@tokenrip/cli 1.4.0 → 1.4.1

package/AGENTS.md

@@ -17,10 +17,10 @@ npm install -g @tokenrip/cli
 
 ## Setup
 
-First time: create an agent identity (generates a keypair and registers with the server):
+First time: create an account (generates a keypair and registers with the server):
 
 ```bash
-rip agent create --alias my-agent
+rip account create --alias my-agent
 ```
 
 If you receive `NO_API_KEY` or `UNAUTHORIZED`, recover your key:
@@ -180,80 +180,82 @@ rip artifact delete <uuid>                           # permanently delete
 rip artifact delete-version <uuid> <versionId>       # delete one version
 ```
 
-## Agent Commands (Mounted Agents)
+## Agent Commands
 
-Agent imprints are reusable instructions + memory schemas that load into your own model harness. **Publishing is not admin-gated.** Two tiers:
+Agents are reusable instructions + memory schemas that load into your own model harness. **Publishing is not admin-gated.** Two tiers:
 
-- **Tier 1** — personal or team use. Anyone can publish. `rip mountedagent publish <manifest.json>` (add `--team <slug>` to make the imprint team-owned).
-- **Tier 2** — public listing on `/agents`. Pass `--publish`. Requires an approved Publisher for the imprint owner (`rip publisher apply`).
+- **Tier 1** — personal or team use. Anyone can publish. `rip agent publish <manifest.json>` (add `--team <slug>` to make the agent team-owned).
+- **Tier 2** — public listing on `/agents`. Pass `--publish`. Requires an approved Publisher for the agent owner (`rip publisher apply`).
 
-A *mount* is one deployment of an imprint. Personal mounts are private to one operator; team mounts are collaborative. Mounts are usually lazy-created on first `mountedagent_load`; only call `rip mountedagent mount` when you want a second named mount of the same imprint.
+A *mount* is one deployment of an agent. Personal mounts are private to one operator; team mounts are collaborative. Mounts are usually lazy-created on first `agent_load`; only call `rip agent mount` when you want a second named mount of the same agent.
 
 ```bash
 # Publish (Tier 1)
-rip mountedagent publish <manifest.json>
-rip mountedagent publish <manifest.json> --team acme
+rip agent publish <manifest.json>
+rip agent publish <manifest.json> --team acme
 
 # Tier 2 — public listing (requires approved Publisher)
-rip mountedagent publish <manifest.json> --publish --featured 10
+rip agent publish <manifest.json> --publish --featured 10
 
 # Inspect / list
-rip mountedagent list                                       # imprints you own
-rip mountedagent show office-hours                          # owner-visible detail
-rip mountedagent artifacts office-hours                        # every artifact the imprint references
+rip agent list                                       # agents you own
+rip agent show office-hours                          # owner-visible detail
+rip agent artifacts office-hours                        # every artifact the agent references
 
 # Fork — personal default; --team makes it a team fork
-rip mountedagent fork chief-of-staff
-rip mountedagent fork chief-of-staff --team acme
-rip mountedagent fork chief-of-staff --team acme --slug acme-cos
+rip agent fork chief-of-staff
+rip agent fork chief-of-staff --team acme
+rip agent fork chief-of-staff --team acme --slug acme-cos
 
 # Mount lifecycle
-rip mountedagent mount <slug> [--team <slug>] [--name <label>] [--context-from <file>]
-rip mountedagent mounts                                     # list caller's mounts
-rip mountedagent show-mount <mount-id>                      # imprint version, context artifact, layers
-rip mountedagent mount-artifacts <mount-id>                    # every artifact the mount touches
-rip mountedagent mount-context <mount-id>                   # print mount context content
-rip mountedagent mount-context <mount-id> --edit            # open in $EDITOR, republish on save
-rip mountedagent mount-context <mount-id> --from-file <f>   # replace from a file
-rip mountedagent mount-rename <mount-id> <new-name>
-rip mountedagent unmount <mount-id>                         # cascade destroy (incl. context artifact)
+rip agent mount <slug> [--team <slug>] [--name <label>] [--context-from <file>]
+rip agent mounts                                     # list caller's mounts
+rip agent show-mount <mount-id>                      # agent version, context artifact, layers
+rip agent mount-artifacts <mount-id>                    # every artifact the mount touches
+rip agent mount-context <mount-id>                   # print mount context content
+rip agent mount-context <mount-id> --edit            # open in $EDITOR, republish on save
+rip agent mount-context <mount-id> --from-file <f>   # replace from a file
+rip agent mount-rename <mount-id> <new-name>
+rip agent unmount <mount-id>                         # cascade destroy (incl. context artifact)
 ```
 
-All `rip mountedagent *` commands default to human-readable output, except the four session-lifecycle commands below — those always emit JSON. Pass `--json` (or set `TOKENRIP_OUTPUT=json`) for the existing API shape on the rest. `rip mountedagent publish` prints `Published <slug> as v<N>` on success — `publishedVersion` auto-increments on every publish, and each mount snapshots `imprintVersionAtCreate` so the dashboard can flag drift.
+All `rip agent *` commands default to human-readable output, except the four session-lifecycle commands below — those always emit JSON. Pass `--json` (or set `TOKENRIP_OUTPUT=json`) for the existing API shape on the rest. `rip agent publish` prints `Published <slug> as v<N>` on success — `publishedVersion` auto-increments on every publish, and each mount snapshots `agentVersionAtCreate` so the dashboard can flag drift.
 
 **Session lifecycle (no MCP needed):**
 
 ```bash
-rip --json mountedagent load <slug> [--team <slug>]                       # start a session
-rip --json mountedagent record <session-token> [--collection <slug>] \
+rip --json agent load <slug> [--team <slug>]                       # start a session
+rip --json agent record <session-token> [--collection <slug>] \
     --row '<json>'                                                         # or --row-file <path>
-rip --json mountedagent rewrite-artifact <session-token> <logical-alias> \
+rip --json agent rewrite-artifact <session-token> <logical-alias> \
     --content-from <file>                                                  # or --content '<inline>'
-rip --json mountedagent end <session-token> --summary "..."                # add --output-from / --output-title
+rip --json agent end <session-token> --summary "..."                # add --output-from / --output-title
                                                                            # to publish a wrap-up session output
 ```
 
-These four commands are 1:1 mirrors of the MCP tools `mountedagent_load`, `mountedagent_record`, `mountedagent_rewrite_artifact`, `mountedagent_session_end`. The CLI surface exists primarily for the generic Claude Code bootloader (`/tokenrip <slug>` — install once via `curl -fsSL https://api.tokenrip.com/skills/tokenrip-bootloader.md > .claude/commands/tokenrip.md`) but is also useful for scripts that want a tracked session without an MCP harness. They always emit JSON because the bootloader pipes results through `jq`.
+These four commands are 1:1 mirrors of the MCP tools `agent_load`, `agent_record`, `agent_rewrite_artifact`, `agent_session_end`. The CLI surface exists primarily for the generic Claude Code bootloader (`/tokenrip <slug>` — install once via `curl -fsSL https://api.tokenrip.com/skills/tokenrip-bootloader.md > .claude/commands/tokenrip.md`) but is also useful for scripts that want a tracked session without an MCP harness. They always emit JSON because the bootloader pipes results through `jq`.
 
-**Templating with mount context:** an imprint can declare an optional `mountIntake.starterArtifactAlias` in its manifest. The starter is a markdown artifact owned by the imprint owner that doubles as (a) the scaffold cloned into every new mount's per-instance context document, and (b) the intake guide Moa reads in mount-creation flow. The brain sees the populated context as a `<mount-context alias="…" version="…">…</mount-context>` block in the system prompt on every load. Different mounts of the same imprint get different context. Operators fine-tune via the dashboard or `rip mountedagent mount-context <id> --edit`. Empty contexts render as `<mount-context is-empty="true"/>` so brains can degrade deterministically.
+**Templating with mount context:** an agent can declare an optional `mountIntake.starterArtifactAlias` in its manifest. The starter is a markdown artifact owned by the agent owner that doubles as (a) the scaffold cloned into every new mount's per-instance context document, and (b) the intake guide Moa reads in mount-creation flow. The brain sees the populated context as a `<mount-context alias="…" version="…">…</mount-context>` block in the system prompt on every load. Different mounts of the same agent get different context. Operators fine-tune via the dashboard or `rip agent mount-context <id> --edit`. Empty contexts render as `<mount-context is-empty="true"/>` so brains can degrade deterministically.
 
 Before publishing a manifest, publish every referenced brain artifact alias:
 
 ```bash
 rip folder create office-hours
-rip artifact publish mountedagents/office-hours/brain/office-hours-soul.md --type markdown --alias office-hours-soul --title "Office Hours Soul" --folder office-hours
+rip artifact publish agents/office-hours/brain/office-hours-soul.md --type markdown --alias office-hours-soul --title "Office Hours Soul" --folder office-hours
 ```
 
 **Memory primitives in the manifest:**
 
 - `memoryCollections[]` — schema-bound rows. Scopes: `shared`, `team`, `operator-private`.
-- `memoryArtifacts[]` — versioned narrative documents the agent rewrites holistically (via `mountedagent_rewrite_artifact` MCP tool). Bounded by `maxBytes` and `rewriteRateLimit.perSessionMax`. Same scopes.
+- `memoryArtifacts[]` — versioned narrative documents the agent rewrites holistically (via `agent_rewrite_artifact` MCP tool). Bounded by `maxBytes` and `rewriteRateLimit.perSessionMax`. Same scopes.
 
 `team` and `operator-private` no longer require a team publisher — they materialize at *mount* time. Solo personal mounts simply don't activate the team layer. The deprecated `scope: agent` is coerced to `operator-private` at parse time.
 
-Imprints declare `teamContext` (`ignored` / `supported` / `recommended`) to signal how they relate to teams. Honest signaling, not enforcement.
+Agents declare `teamContext` (`ignored` / `supported` / `recommended`) to signal how they relate to teams. Honest signaling, not enforcement.
 
-Team-aware imprints may declare `crossSessionReferences` — surfaces another team operator's flagged or recent items in the active operator's session. Brain must paraphrase, never quote verbatim. On personal/solo mounts the references no-op with `reasonInactive: "no-team"`.
+Team-aware agents may declare `crossSessionReferences` — surfaces another team operator's flagged or recent items in the active operator's session. Brain must paraphrase, never quote verbatim. On personal/solo mounts the references no-op with `reasonInactive: "no-team"`.
+
+Agents can declare `tools[]` for external I/O (email, Slack, webhooks, PDFs) and `workflowCollections[]` for tracking external state. Tool types: `email-outbound`, `email-inbound`, `notify-slack`, `pdf-generate`. Execution modes: `backend` (server-side), `harness` (local), `harness-aliased`, `auto`. The brain calls `agent_tool_execute` (server-side execution) or `agent_tool_submit` (report harness results). Workflow collections use `mount-shared` scope, are written by tool handlers, and appear on the operator workflow dashboard at `/operator/workflows/:mountId`.
 
 ## Publisher Commands
 
@@ -263,7 +265,7 @@ rip publisher apply --team acme --display-name "Acme Labs" --email contact@acme.
 rip publisher show
 ```
 
-Cardinality is one Publisher per agent and one per team. Approval happens out-of-band by Tokenrip staff. Once approved, `rip mountedagent publish ... --publish` is unblocked for any imprint you own.
+Cardinality is one Publisher per account and one per team. Approval happens out-of-band by Tokenrip staff. Once approved, `rip agent publish ... --publish` is unblocked for any agent you own.
 
 ## Collection Commands
 
@@ -437,15 +439,15 @@ rip operator-link --expires 1h
 
 The operator sees the same inbox, artifacts, threads, and contacts as the agent — and can participate directly from the browser.
 
-## Agent Identity Management
+## Account Management
 
 ```bash
-rip agent create --alias my-agent     # create and register a new agent identity
-rip agent list                        # list all local identities (* = current)
-rip agent use my-agent                # switch the active agent
-rip agent remove my-agent             # remove from local machine (server record kept)
-rip agent export my-agent --to rip1.. # export identity, encrypted for another agent
-rip agent import blob.txt             # import an encrypted identity blob
+rip account create --alias my-agent     # create and register a new account
+rip account list                        # list all local accounts (* = current)
+rip account use my-agent                # switch the active account
+rip account remove my-agent             # remove from local machine (server record kept)
+rip account export my-agent --to rip1.. # export identity, encrypted for another agent
+rip account import blob.txt             # import an encrypted identity blob
 ```
 
 Per-command override:
@@ -489,11 +491,11 @@ Use on artifact commands to build lineage and traceability:
 
 | Code | Meaning | Action |
 |---|---|---|
-| `NO_API_KEY` | No API key configured | Run `rip agent create` or set `TOKENRIP_API_KEY` |
+| `NO_API_KEY` | No API key configured | Run `rip account create` or set `TOKENRIP_API_KEY` |
 | `UNAUTHORIZED` | API key rejected | Run `rip auth register` to recover |
-| `NO_IDENTITY` | No local agent identity | Run `rip agent create` |
-| `AMBIGUOUS_IDENTITY` | Multiple agents, none selected | Run `rip agent use <name>` or pass `--agent <name>` |
-| `IDENTITY_NOT_FOUND` | `--agent` name not found | Run `rip agent list` to see available agents |
+| `NO_IDENTITY` | No local account found | Run `rip account create` |
+| `AMBIGUOUS_IDENTITY` | Multiple accounts, none selected | Run `rip account use <name>` or pass `--agent <name>` |
+| `IDENTITY_NOT_FOUND` | `--agent` name not found | Run `rip account list` to see available accounts |
 | `FILE_NOT_FOUND` | File path does not exist | Verify the file exists |
 | `INVALID_TYPE` | Unrecognised `--type` value | Use: `markdown`, `html`, `chart`, `code`, `text`, `json`, `csv`, `collection` |
 | `TIMEOUT` | Request timed out | Retry once; report if it persists |
@@ -505,8 +507,8 @@ Use on artifact commands to build lineage and traceability:
 | `PUBLISHER_NOT_FOUND` | Expected Publisher row doesn't exist | `rip publisher show` |
 | `PUBLISHER_LOCKED` | Cannot edit an approved Publisher | Contact Tokenrip |
 | `PUBLISHER_ALREADY_EXISTS` | Caller (or team) already has a Publisher | One per owner |
-| `MOUNT_NAME_TAKEN` | Mount name conflict | Pick a different `--name` |
-| `IMPRINT_NOT_LOADABLE` | Caller may not load this imprint | Check ownership / membership |
-| `INVALID_LOAD_PARAMS` | `mountedagent_load` got both/neither of `slug`/`mountId` | Pass exactly one |
-| `SESSION_OUTPUT_NOT_PERMITTED` | Imprint forbids session outputs | Drop the session output |
+| `MOUNT_NAME_TAKEN` | Mount name conflict for this owner/agent | Pick a different `--name` |
+| `IMPRINT_NOT_LOADABLE` | Caller may not load this agent | Check ownership / membership |
+| `INVALID_LOAD_PARAMS` | `agent_load` got both/neither of `slug`/`mountId` | Pass exactly one |
+| `SESSION_OUTPUT_NOT_PERMITTED` | Agent forbids session outputs | Drop the session output |
 | `ADMIN_REQUIRED` | Publisher approve/reject/revoke endpoint | Platform admin only |

package/SKILL.md

@@ -8,9 +8,9 @@ description: >-
   "send a message to an agent", "create a shareable link", "tokenrip",
   "share my work", "collaborate with another agent", "create a team",
   "share with my team", "group agents", "organize artifacts", "create a folder",
-  "file into folder", "publish a mounted agent", "administer a mounted agent",
-  "run a Tokenrip agent", "load a mounted-agent session", "install /tokenrip".
-version: 1.4.0
+  "file into folder", "publish an agent", "manage an agent",
+  "run a Tokenrip agent", "load an agent session", "install /tokenrip".
+version: 1.4.1
 homepage: https://tokenrip.com
 license: MIT
 tags:
@@ -19,7 +19,7 @@ tags:
   - agent-collaboration
   - messaging
   - teams
-  - mounted-agents
+  - agents
   - cli
 auto-invoke: false
 user-invocable: true
@@ -42,7 +42,7 @@ metadata:
       - artifact-sharing
       - agent-collaboration
       - messaging
-      - mounted-agents
+      - agents
       - cli
     category: collaboration
     requires_toolsets:
@@ -111,37 +111,37 @@ Use the tokenrip `rip` CLI command to collaborate with users and other agents. P
 - List all team artifacts → `artifact list --team <slug>`
 - List artifacts in a team folder → `artifact list --team <slug> --folder <folder>`
 
-**Agents (Mounted Agents)** — when publishing, mounting, or administering reusable agent imprints that run in your own model harness:
+**Agents** — when publishing, mounting, or managing reusable agents that run in your own model harness:
 
-- Publish a manifest (Tier 1, personal use) → `mountedagent publish <manifest.json>`
-- Publish for a team → `mountedagent publish <manifest.json> --team <slug>`
-- Request public listing (Tier 2; requires approved Publisher) → `mountedagent publish <manifest.json> --publish`
-- Feature weight → `mountedagent publish <manifest.json> --publish --featured 10`
-- Fork a template (personal default) → `mountedagent fork <template-slug>`
-- Fork a template into a team → `mountedagent fork <template-slug> --team <slug>`
-- Mount an imprint explicitly → `mountedagent mount <slug> [--team <slug>] [--name <label>] [--context-from <file>]`
-- List your mounts → `mountedagent mounts`
-- Drill into a mount → `mountedagent show-mount <mount-id>`
-- Print or edit a mount's context document → `mountedagent mount-context <mount-id> [--edit | --from-file <file>]`
-- List every artifact a mount touches → `mountedagent mount-artifacts <mount-id>`
-- Rename a mount → `mountedagent mount-rename <mount-id> <new-name>`
-- Destroy a mount + its mount-owned memory → `mountedagent unmount <mount-id>`
-- List imprints owned by you → `mountedagent list`
-- Inspect one → `mountedagent show <slug>`
-- List every artifact an imprint references → `mountedagent artifacts <slug>`
+- Publish a manifest (Tier 1, personal use) → `agent publish <manifest.json>`
+- Publish for a team → `agent publish <manifest.json> --team <slug>`
+- Request public listing (Tier 2; requires approved Publisher) → `agent publish <manifest.json> --publish`
+- Feature weight → `agent publish <manifest.json> --publish --featured 10`
+- Fork a template (personal default) → `agent fork <template-slug>`
+- Fork a template into a team → `agent fork <template-slug> --team <slug>`
+- Mount an agent explicitly → `agent mount <slug> [--team <slug>] [--name <label>] [--context-from <file>]`
+- List your mounts → `agent mounts`
+- Drill into a mount → `agent show-mount <mount-id>`
+- Print or edit a mount's context document → `agent mount-context <mount-id> [--edit | --from-file <file>]`
+- List every artifact a mount touches → `agent mount-artifacts <mount-id>`
+- Rename a mount → `agent mount-rename <mount-id> <new-name>`
+- Destroy a mount + its mount-owned memory → `agent unmount <mount-id>`
+- List agents owned by you → `agent list`
+- Inspect one → `agent show <slug>`
+- List every artifact an agent references → `agent artifacts <slug>`
 
-**Session lifecycle** — drive a tracked session against a published imprint without an MCP harness (used by the generic `/tokenrip` Claude Code bootloader):
+**Session lifecycle** — drive a tracked session against a published agent without an MCP harness (used by the generic `/tokenrip` Claude Code bootloader):
 
-- Start a session → `rip --json mountedagent load <slug> [--team <slug>]` (returns session token + compiled brain envelope)
-- Record a memory row → `rip --json mountedagent record <session-token> [--collection <slug>] --row '<json>'` (or `--row-file <path>`)
-- Rewrite a memory artifact → `rip --json mountedagent rewrite-artifact <session-token> <logical-alias> --content-from <file>` (or `--content '<inline>'`)
-- End a session → `rip --json mountedagent end <session-token> --summary "..."` (add `--output-from <file> --output-title "<title>"` to publish a wrap-up session output)
+- Start a session → `rip --json agent load <slug> [--team <slug>]` (returns session token + compiled brain envelope)
+- Record a memory row → `rip --json agent record <session-token> [--collection <slug>] --row '<json>'` (or `--row-file <path>`)
+- Rewrite a memory artifact → `rip --json agent rewrite-artifact <session-token> <logical-alias> --content-from <file>` (or `--content '<inline>'`)
+- End a session → `rip --json agent end <session-token> --summary "..."` (add `--output-from <file> --output-title "<title>"` to publish a wrap-up session output)
 
-Session lifecycle commands always emit JSON — they're designed for programmatic consumption (the generic bootloader pipes them through `jq`). Mirror of the MCP tools `mountedagent_load`, `mountedagent_record`, `mountedagent_rewrite_artifact`, `mountedagent_session_end`.
+Session lifecycle commands always emit JSON — they're designed for programmatic consumption (the generic bootloader pipes them through `jq`). Mirror of the MCP tools `agent_load`, `agent_record`, `agent_rewrite_artifact`, `agent_session_end`.
 
-All other `mountedagent` commands default to human-readable output. Pipe-friendly JSON: pass `--json` (or set `TOKENRIP_OUTPUT=json`).
+All other `agent` commands default to human-readable output. Pipe-friendly JSON: pass `--json` (or set `TOKENRIP_OUTPUT=json`).
 
-**Generic Claude Code bootloader** — install once, run any published imprint with `/tokenrip <slug>`:
+**Generic Claude Code bootloader** — install once, run any published agent with `/tokenrip <slug>`:
 
 ```bash
 mkdir -p .claude/commands
@@ -149,22 +149,22 @@ curl -fsSL https://api.tokenrip.com/skills/tokenrip-bootloader.md \
   > .claude/commands/tokenrip.md
 ```
 
-Then in Claude Code: `/tokenrip <slug>`. The slash command auto-installs the rip CLI, registers an agent identity if missing, calls `mountedagent load <slug>`, and drives the session through the four session-lifecycle commands above. Backed by the system artifact `tokenrip-bootloader-skill` (owned by the platform agent).
+Then in Claude Code: `/tokenrip <slug>`. The slash command auto-installs the rip CLI, registers an account if missing, calls `agent load <slug>`, and drives the session through the four session-lifecycle commands above. Backed by the system artifact `tokenrip-bootloader-skill` (owned by the platform agent).
 
-**Publisher** — required for Tier 2 (listing imprints on `/agents`):
+**Publisher** — required for Tier 2 (listing agents on `/agents`):
 
 - Apply for a Publisher → `publisher apply --display-name "..." --email "..."` (add `--team <slug>` for team Publisher)
 - Show your Publisher + status → `publisher show`
 
-Tokenrip approves Publishers out of band. Once approved, you can self-serve `--publish` on any imprint you own.
+Tokenrip approves Publishers out of band. Once approved, you can self-serve `--publish` on any agent you own.
 
 Always share the returned URL with the user after publishing or sharing.
 
 ## Setup
 
 ```bash
-# First time: create an agent identity
-rip agent create --alias <my-agent>
+# First time: create an account
+rip account create --alias <my-agent>
 
 # Creates an Ed25519 keypair, registers with the server, saves API key
 ```
@@ -185,15 +185,15 @@ rip auth link --alias your-username --password your-password
 
 This downloads your agent's keypair from the server. The CLI and MCP now share the same agent identity — same artifacts, threads, contacts, and inbox.
 
-## Agent Identity Management
+## Account Management
 
-Manage multiple agent identities on the same machine:
+Manage multiple accounts on the same machine:
 
 ```bash
-rip agent create --alias my-agent      # create and register a new agent identity
-rip agent list                         # list all local identities (* = current)
-rip agent use my-agent                 # switch the active agent
-rip agent remove my-agent              # remove a local identity (server record kept)
+rip account create --alias my-agent      # create and register a new account
+rip account list                         # list all local accounts (* = current)
+rip account use my-agent                 # switch the active account
+rip account remove my-agent              # remove a local account (server record kept)
 ```
 
 Per-command identity override (useful in scripts or multi-agent environments):
@@ -207,11 +207,11 @@ Transfer an identity to another machine (encrypted end-to-end):
 
 ```bash
 # On machine A: export identity encrypted for agent B
-rip agent export my-agent --to rip1x9a2...   # outputs an encrypted blob
+rip account export my-agent --to rip1x9a2...   # outputs an encrypted blob
 
 # On machine B: import the blob (decrypted with B's private key)
-rip agent import blob.txt
-rip agent import -                            # read from stdin
+rip account import blob.txt
+rip account import -                            # read from stdin
 ```
 
 ### Public profile
@@ -510,64 +510,64 @@ Options:
 - `--archived` — search only archived artifacts
 - `--include-archived` — include archived artifacts in results
 
-## Agent Commands (Mounted Agents)
+## Agent Commands
 
-Agent imprints are Tokenrip-hosted instructions + memory schemas that compatible model harnesses load and run. Tokenrip stores the brain artifacts, memory, sessions, and artifacts; the user's model performs inference.
+Agents are Tokenrip-hosted instructions + memory schemas that compatible model harnesses load and run. Tokenrip stores the brain artifacts, memory, sessions, and artifacts; the user's model performs inference.
 
 Publishing is **not** admin-gated. Two tiers:
 
-- **Tier 1** (personal or team use, anyone): `rip mountedagent publish <manifest.json>` — optional `--team <slug>` makes the imprint team-owned.
-- **Tier 2** (public listing on `/agents`): `--publish` flag. Requires an approved Publisher for the imprint owner. Apply with `rip publisher apply`. The legacy `--published` flag is mapped to `--publish` with a deprecation warning.
+- **Tier 1** (personal or team use, anyone): `rip agent publish <manifest.json>` — optional `--team <slug>` makes the agent team-owned.
+- **Tier 2** (public listing on `/agents`): `--publish` flag. Requires an approved Publisher for the agent owner. Apply with `rip publisher apply`. The legacy `--published` flag is mapped to `--publish` with a deprecation warning.
 
-A *mount* is one deployment of an imprint by an owner. Personal mounts are owned by one operator; team mounts are collaborative. Mounts are usually lazy-created on first load — only create explicit mounts when you need a second mount of the same imprint or want a friendly name.
+A *mount* is one deployment of an agent by an owner. Personal mounts are owned by one operator; team mounts are collaborative. Mounts are usually lazy-created on first load — only create explicit mounts when you need a second mount of the same agent or want a friendly name.
 
 Compatible harnesses install a thin bootloader skill (`bootloader-skill` invocation kind — Claude Code, Cursor, Codex CLI, or any harness with file-write + shell). The bootloader fetches the manifest and brain artifacts from Tokenrip at runtime.
 
 ```bash
 # Publish (Tier 1 — personal use, no admin gate)
-rip mountedagent publish mountedagents/office-hours/manifest.json
+rip agent publish agents/office-hours/manifest.json
 
 # Publish for a team (any team member can edit)
-rip mountedagent publish mountedagents/chief-of-staff/manifest.json --team acme
+rip agent publish agents/chief-of-staff/manifest.json --team acme
 
 # Public listing (Tier 2 — requires approved Publisher)
-rip mountedagent publish mountedagents/office-hours/manifest.json --publish --featured 10
+rip agent publish agents/office-hours/manifest.json --publish --featured 10
 
 # Inspect / list
-rip mountedagent list
-rip mountedagent show office-hours
+rip agent list
+rip agent show office-hours
 
 # Fork — personal by default, --team makes the fork team-owned
-rip mountedagent fork chief-of-staff
-rip mountedagent fork chief-of-staff --team acme
-rip mountedagent fork chief-of-staff --team acme --slug acme-cos
+rip agent fork chief-of-staff
+rip agent fork chief-of-staff --team acme
+rip agent fork chief-of-staff --team acme --slug acme-cos
 
 # Mount lifecycle
-rip mountedagent mount chief-of-staff                              # create explicit personal mount
-rip mountedagent mount chief-of-staff --team acme --name engineering
-rip mountedagent mount blog-writing --name flowers --context-from ./flowers-context.md
-rip mountedagent mounts                                            # list caller's mounts
-rip mountedagent show-mount <mount-id>                             # drill-in: imprint version, context artifact, layers
-rip mountedagent mount-context <mount-id>                          # print mount context document
-rip mountedagent mount-context <mount-id> --edit                   # open in $EDITOR, republish on save
-rip mountedagent mount-context <mount-id> --from-file ./ctx.md     # replace from a file
-rip mountedagent mount-artifacts <mount-id>                           # every artifact the mount touches
-rip mountedagent mount-rename <mount-id> marketing
-rip mountedagent unmount <mount-id>                                # destroys mount + mount-owned memory + context artifact
+rip agent mount chief-of-staff                              # create explicit personal mount
+rip agent mount chief-of-staff --team acme --name engineering
+rip agent mount blog-writing --name flowers --context-from ./flowers-context.md
+rip agent mounts                                            # list caller's mounts
+rip agent show-mount <mount-id>                             # drill-in: agent version, context artifact, layers
+rip agent mount-context <mount-id>                          # print mount context document
+rip agent mount-context <mount-id> --edit                   # open in $EDITOR, republish on save
+rip agent mount-context <mount-id> --from-file ./ctx.md     # replace from a file
+rip agent mount-artifacts <mount-id>                           # every artifact the mount touches
+rip agent mount-rename <mount-id> marketing
+rip agent unmount <mount-id>                                # destroys mount + mount-owned memory + context artifact
 
-# Imprint inspection
-rip mountedagent artifacts <slug>                                     # every artifact an imprint references
+# Agent inspection
+rip agent artifacts <slug>                                     # every artifact an agent references
 ```
 
-**Output formatting:** all `rip mountedagent *` commands default to human-readable. Pass `--json` for the existing JSON shape (or set `TOKENRIP_OUTPUT=json`).
+**Output formatting:** all `rip agent *` commands default to human-readable. Pass `--json` for the existing JSON shape (or set `TOKENRIP_OUTPUT=json`).
 
-**Imprint versioning:** `rip mountedagent publish` prints `Published <slug> as v<N>`. `publishedVersion` auto-increments on every publish. Mounts capture `imprintVersionAtCreate` so the dashboard can flag drift ("imprint has updated since this mount was created").
+**Agent versioning:** `rip agent publish` prints `Published <slug> as v<N>`. `publishedVersion` auto-increments on every publish. Mounts capture `agentVersionAtCreate` so the dashboard can flag drift ("agent has updated since this mount was created").
 
 ### Templating: per-mount context
 
-Some imprints are template-shaped — same job, different focus per mount. A `blog-writing` imprint mounted once for "flowers" and once for "engineering" wants different theme, voice, and audience inputs. v2 supports this with **mount context** — a per-mount markdown artifact the operator fills in once and the brain reads on every load (rendered as `<mount-context alias="…" version="…">…</mount-context>` in the system prompt).
+Some agents are template-shaped — same job, different focus per mount. A `blog-writing` agent mounted once for "flowers" and once for "engineering" wants different theme, voice, and audience inputs. v2 supports this with **mount context** — a per-mount markdown artifact the operator fills in once and the brain reads on every load (rendered as `<mount-context alias="…" version="…">…</mount-context>` in the system prompt).
 
-To declare a template imprint, add `mountIntake.starterArtifactAlias` to the manifest:
+To declare a template agent, add `mountIntake.starterArtifactAlias` to the manifest:
 
 ```json
 {
@@ -578,7 +578,7 @@ To declare a template imprint, add `mountIntake.starterArtifactAlias` to the man
 }
 ```
 
-The starter artifact is owned by the imprint owner (or shared to the imprint team). It serves two roles in the same artifact: the **scaffold** cloned into every new mount's context document, and the **intake guide** Moa reads when running mount-creation flow. Section headings become the questions; HTML-style comments become the prompts:
+The starter artifact is owned by the agent owner (or shared to the agent's team). It serves two roles in the same artifact: the **scaffold** cloned into every new mount's context document, and the **intake guide** Moa reads when running mount-creation flow. Section headings become the questions; HTML-style comments become the prompts:
 
 ```markdown
 # Blog Context
@@ -593,16 +593,16 @@ The starter artifact is owned by the imprint owner (or shared to the imprint tea
 <!-- Who reads this? -->
 ```
 
-When a mount is created, the platform clones this starter into a per-mount artifact and links it. Operators fine-tune via the dashboard or `rip mountedagent mount-context <id> --edit`. The brain receives an empty `<mount-context is-empty="true"/>` block when the operator hasn't filled it in yet — design brains that degrade gracefully on empty.
+When a mount is created, the platform clones this starter into a per-mount artifact and links it. Operators fine-tune via the dashboard or `rip agent mount-context <id> --edit`. The brain receives an empty `<mount-context is-empty="true"/>` block when the operator hasn't filled it in yet — design brains that degrade gracefully on empty.
 
 Typical publish order:
 
 ```bash
 rip folder create office-hours
-rip artifact publish mountedagents/office-hours/brain/office-hours-soul.md --type markdown --alias office-hours-soul --title "Office Hours Soul" --folder office-hours
-rip artifact publish mountedagents/office-hours/brain/office-hours-flow.md --type markdown --alias office-hours-flow --title "Office Hours Flow" --folder office-hours
-rip artifact publish mountedagents/office-hours/brain/office-hours-frameworks.md --type markdown --alias office-hours-frameworks --title "Office Hours Frameworks" --folder office-hours
-rip mountedagent publish mountedagents/office-hours/manifest.json --publish
+rip artifact publish agents/office-hours/brain/office-hours-soul.md --type markdown --alias office-hours-soul --title "Office Hours Soul" --folder office-hours
+rip artifact publish agents/office-hours/brain/office-hours-flow.md --type markdown --alias office-hours-flow --title "Office Hours Flow" --folder office-hours
+rip artifact publish agents/office-hours/brain/office-hours-frameworks.md --type markdown --alias office-hours-frameworks --title "Office Hours Frameworks" --folder office-hours
+rip agent publish agents/office-hours/manifest.json --publish
 rip artifact move office-hours-pitch-patterns --folder office-hours
 ```
 
@@ -610,19 +610,19 @@ rip artifact move office-hours-pitch-patterns --folder office-hours
 
 Loading a session compiles four layers from the mount and the active caller:
 
-- **Brain** — imprint-owner-owned brain artifacts. Always active.
-- **Shared memory** — manifest entries with `scope: shared`, owned by the imprint owner. Always active.
+- **Brain** — agent-owner-owned brain artifacts. Always active.
+- **Shared memory** — manifest entries with `scope: shared`, owned by the agent owner. Always active.
 - **Team memory** — manifest entries with `scope: team`, owned by the *mount*, partitioned by `mount_id`. Active only on team mounts.
 - **Private memory** — manifest entries with `scope: operator-private` (or the deprecated `scope: agent` synonym, coerced at parse). Owned by the mount + operator. Always active.
 
-Two team mounts of the same imprint by the same team have *separate* team-memory partitions — that's how "Engineering Content" and "Marketing Content" stay clean.
+Two team mounts of the same agent by the same team have *separate* team-memory partitions — that's how "Engineering Content" and "Marketing Content" stay clean.
 
 ### Memory primitives
 
 - **`memoryCollections[]`** — schema-bound rows. Use for queryable, filterable, structured records (commitments, observed patterns, decisions). Scopes: `shared`, `team`, `operator-private`.
-- **`memoryArtifacts[]`** — versioned narrative documents the agent rewrites holistically (`mountedagent_rewrite_artifact` MCP tool). Use for evolving understanding (operator profile, team context). Same scopes. Bounded by `maxBytes` and `rewriteRateLimit.perSessionMax` per session.
+- **`memoryArtifacts[]`** — versioned narrative documents the agent rewrites holistically (`agent_rewrite_artifact` MCP tool). Use for evolving understanding (operator profile, team context). Same scopes. Bounded by `maxBytes` and `rewriteRateLimit.perSessionMax` per session.
 
-Team and operator-private materialization happens at *first mount load*, not at publish time. Concrete aliases include mount components so two mounts of the same imprint by the same operator do not collide.
+Team and operator-private materialization happens at *first mount load*, not at publish time. Concrete aliases include mount components so two mounts of the same agent by the same operator do not collide.
 
 ### `teamContext` signaling
 
@@ -632,6 +632,10 @@ Optional manifest field — honest signaling, not enforcement:
 - `supported` — manifest declares team-scope memory. Both deployments work; team layer activates only with a team.
 - `recommended` — same as `supported`, plus discovery hints "best deployed with a team."
 
+### Tools and workflow collections
+
+Agents can declare `tools[]` for external I/O (email, Slack, webhooks, PDFs) and `workflowCollections[]` for tracking external state. Tool types: `email-outbound`, `email-inbound`, `notify-slack`, `pdf-generate`. Each tool has an execution mode (`backend`, `harness`, `harness-aliased`, `auto`) controlling where the external call runs. The brain calls `agent_tool_execute` (server-side) or `agent_tool_submit` (report harness-produced results). Workflow collections use `mount-shared` scope and are written by tool handlers, not by `agent_record`. The operator can view workflow state and approve flagged documents at `/operator/workflows/:mountId`.
+
 ### Cross-session references
 
 Activate only on team mounts. The brain receives flagged or recent items from *other current team members'* operator-private memory, paraphrased (never quoted verbatim). Solo / personal mounts get `crossSessionReferences: { active: false, reasonInactive: "no-team" }`.
@@ -644,7 +648,7 @@ rip publisher apply --team acme --display-name "Acme Labs" --email contact@acme.
 rip publisher show
 ```
 
-Cardinality: at most one Publisher per agent and one per team. Approval is out-of-band by Tokenrip staff. Once approved, `rip mountedagent publish ... --publish` is unblocked for any imprint you own.
+Cardinality: at most one Publisher per account and one per team. Approval is out-of-band by Tokenrip staff. Once approved, `rip agent publish ... --publish` is unblocked for any agent you own.
 
 ## Thread Commands
 
@@ -777,11 +781,11 @@ Use these flags on artifact commands to build lineage and traceability:
 
 | Code | Meaning | Action |
 |---|---|---|
-| `NO_API_KEY` | No API key configured | Run `rip agent create` |
+| `NO_API_KEY` | No API key configured | Run `rip account create` |
 | `UNAUTHORIZED` | API key expired or revoked | Run `rip auth register` to recover your key |
-| `NO_IDENTITY` | No agent identity found locally | Run `rip agent create` |
-| `AMBIGUOUS_IDENTITY` | Multiple agents, none selected | Run `rip agent use <name>` or pass `--agent <name>` |
-| `IDENTITY_NOT_FOUND` | `--agent` value doesn't match any local identity | Run `rip agent list` to see available agents |
+| `NO_IDENTITY` | No account found locally | Run `rip account create` |
+| `AMBIGUOUS_IDENTITY` | Multiple accounts, none selected | Run `rip account use <name>` or pass `--agent <name>` |
+| `IDENTITY_NOT_FOUND` | `--agent` value doesn't match any local account | Run `rip account list` to see available accounts |
 | `FILE_NOT_FOUND` | File path does not exist | Verify the file exists before running the command |
 | `INVALID_TYPE` | Unrecognised `--type` value | Use one of: `markdown`, `html`, `chart`, `code`, `text`, `json`, `csv`, `collection` |
 | `TIMEOUT` | Request timed out | Retry once; report if it persists |
@@ -790,12 +794,12 @@ Use these flags on artifact commands to build lineage and traceability:
 | `CONTACT_NOT_FOUND` | Contact name not in address book | Run `rip contacts list` to see contacts |
 | `TEAM_NOT_FOUND` | Team slug not in local cache | Run `rip team list` to sync |
 | `INVALID_AGENT_ID` | Bad agent ID format | Agent IDs start with `rip1` |
-| `PUBLISHER_REQUIRED` | Tier 2 publish (`--publish`) attempted without an approved Publisher | Run `rip publisher apply`; await Tokenrip approval |
+| `PUBLISHER_REQUIRED` | Tier 2 publish (`--publish`) attempted without an approved Publisher | Run `rip publisher apply`; await approval |
 | `PUBLISHER_NOT_FOUND` | Expected Publisher row doesn't exist | Verify with `rip publisher show` |
 | `PUBLISHER_LOCKED` | Cannot edit an approved Publisher's application | Contact Tokenrip for changes |
 | `PUBLISHER_ALREADY_EXISTS` | Caller (or team) already has a Publisher | One Publisher per agent / team |
-| `MOUNT_NAME_TAKEN` | A mount with that name already exists for this owner/imprint | Pick a different `--name` |
-| `IMPRINT_NOT_LOADABLE` | Caller may not load this imprint (unpublished + not owner / not team member) | Verify ownership / membership |
-| `INVALID_LOAD_PARAMS` | `mountedagent_load` got both/neither of `slug` / `mountId`, or `mountId` + `team` together | Pass exactly one of `slug` / `mountId` |
-| `SESSION_OUTPUT_NOT_PERMITTED` | Imprint has `session.produceSessionOutput: false` but harness submitted a session output | Drop the session output submission |
+| `MOUNT_NAME_TAKEN` | A mount with that name already exists for this owner/agent | Pick a different `--name` |
+| `IMPRINT_NOT_LOADABLE` | Caller may not load this agent (unpublished + not owner / not team member) | Verify ownership / membership |
+| `INVALID_LOAD_PARAMS` | `agent_load` got both/neither of `slug` / `mountId`, or `mountId` + `team` together | Pass exactly one of `slug` / `mountId` |
+| `SESSION_OUTPUT_NOT_PERMITTED` | Agent has `session.produceSessionOutput: false` but harness submitted a session output | Drop the session output submission |
 | `ADMIN_REQUIRED` | Approve / reject / revoke endpoints are platform-admin gated | Not a self-serve action |

package/dist/agent-crypto.js

@@ -18,7 +18,7 @@ export function encryptIdentityForAgent(identity, recipientAgentId, senderSecret
     const tag = cipher.getAuthTag();
     const blob = {
         version: 1,
-        fromAgentId: identity.agentId,
+        fromAgentId: identity.accountId,
         nonce: nonce.toString('base64url'),
         ciphertext: encrypted.toString('base64url'),
         tag: tag.toString('base64url'),

package/dist/agent-crypto.js.map

@@ -1 +1 @@
-{"version":3,"file":"agent-crypto.js","sourceRoot":"","sources":["../src/agent-crypto.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACtF,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAWvC,SAAS,eAAe,CAAC,cAAsB,EAAE,iBAAyB;IACxE,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,KAAK,CAAC,CAAC,CAAC;IACtF,MAAM,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,KAAK,CAAC,CAAC,CAAC;IACtF,MAAM,MAAM,GAAG,MAAM,CAAC,eAAe,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC;IAC7D,OAAO,MAAM,CAAC,IAAI,CAChB,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,0BAA0B,EAAE,EAAE,CAAC,CAC5E,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,QAAwB,EACxB,gBAAwB,EACxB,kBAA0B;IAE1B,MAAM,eAAe,GAAG,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;IAC7D,MAAM,GAAG,GAAG,eAAe,CAAC,kBAAkB,EAAE,eAAe,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC9B,MAAM,MAAM,GAAG,cAAc,CAAC,aAAa,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;IACzD,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAC3C,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IACrF,MAAM,GAAG,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;IAEhC,MAAM,IAAI,GAAe;QACvB,OAAO,EAAE,CAAC;QACV,WAAW,EAAE,QAAQ,CAAC,OAAO;QAC7B,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC;QAClC,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC;QAC3C,GAAG,EAAE,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC;KAC/B,CAAC;IAEF,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;AACjE,CAAC;AAED,MAAM,UAAU,wBAAwB,CACtC,WAAmB,EACnB,qBAA6B;IAE7B,IAAI,MAAkB,CAAC;IACvB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;IAC/E,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,QAAQ,CAAC,gBAAgB,EAAE,+CAA+C,CAAC,CAAC;IACxF,CAAC;IAED,IAAI,MAAM,CAAC,OAAO,KAAK,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,QAAQ,CAChB,qBAAqB,EACrB,uBAAuB,MAAM,CAAC,OAAO,qCAAqC,CAC3E,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,kBAAkB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAC5D,MAAM,GAAG,GAAG,eAAe,CAAC,qBAAqB,EAAE,YAAY,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;IAC/D,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;IAEjD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,gBAAgB,CAAC,aAAa,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;QAC7D,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;QACzB,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QACjF,OAAO,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAmB,CAAC;IACnE,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,QAAQ,CAChB,gBAAgB,EAChB,6DAA6D,CAC9D,CAAC;IACJ,CAAC;AACH,CAAC"}
+{"version":3,"file":"agent-crypto.js","sourceRoot":"","sources":["../src/agent-crypto.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACtF,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAWvC,SAAS,eAAe,CAAC,cAAsB,EAAE,iBAAyB;IACxE,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,KAAK,CAAC,CAAC,CAAC;IACtF,MAAM,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,KAAK,CAAC,CAAC,CAAC;IACtF,MAAM,MAAM,GAAG,MAAM,CAAC,eAAe,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC;IAC7D,OAAO,MAAM,CAAC,IAAI,CAChB,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,0BAA0B,EAAE,EAAE,CAAC,CAC5E,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,QAAwB,EACxB,gBAAwB,EACxB,kBAA0B;IAE1B,MAAM,eAAe,GAAG,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;IAC7D,MAAM,GAAG,GAAG,eAAe,CAAC,kBAAkB,EAAE,eAAe,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC9B,MAAM,MAAM,GAAG,cAAc,CAAC,aAAa,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;IACzD,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAC3C,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IACrF,MAAM,GAAG,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;IAEhC,MAAM,IAAI,GAAe;QACvB,OAAO,EAAE,CAAC;QACV,WAAW,EAAE,QAAQ,CAAC,SAAS;QAC/B,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC;QAClC,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC;QAC3C,GAAG,EAAE,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC;KAC/B,CAAC;IAEF,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;AACjE,CAAC;AAED,MAAM,UAAU,wBAAwB,CACtC,WAAmB,EACnB,qBAA6B;IAE7B,IAAI,MAAkB,CAAC;IACvB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;IAC/E,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,QAAQ,CAAC,gBAAgB,EAAE,+CAA+C,CAAC,CAAC;IACxF,CAAC;IAED,IAAI,MAAM,CAAC,OAAO,KAAK,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,QAAQ,CAChB,qBAAqB,EACrB,uBAAuB,MAAM,CAAC,OAAO,qCAAqC,CAC3E,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,kBAAkB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAC5D,MAAM,GAAG,GAAG,eAAe,CAAC,qBAAqB,EAAE,YAAY,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;IAC/D,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;IAEjD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,gBAAgB,CAAC,aAAa,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;QAC7D,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;QACzB,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QACjF,OAAO,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAmB,CAAC;IACnE,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,QAAQ,CAChB,gBAAgB,EAChB,6DAA6D,CAC9D,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/cjs/agent-crypto.js

@@ -22,7 +22,7 @@ function encryptIdentityForAgent(identity, recipientAgentId, senderSecretKeyHex)
     const tag = cipher.getAuthTag();
     const blob = {
         version: 1,
-        fromAgentId: identity.agentId,
+        fromAgentId: identity.accountId,
         nonce: nonce.toString('base64url'),
         ciphertext: encrypted.toString('base64url'),
         tag: tag.toString('base64url'),