -0
package/packages/ui/src/patterns/SplitView/SplitView.types.ts +3 -0
package/packages/ui/src/patterns/SplitView/SplitView.utils.ts +13 -0
package/packages/ui/src/patterns/SplitView/SplitView.vue +39 -0
package/packages/ui/src/patterns/StepList/StepList.spec.md +15 -0
package/packages/ui/src/patterns/StepList/StepList.types.ts +4 -0
package/packages/ui/src/patterns/StepList/StepList.vue +91 -0
package/packages/ui/src/patterns/Verification/VerificationBadge.vue +97 -0
package/packages/ui/src/patterns/Verification/VerificationComponents.test.ts +153 -0
package/packages/ui/src/patterns/Verification/VerificationDetailsPanel.vue +270 -0
package/packages/ui/src/patterns/Verification/VerificationSummary.vue +171 -0
package/packages/ui/src/patterns/Verification/index.ts +6 -0
package/packages/ui/src/patterns/Verification/verification.types.ts +8 -0
package/packages/ui/src/patterns/Verification/verification.utils.test.ts +37 -0
package/packages/ui/src/patterns/Verification/verification.utils.ts +75 -0
package/packages/ui/src/patterns/index.ts +25 -0
package/packages/ui/src/primitives/Accordian/Accordian.vue +11 -0
package/packages/ui/src/primitives/Accordian/AccordianItem.vue +14 -0
package/packages/ui/src/primitives/Accordion/Accordion.props.ts +21 -0
package/packages/ui/src/primitives/Accordion/Accordion.spec.md +50 -0
package/packages/ui/src/primitives/Accordion/Accordion.types.ts +4 -0
package/packages/ui/src/primitives/Accordion/Accordion.variants.ts +12 -0
package/packages/ui/src/primitives/Accordion/Accordion.vue +71 -0
package/packages/ui/src/primitives/Accordion/AccordionItem.props.ts +14 -0
package/packages/ui/src/primitives/Accordion/AccordionItem.vue +40 -0
package/packages/ui/src/primitives/Badge/Badge.props.ts +17 -0
package/packages/ui/src/primitives/Badge/Badge.spec.md +17 -0
package/packages/ui/src/primitives/Badge/Badge.types.ts +15 -0
package/packages/ui/src/primitives/Badge/Badge.variants.ts +48 -0
package/packages/ui/src/primitives/Badge/Badge.vue +31 -0
package/packages/ui/src/primitives/Button/Button.props.ts +29 -0
package/packages/ui/src/primitives/Button/Button.spec.md +139 -0
package/packages/ui/src/primitives/Button/Button.types.ts +19 -0
package/packages/ui/src/primitives/Button/Button.variants.ts +72 -0
package/packages/ui/src/primitives/Button/Button.vue +90 -0
package/packages/ui/src/primitives/Card/Card.props.ts +17 -0
package/packages/ui/src/primitives/Card/Card.spec.md +29 -0
package/packages/ui/src/primitives/Card/Card.types.ts +12 -0
package/packages/ui/src/primitives/Card/Card.variants.ts +27 -0
package/packages/ui/src/primitives/Card/Card.vue +37 -0
package/packages/ui/src/primitives/Checkbox/Checkbox.props.ts +21 -0
package/packages/ui/src/primitives/Checkbox/Checkbox.spec.md +51 -0
package/packages/ui/src/primitives/Checkbox/Checkbox.types.ts +4 -0
package/packages/ui/src/primitives/Checkbox/Checkbox.variants.ts +34 -0
package/packages/ui/src/primitives/Checkbox/Checkbox.vue +92 -0
package/packages/ui/src/primitives/Dialog/Dialog.props.ts +29 -0
package/packages/ui/src/primitives/Dialog/Dialog.spec.md +52 -0
package/packages/ui/src/primitives/Dialog/Dialog.types.ts +3 -0
package/packages/ui/src/primitives/Dialog/Dialog.variants.ts +27 -0
package/packages/ui/src/primitives/Dialog/Dialog.vue +78 -0
package/packages/ui/src/primitives/Drawer/Drawer.props.ts +33 -0
package/packages/ui/src/primitives/Drawer/Drawer.spec.md +50 -0
package/packages/ui/src/primitives/Drawer/Drawer.types.ts +5 -0
package/packages/ui/src/primitives/Drawer/Drawer.variants.ts +35 -0
package/packages/ui/src/primitives/Drawer/Drawer.vue +88 -0
package/packages/ui/src/primitives/FieldMessage/FieldMessage.props.ts +17 -0
package/packages/ui/src/primitives/FieldMessage/FieldMessage.spec.md +35 -0
package/packages/ui/src/primitives/FieldMessage/FieldMessage.types.ts +5 -0
package/packages/ui/src/primitives/FieldMessage/FieldMessage.variants.ts +14 -0
package/packages/ui/src/primitives/FieldMessage/FieldMessage.vue +40 -0
package/packages/ui/src/primitives/FileInput/FileInput.props.ts +41 -0
package/packages/ui/src/primitives/FileInput/FileInput.types.ts +6 -0
package/packages/ui/src/primitives/FileInput/FileInput.variants.ts +46 -0
package/packages/ui/src/primitives/FileInput/FileInput.vue +163 -0
package/packages/ui/src/primitives/Input/Input.props.ts +29 -0
package/packages/ui/src/primitives/Input/Input.spec.md +79 -0
package/packages/ui/src/primitives/Input/Input.types.ts +13 -0
package/packages/ui/src/primitives/Input/Input.variants.ts +54 -0
package/packages/ui/src/primitives/Input/Input.vue +99 -0
package/packages/ui/src/primitives/Label/Label.props.ts +25 -0
package/packages/ui/src/primitives/Label/Label.spec.md +31 -0
package/packages/ui/src/primitives/Label/Label.types.ts +3 -0
package/packages/ui/src/primitives/Label/Label.variants.ts +17 -0
package/packages/ui/src/primitives/Label/Label.vue +38 -0
package/packages/ui/src/primitives/Menu/Menu.props.ts +17 -0
package/packages/ui/src/primitives/Menu/Menu.spec.md +38 -0
package/packages/ui/src/primitives/Menu/Menu.types.ts +10 -0
package/packages/ui/src/primitives/Menu/Menu.variants.ts +10 -0
package/packages/ui/src/primitives/Menu/Menu.vue +57 -0
package/packages/ui/src/primitives/Popover/Popover.props.ts +25 -0
package/packages/ui/src/primitives/Popover/Popover.spec.md +49 -0
package/packages/ui/src/primitives/Popover/Popover.types.ts +3 -0
package/packages/ui/src/primitives/Popover/Popover.variants.ts +18 -0
package/packages/ui/src/primitives/Popover/Popover.vue +74 -0
package/packages/ui/src/primitives/RadioGroup/RadioGroup.props.ts +29 -0
package/packages/ui/src/primitives/RadioGroup/RadioGroup.spec.md +50 -0
package/packages/ui/src/primitives/RadioGroup/RadioGroup.types.ts +12 -0
package/packages/ui/src/primitives/RadioGroup/RadioGroup.variants.ts +48 -0
package/packages/ui/src/primitives/RadioGroup/RadioGroup.vue +87 -0
package/packages/ui/src/primitives/Separator/Separator.props.ts +9 -0
package/packages/ui/src/primitives/Separator/Separator.spec.md +15 -0
package/packages/ui/src/primitives/Separator/Separator.types.ts +3 -0
package/packages/ui/src/primitives/Separator/Separator.variants.ts +8 -0
package/packages/ui/src/primitives/Separator/Separator.vue +23 -0
package/packages/ui/src/primitives/Skeleton/Skeleton.props.ts +21 -0
package/packages/ui/src/primitives/Skeleton/Skeleton.spec.md +18 -0
package/packages/ui/src/primitives/Skeleton/Skeleton.types.ts +5 -0
package/packages/ui/src/primitives/Skeleton/Skeleton.variants.ts +18 -0
package/packages/ui/src/primitives/Skeleton/Skeleton.vue +37 -0
package/packages/ui/src/primitives/Spinner/Spinner.props.ts +13 -0
package/packages/ui/src/primitives/Spinner/Spinner.spec.md +16 -0
package/packages/ui/src/primitives/Spinner/Spinner.types.ts +5 -0
package/packages/ui/src/primitives/Spinner/Spinner.variants.ts +15 -0
package/packages/ui/src/primitives/Spinner/Spinner.vue +33 -0
package/packages/ui/src/primitives/SplitButton/SplitButton.vue +108 -0
package/packages/ui/src/primitives/Switch/Switch.props.ts +21 -0
package/packages/ui/src/primitives/Switch/Switch.spec.md +49 -0
package/packages/ui/src/primitives/Switch/Switch.types.ts +3 -0
package/packages/ui/src/primitives/Switch/Switch.variants.ts +34 -0
package/packages/ui/src/primitives/Switch/Switch.vue +71 -0
package/packages/ui/src/primitives/Tabs/Tabs.props.ts +25 -0
package/packages/ui/src/primitives/Tabs/Tabs.spec.md +48 -0
package/packages/ui/src/primitives/Tabs/Tabs.types.ts +11 -0
package/packages/ui/src/primitives/Tabs/Tabs.variants.ts +28 -0
package/packages/ui/src/primitives/Tabs/Tabs.vue +59 -0
package/packages/ui/src/primitives/Textarea/Textarea.props.ts +33 -0
package/packages/ui/src/primitives/Textarea/Textarea.spec.md +59 -0
package/packages/ui/src/primitives/Textarea/Textarea.types.ts +5 -0
package/packages/ui/src/primitives/Textarea/Textarea.variants.ts +27 -0
package/packages/ui/src/primitives/Textarea/Textarea.vue +74 -0
package/packages/ui/src/primitives/Tooltip/Tooltip.props.ts +21 -0
package/packages/ui/src/primitives/Tooltip/Tooltip.spec.md +45 -0
package/packages/ui/src/primitives/Tooltip/Tooltip.types.ts +3 -0
package/packages/ui/src/primitives/Tooltip/Tooltip.variants.ts +4 -0
package/packages/ui/src/primitives/Tooltip/Tooltip.vue +31 -0
package/packages/ui/src/primitives/TreeView/TreeView.types.ts +10 -0
package/packages/ui/src/primitives/TreeView/TreeView.vue +113 -0
package/packages/ui/src/primitives/TreeView/TreeViewNode.vue +190 -0
package/packages/ui/src/primitives/index.ts +29 -0
package/packages/ui/src/style.css +7 -0
package/packages/ui/src/style.js +1 -0
package/packages/ui/src/themes/armour.css +147 -0
package/packages/ui/src/themes/aurora.css +147 -0
package/packages/ui/src/themes/citrine-ash.css +147 -0
package/packages/ui/src/themes/concord.css +147 -0
package/packages/ui/src/themes/garnet-honey.css +147 -0
package/packages/ui/src/themes/harbor-rose.css +147 -0
package/packages/ui/src/themes/ledger.css +147 -0
package/packages/ui/src/themes/neon-noir.css +74 -0
package/packages/ui/src/themes/obsidian-iris.css +147 -0
package/packages/ui/src/themes/pixpax.css +147 -0
package/packages/ui/src/themes/print.css +147 -0
package/packages/ui/src/themes/prism.css +147 -0
package/packages/ui/src/themes/proof.css +145 -0
package/packages/ui/src/themes/semanticThemeContract.js +2256 -0
package/packages/ui/src/themes/spruce-ink.css +147 -0
package/packages/ui/src/themes/sunset.css +147 -0
package/packages/ui/tailwind.config.js +64 -0
package/packages/ui/vite.config.js +35 -0
package/packages/ui/vite.config.js.timestamp-1780697224943-89fbc929987bc.mjs +38 -0
package/packages/utils/CHANGELOG.md +111 -0
package/packages/utils/README.md +3 -0
package/packages/utils/package.json +46 -0
package/packages/utils/src/index.test.js +39 -0
package/packages/utils/src/index.ts +289 -0
package/packages/utils/tsconfig.build.json +12 -0
package/packages/utils/vite.config.js +28 -0
package/pnpm-workspace.yaml +8 -0
package/scripts/vite/package-lib-config.ts +59 -0
package/tsconfig.json +24 -0
package/tsconfig.node.json +9 -0

package/packages/seal/test/cli.test.ts ADDED Viewed

@@ -0,0 +1,208 @@
+import { mkdtemp, readFile, writeFile } from "node:fs/promises";
+import { tmpdir } from "node:os";
+import { join } from "node:path";
+import { describe, expect, it } from "vitest";
+import { createIdentity, serializeIdentity } from "@ternent/identity";
+import { recipientFromIdentity } from "@ternent/armour";
+import { runCli } from "../src/cli";
+async function createSigningEnv() {
+  const identity = await createIdentity();
+  return {
+    SEAL_IDENTITY: serializeIdentity(identity, false).trim(),
+  };
+}
+async function createTempFile(name: string, content: string): Promise<string> {
+  const root = await mkdtemp(join(tmpdir(), "seal-cli-"));
+  const filePath = join(root, name);
+  await writeFile(filePath, content, "utf8");
+  return filePath;
+}
+function createWriter() {
+  let stdout = "";
+  let stderr = "";
+  return {
+    writer: {
+      stdout: (value: string) => {
+        stdout += value;
+      },
+      stderr: (value: string) => {
+        stderr += value;
+      },
+    },
+    read: () => ({ stdout, stderr }),
+  };
+}
+describe("seal cli", () => {
+  it("verifies a proof successfully", async () => {
+    const env = await createSigningEnv();
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const proofPath = await createTempFile("proof.json", "");
+    const writer = createWriter();
+    const signExit = await runCli(["sign", "--input", subjectPath, "--out", proofPath], {
+      env,
+      writer: writer.writer,
+    });
+    const verifyExit = await runCli(
+      ["verify", "--proof", proofPath, "--input", subjectPath, "--json"],
+      { env, writer: writer.writer },
+    );
+    expect(signExit).toBe(0);
+    expect(verifyExit).toBe(0);
+    expect(writer.read().stdout).toContain('"valid": true');
+  });
+  it("signs and verifies an encrypted artifact successfully", async () => {
+    const env = await createSigningEnv();
+    const recipient = await createIdentity();
+    const recipientValue = await recipientFromIdentity(recipient);
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const artifactPath = await createTempFile("artifact.json", "");
+    const writer = createWriter();
+    const signExit = await runCli(
+      ["sign", "--input", subjectPath, "--recipient", recipientValue, "--out", artifactPath],
+      { env, writer: writer.writer },
+    );
+    const verifyExit = await runCli(["verify", "--artifact", artifactPath, "--json"], {
+      writer: writer.writer,
+    });
+    expect(signExit).toBe(0);
+    expect(verifyExit).toBe(0);
+    expect(await readFile(artifactPath, "utf8")).toContain('"type": "seal-artifact"');
+    expect(writer.read().stdout).toContain('"encrypted": true');
+  });
+  it("creates an identity file", async () => {
+    const identityPath = await createTempFile("identity.json", "");
+    const writer = createWriter();
+    const exitCode = await runCli(["identity", "create", "--out", identityPath, "--json"], {
+      writer: writer.writer,
+    });
+    expect(exitCode).toBe(0);
+    expect(writer.read().stdout).toContain('"format": "ternent-identity"');
+    expect(await readFile(identityPath, "utf8")).toContain('"material"');
+  });
+  it("creates a mnemonic-backed identity and writes the seed phrase", async () => {
+    const identityPath = await createTempFile("identity.json", "");
+    const mnemonicPath = await createTempFile("seed.txt", "");
+    const writer = createWriter();
+    const exitCode = await runCli(
+      [
+        "identity",
+        "create",
+        "--out",
+        identityPath,
+        "--words",
+        "24",
+        "--mnemonic-out",
+        mnemonicPath,
+        "--json",
+      ],
+      { writer: writer.writer },
+    );
+    expect(exitCode).toBe(0);
+    expect(writer.read().stdout).toContain('"mnemonic"');
+    expect(await readFile(identityPath, "utf8")).toContain('"format": "ternent-identity"');
+    expect(await readFile(mnemonicPath, "utf8")).toContain("Seal seed phrase backup");
+  });
+  it("returns exit code 2 for a hash mismatch", async () => {
+    const env = await createSigningEnv();
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const mismatchPath = await createTempFile("different.txt", "different\n");
+    const proofPath = await createTempFile("proof.json", "");
+    await runCli(["sign", "--input", subjectPath, "--out", proofPath], { env });
+    const exitCode = await runCli(["verify", "--proof", proofPath, "--input", mismatchPath], {
+      env,
+    });
+    expect(exitCode).toBe(2);
+  });
+  it("keeps the legacy proof output when no recipients are provided", async () => {
+    const env = await createSigningEnv();
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const proofPath = await createTempFile("proof.json", "");
+    const exitCode = await runCli(["sign", "--input", subjectPath, "--out", proofPath], { env });
+    expect(exitCode).toBe(0);
+    expect(await readFile(proofPath, "utf8")).toContain('"type": "seal-proof"');
+  });
+  it("returns exit code 3 for an invalid signature", async () => {
+    const env = await createSigningEnv();
+    const otherEnv = await createSigningEnv();
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const proofPath = await createTempFile("proof.json", "");
+    await runCli(["sign", "--input", subjectPath, "--out", proofPath], {
+      env: otherEnv,
+    });
+    const rawProof = await readFile(proofPath, "utf8");
+    const parsed = JSON.parse(rawProof) as Record<string, unknown>;
+    parsed.signer = {
+      ...(parsed.signer as Record<string, unknown>),
+      keyId: "bad-key-id",
+    };
+    await writeFile(proofPath, `${JSON.stringify(parsed, null, 2)}\n`, "utf8");
+    const exitCode = await runCli(["verify", "--proof", proofPath, "--input", subjectPath], {
+      env,
+    });
+    expect(exitCode).toBe(3);
+  });
+  it("returns exit code 4 for schema invalid proof", async () => {
+    const env = await createSigningEnv();
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const proofPath = await createTempFile("proof.json", '{"type":"bad"}');
+    const exitCode = await runCli(["verify", "--proof", proofPath, "--input", subjectPath], {
+      env,
+    });
+    expect(exitCode).toBe(4);
+  });
+  it("returns exit code 5 for key mismatch", async () => {
+    const writer = createWriter();
+    const exitCode = await runCli(["public-key"], {
+      env: {},
+      writer: writer.writer,
+    });
+    expect(exitCode).toBe(5);
+  });
+  it("surfaces invalid recipients without leaking armour errors", async () => {
+    const env = await createSigningEnv();
+    const subjectPath = await createTempFile("sample.txt", "sample file\n");
+    const writer = createWriter();
+    const exitCode = await runCli(
+      ["sign", "--input", subjectPath, "--recipient", "bad-recipient"],
+      { env, writer: writer.writer },
+    );
+    expect(exitCode).toBe(1);
+    expect(writer.read().stderr).toContain("Recipient must be a valid age recipient string.");
+    expect(writer.read().stderr).not.toContain("ARMOUR_");
+  });
+});

package/packages/seal/test/crypto.test.ts ADDED Viewed

@@ -0,0 +1,21 @@
+import { describe, expect, it } from "vitest";
+import { parseIdentity } from "@ternent/identity";
+import { createSealIdentity, createSealMnemonicIdentity, exportIdentityJson } from "../src";
+describe("seal crypto", () => {
+  it("creates and serializes a seal identity", async () => {
+    const identity = await createSealIdentity("2026-03-17T00:00:00.000Z");
+    const exported = exportIdentityJson(identity);
+    expect(identity.format).toBe("ternent-identity");
+    expect(identity.version).toBe("2");
+    expect(parseIdentity(exported)).toEqual(identity);
+  });
+  it("creates a mnemonic-backed seal identity", async () => {
+    const created = await createSealMnemonicIdentity({ words: 12 });
+    expect(created.mnemonic.split(/\s+/).length).toBe(12);
+    expect(created.identity.format).toBe("ternent-identity");
+  });
+});

package/packages/seal/test/manifest.test.ts ADDED Viewed

@@ -0,0 +1,32 @@
+import { mkdtemp, mkdir, writeFile } from "node:fs/promises";
+import { tmpdir } from "node:os";
+import { join } from "node:path";
+import { describe, expect, it } from "vitest";
+import { createManifestArtifact } from "../src/commands/manifest";
+async function createFixtureTree(): Promise<string> {
+  const root = await mkdtemp(join(tmpdir(), "seal-manifest-"));
+  await mkdir(join(root, "nested"), { recursive: true });
+  await writeFile(join(root, "a.txt"), "alpha\n", "utf8");
+  await writeFile(join(root, ".DS_Store"), "ignore", "utf8");
+  await writeFile(join(root, "nested", "b.txt"), "beta\n", "utf8");
+  return root;
+}
+describe("manifest command", () => {
+  it("is deterministic across runs", async () => {
+    const fixtureRoot = await createFixtureTree();
+    const first = await createManifestArtifact(fixtureRoot);
+    const second = await createManifestArtifact(fixtureRoot);
+    expect(first.content).toBe(second.content);
+    expect(first.manifest).toEqual(second.manifest);
+  });
+  it("excludes .DS_Store and sorts file keys", async () => {
+    const fixtureRoot = await createFixtureTree();
+    const { manifest } = await createManifestArtifact(fixtureRoot);
+    expect(Object.keys(manifest.files)).toEqual(["a.txt", "nested/b.txt"]);
+  });
+});

package/packages/seal/test/proof.test.ts ADDED Viewed

@@ -0,0 +1,60 @@
+import { describe, expect, it } from "vitest";
+import { createIdentity, deriveKeyId } from "@ternent/identity";
+import {
+  createSealHash,
+  createSealProof,
+  createSealPublicKeyArtifact,
+  parseSealProofJson,
+  verifySealProofAgainstBytes,
+  verifySealProofSignature,
+} from "../src/proof";
+async function createSigner() {
+  const identity = await createIdentity();
+  return {
+    identity,
+    publicKey: identity.publicKey,
+    keyId: await deriveKeyId(identity.publicKey),
+  };
+}
+describe("seal proof", () => {
+  it("signs and verifies a valid proof", async () => {
+    const signer = await createSigner();
+    const bytes = new TextEncoder().encode("seal proof bytes");
+    const proof = await createSealProof({
+      signer: { identity: signer.identity },
+      subject: {
+        kind: "file",
+        path: "sample.txt",
+        hash: await createSealHash(bytes),
+      },
+    });
+    const signatureCheck = await verifySealProofSignature(proof);
+    const verification = await verifySealProofAgainstBytes(proof, bytes);
+    expect(signatureCheck.ok).toBe(true);
+    expect(verification.valid).toBe(true);
+    expect(verification.keyId).toBe(signer.keyId);
+  });
+  it("rejects invalid proof JSON", () => {
+    const parsed = parseSealProofJson("not-json");
+    expect(parsed.ok).toBe(false);
+    expect(parsed.errors[0]).toContain("not valid JSON");
+  });
+  it("creates a portable public-key artifact", async () => {
+    const signer = await createSigner();
+    const artifact = await createSealPublicKeyArtifact({
+      identity: signer.identity,
+    });
+    expect(artifact.publicKey).toBe(signer.publicKey);
+    expect(artifact.keyId).toBe(signer.keyId);
+    expect(artifact.version).toBe("2");
+    expect(artifact.type).toBe("seal-public-key");
+  });
+});

package/packages/seal/tsconfig.json ADDED Viewed

@@ -0,0 +1,12 @@
+{
+  "extends": "../../tsconfig.json",
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "ESNext",
+    "moduleResolution": "Node",
+    "lib": ["ES2022", "DOM"],
+    "types": ["vitest/globals"]
+  },
+  "include": ["src/**/*.ts", "test/**/*.ts", "vite.config.ts"],
+  "exclude": ["dist", "node_modules"]
+}

package/packages/seal/vite.config.ts ADDED Viewed

@@ -0,0 +1,54 @@
+import { dirname, resolve } from "node:path";
+import { fileURLToPath } from "node:url";
+import { defineConfig } from "vite";
+import { createPackageExternal, resolvePackageDir } from "../../scripts/vite/package-lib-config";
+const configDir = dirname(fileURLToPath(import.meta.url));
+const external = createPackageExternal(resolvePackageDir(import.meta.url), {
+  includeNodeBuiltins: true,
+});
+export default defineConfig(({ mode }) => {
+  const proofOnly = mode === "proof-only";
+  return {
+    build: {
+      outDir: "dist",
+      target: "node20",
+      sourcemap: true,
+      minify: false,
+      rollupOptions: {
+        preserveEntrySignatures: "strict",
+        input: proofOnly
+          ? {
+              proof: resolve(configDir, "src/proof.ts"),
+              crypto: resolve(configDir, "src/crypto.ts"),
+            }
+          : {
+              cli: resolve(configDir, "src/cli.ts"),
+              index: resolve(configDir, "src/index.ts"),
+              proof: resolve(configDir, "src/proof.ts"),
+              artifact: resolve(configDir, "src/artifact.ts"),
+              manifest: resolve(configDir, "src/manifest.ts"),
+              crypto: resolve(configDir, "src/crypto.ts"),
+              errors: resolve(configDir, "src/errors.ts"),
+            },
+        external,
+        output: {
+          format: "es",
+          entryFileNames: "[name].js",
+          chunkFileNames: "chunks/[name]-[hash].js",
+        },
+      },
+    },
+    test: {
+      environment: "node",
+      alias: {
+        "@ternent/armour": resolve(configDir, "../armour/src/index.ts"),
+        "@ternent/identity": resolve(configDir, "../identity-v2/src/index.ts"),
+        "@ternent/rage": resolve(configDir, "../rage/src/index.ts"),
+        "ternent-utils": resolve(configDir, "../utils/src/index.ts"),
+      },
+    },
+  };
+});