@vorim/verify 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Vorim AI
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,135 @@
+# @vorim/verify
+
+**Offline verifier for Vorim audit bundles.** No network. No Vorim API call. No telemetry.
+
+[![npm version](https://img.shields.io/npm/v/@vorim/verify.svg)](https://www.npmjs.com/package/@vorim/verify)
+[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)
+[![Zero Dependencies](https://img.shields.io/badge/Dependencies-0-brightgreen.svg)]()
+[![Node](https://img.shields.io/badge/Node.js-18%2B-green.svg)](https://nodejs.org/)
+
+`vorim-verify` checks that a Vorim audit bundle is authentic and untampered, using only Node's built-in cryptography. The verifier never contacts Vorim — every public key needed to verify a signature is embedded in the bundle itself.
+
+## Install
+
+```bash
+npm install -g @vorim/verify
+```
+
+Or run without installing:
+
+```bash
+npx @vorim/verify bundle.json
+```
+
+## Usage
+
+```bash
+vorim-verify bundle.json              # verify a bundle file
+cat bundle.json | vorim-verify -      # read from stdin
+vorim-verify --explain bundle.json    # per-event verdicts
+vorim-verify --json bundle.json       # machine-readable JSON output
+```
+
+Exit codes: `0` ok, `1` verification failed, `2` CLI / IO error.
+
+Example output:
+
+```text
+vorim-verify: OK
+
+bundle_version : vaip-v0
+manifest       : OK (sha256:8ff556a7222f...)
+
+events total       : 247
+  verified         : 247
+  unsigned         : 0
+  bad signature    : 0
+  unknown agent    : 0
+  malformed        : 0
+```
+
+## What verification proves
+
+For every event marked `verified`:
+
+1. **The bundle has not been edited since the API exported it.** The bundle's SHA-256 manifest must match the bytes of `events + agents` exactly.
+2. **The agent identified in the event is the one that authored the bytes recorded.** The event's `ed25519` signature verifies under the agent's public key (embedded in the bundle's `agents[]`).
+3. **The bytes signed are exactly the bytes recorded.** Tampering with any of `event_type`, `action`, `resource`, `input_hash`, `output_hash`, or `result` invalidates the signature.
+
+## What verification does NOT prove
+
+Be honest about the limits:
+
+- **It does not prove the agent's identity is who it claims to be.** That requires a separate trust anchor (the Vorim trust API, an IdP, a public key directory). The verifier confirms the *binding* between the signature and the public key in the bundle.
+- **It does not prove the bundle is recent.** Add a timestamp authority or an externally-witnessed hash chain if freshness matters.
+- **It does not detect missing events.** A bundle with N signed events is a true record of those N events. Whether other events were dropped before export is outside the verifier's scope. Pair with the Vorim `audit_events` count for that.
+- **`unsigned` and `unknown_agent` events are reported but do not fail the bundle.** Operator's call: a fresh bundle from a v3.1+ SDK should be 100% signed; an older bundle may not be. The CLI surfaces the count; the operator decides what the threshold is.
+
+## Bundle format
+
+The verifier expects the JSON shape produced by `POST /v1/audit/export` on Vorim API (`bundle_version: "vaip-v0"`). Minimum required:
+
+```json
+{
+  "bundle_version": "vaip-v0",
+  "events": [
+    {
+      "event_id": "evt_...",
+      "agent_id_str": "agid_...",
+      "event_type": "tool_call",
+      "action": "transfer_funds",
+      "resource": "acct-1",
+      "input_hash": null,
+      "output_hash": null,
+      "result": "success",
+      "signature": "ed25519:..."
+    }
+  ],
+  "agents": [
+    { "agent_id": "agid_...", "public_key": "-----BEGIN PUBLIC KEY-----\n..." }
+  ],
+  "manifest": "sha256:..."
+}
+```
+
+## Canonical bytes signed
+
+```
+event_type|action|resource|input_hash|output_hash|result
+```
+
+Pipe-joined, empty string for missing optional fields. The verifier exposes `canonicalPayloadV0()` so you can reproduce the bytes yourself.
+
+## Programmatic use
+
+```typescript
+import { verifyBundle } from '@vorim/verify';
+
+const bundle = JSON.parse(fs.readFileSync('bundle.json', 'utf-8'));
+const report = verifyBundle(bundle);
+
+if (!report.ok) {
+  console.error('bundle failed verification', report);
+  process.exit(1);
+}
+```
+
+Returns a `VerifyReport` with per-event verdicts and aggregate counts.
+
+## Auditing this code
+
+The verifier is small and intentionally has no runtime dependencies. To audit it from source:
+
+```bash
+git clone https://github.com/Kzino/vorim-protocol
+cd vorim-protocol/packages/verify
+npm install
+npm test       # 23 unit tests
+npm run build  # produces dist/cli.js
+```
+
+Read `src/index.ts` for the verification logic (≈220 lines) and `src/cli.ts` for the CLI shim.
+
+## License
+
+MIT — see [LICENSE](LICENSE).

package/dist/cli.d.ts

@@ -0,0 +1,19 @@
+#!/usr/bin/env node
+/**
+ * vorim-verify — Offline verifier for Vorim audit bundles.
+ *
+ * Usage:
+ *   vorim-verify <path/to/bundle.json>
+ *   cat bundle.json | vorim-verify -
+ *   vorim-verify --explain <path>     # per-event verdict list
+ *   vorim-verify --json <path>        # machine-readable report
+ *   vorim-verify --help
+ *   vorim-verify --version
+ *
+ * Exit codes:
+ *   0  bundle ok (no bad/malformed signatures, manifest checks if present)
+ *   1  bundle failed verification (at least one bad/malformed sig or wrong manifest)
+ *   2  CLI usage error / unreadable input
+ */
+export {};
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AACA;;;;;;;;;;;;;;;GAeG"}

package/dist/cli.js

@@ -0,0 +1,149 @@
+#!/usr/bin/env node
+/**
+ * vorim-verify — Offline verifier for Vorim audit bundles.
+ *
+ * Usage:
+ *   vorim-verify <path/to/bundle.json>
+ *   cat bundle.json | vorim-verify -
+ *   vorim-verify --explain <path>     # per-event verdict list
+ *   vorim-verify --json <path>        # machine-readable report
+ *   vorim-verify --help
+ *   vorim-verify --version
+ *
+ * Exit codes:
+ *   0  bundle ok (no bad/malformed signatures, manifest checks if present)
+ *   1  bundle failed verification (at least one bad/malformed sig or wrong manifest)
+ *   2  CLI usage error / unreadable input
+ */
+import { readFileSync } from 'node:fs';
+import { verifyBundle } from './index.js';
+const VERSION = '0.1.0';
+function printUsage(stream) {
+    stream.write(`vorim-verify ${VERSION} — offline verifier for Vorim audit bundles
+
+Usage:
+  vorim-verify <bundle.json>            verify a bundle file
+  vorim-verify -                        read bundle from stdin
+  vorim-verify --explain <bundle.json>  list per-event verdicts
+  vorim-verify --json <bundle.json>     emit JSON report (no human formatting)
+  vorim-verify --help                   show this help
+  vorim-verify --version                print version
+
+Exit codes:
+  0 = OK, 1 = verification failed, 2 = CLI / IO error
+
+This tool makes NO network calls. It reads the bundle and verifies
+Ed25519 signatures against the public keys embedded in the bundle.
+`);
+}
+function readSource(arg) {
+    if (arg === '-') {
+        return readFileSync(0, 'utf-8');
+    }
+    try {
+        return readFileSync(arg, 'utf-8');
+    }
+    catch (e) {
+        process.stderr.write(`vorim-verify: cannot read ${arg}: ${e.message}\n`);
+        process.exit(2);
+    }
+}
+function parseBundle(src) {
+    try {
+        return JSON.parse(src);
+    }
+    catch (e) {
+        process.stderr.write(`vorim-verify: invalid JSON: ${e.message}\n`);
+        process.exit(2);
+    }
+}
+function formatHuman(report, explain) {
+    const lines = [];
+    const status = report.ok ? 'OK' : 'FAILED';
+    lines.push(`vorim-verify: ${status}`);
+    lines.push('');
+    lines.push(`bundle_version : ${report.bundle_version ?? '(unspecified)'}`);
+    if (report.manifest_ok === null) {
+        lines.push('manifest       : (no manifest field — bundle pre-dates v0)');
+    }
+    else if (report.manifest_ok) {
+        lines.push(`manifest       : OK (${report.manifest_actual})`);
+    }
+    else {
+        lines.push(`manifest       : MISMATCH`);
+        lines.push(`  expected: ${report.manifest_expected}`);
+        lines.push(`  actual  : ${report.manifest_actual}`);
+    }
+    lines.push('');
+    lines.push(`events total       : ${report.event_count}`);
+    lines.push(`  verified         : ${report.verified}`);
+    lines.push(`  unsigned         : ${report.unsigned}`);
+    lines.push(`  bad signature    : ${report.bad_signature}`);
+    lines.push(`  unknown agent    : ${report.unknown_agent}`);
+    lines.push(`  malformed        : ${report.malformed_signature}`);
+    if (explain && report.events.length > 0) {
+        lines.push('');
+        lines.push('per-event verdicts:');
+        for (const e of report.events) {
+            const id = e.event_id ?? '(no id)';
+            const reason = e.reason ? ` — ${e.reason}` : '';
+            lines.push(`  [${e.verdict.padEnd(12, ' ')}] ${id}  agent=${e.agent_id ?? '?'}  action=${e.action}${reason}`);
+        }
+    }
+    if (!report.ok) {
+        lines.push('');
+        lines.push('Bundle did NOT verify cleanly. See verdicts above.');
+    }
+    return lines.join('\n') + '\n';
+}
+function main() {
+    const argv = process.argv.slice(2);
+    if (argv.length === 0 || argv.includes('--help') || argv.includes('-h')) {
+        printUsage(argv.length === 0 ? process.stderr : process.stdout);
+        process.exit(argv.length === 0 ? 2 : 0);
+    }
+    if (argv.includes('--version') || argv.includes('-v')) {
+        process.stdout.write(`${VERSION}\n`);
+        process.exit(0);
+    }
+    let json = false;
+    let explain = false;
+    const positional = [];
+    for (const a of argv) {
+        if (a === '--json')
+            json = true;
+        else if (a === '--explain')
+            explain = true;
+        else if (a.startsWith('--')) {
+            process.stderr.write(`vorim-verify: unknown flag ${a}\n`);
+            process.exit(2);
+        }
+        else {
+            positional.push(a);
+        }
+    }
+    if (positional.length === 0) {
+        process.stderr.write(`vorim-verify: missing bundle path. Use - for stdin.\n`);
+        process.exit(2);
+    }
+    if (positional.length > 1) {
+        process.stderr.write(`vorim-verify: expected one bundle path, got ${positional.length}\n`);
+        process.exit(2);
+    }
+    const src = readSource(positional[0]);
+    const parsed = parseBundle(src);
+    if (!parsed || typeof parsed !== 'object') {
+        process.stderr.write(`vorim-verify: bundle must be a JSON object\n`);
+        process.exit(2);
+    }
+    const report = verifyBundle(parsed);
+    if (json) {
+        process.stdout.write(JSON.stringify(report, null, 2) + '\n');
+    }
+    else {
+        process.stdout.write(formatHuman(report, explain));
+    }
+    process.exit(report.ok ? 0 : 1);
+}
+main();
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AACA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAG1C,MAAM,OAAO,GAAG,OAAO,CAAC;AAExB,SAAS,UAAU,CAAC,MAA0B;IAC5C,MAAM,CAAC,KAAK,CACV,gBAAgB,OAAO;;;;;;;;;;;;;;;CAe1B,CACE,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,GAAW;IAC7B,IAAI,GAAG,KAAK,GAAG,EAAE,CAAC;QAChB,OAAO,YAAY,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IAClC,CAAC;IACD,IAAI,CAAC;QACH,OAAO,YAAY,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACpC,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,6BAA6B,GAAG,KAAM,CAAW,CAAC,OAAO,IAAI,CAAC,CAAC;QACpF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAS,WAAW,CAAC,GAAW;IAC9B,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACzB,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,+BAAgC,CAAW,CAAC,OAAO,IAAI,CAAC,CAAC;QAC9E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAS,WAAW,CAAC,MAAoB,EAAE,OAAgB;IACzD,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,MAAM,MAAM,GAAG,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;IAC3C,KAAK,CAAC,IAAI,CAAC,iBAAiB,MAAM,EAAE,CAAC,CAAC;IACtC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,oBAAoB,MAAM,CAAC,cAAc,IAAI,eAAe,EAAE,CAAC,CAAC;IAC3E,IAAI,MAAM,CAAC,WAAW,KAAK,IAAI,EAAE,CAAC;QAChC,KAAK,CAAC,IAAI,CAAC,4DAA4D,CAAC,CAAC;IAC3E,CAAC;SAAM,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QAC9B,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,eAAe,GAAG,CAAC,CAAC;IAChE,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;QACxC,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,iBAAiB,EAAE,CAAC,CAAC;QACtD,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC;IACzD,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;IACtD,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;IACtD,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,aAAa,EAAE,CAAC,CAAC;IAC3D,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,aAAa,EAAE,CAAC,CAAC;IAC3D,KAAK,CAAC,IAAI,CAAC,wBAAwB,MAAM,CAAC,mBAAmB,EAAE,CAAC,CAAC;IAEjE,IAAI,OAAO,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;QAClC,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAC9B,MAAM,EAAE,GAAG,CAAC,CAAC,QAAQ,IAAI,SAAS,CAAC;YACnC,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAChD,KAAK,CAAC,IAAI,CACR,MAAM,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,EAAE,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC,QAAQ,IAAI,GAAG,YAAY,CAAC,CAAC,MAAM,GAAG,MAAM,EAAE,CAClG,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC;IACnE,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;AACjC,CAAC;AAED,SAAS,IAAI;IACX,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACnC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACxE,UAAU,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QAChE,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,CAAC;IACD,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACtD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,OAAO,IAAI,CAAC,CAAC;QACrC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,IAAI,GAAG,KAAK,CAAC;IACjB,IAAI,OAAO,GAAG,KAAK,CAAC;IACpB,MAAM,UAAU,GAAa,EAAE,CAAC;IAChC,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;QACrB,IAAI,CAAC,KAAK,QAAQ;YAAE,IAAI,GAAG,IAAI,CAAC;aAC3B,IAAI,CAAC,KAAK,WAAW;YAAE,OAAO,GAAG,IAAI,CAAC;aACtC,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,8BAA8B,CAAC,IAAI,CAAC,CAAC;YAC1D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;aAAM,CAAC;YACN,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACrB,CAAC;IACH,CAAC;IACD,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,uDAAuD,CAAC,CAAC;QAC9E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IACD,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,+CAA+C,UAAU,CAAC,MAAM,IAAI,CAAC,CAAC;QAC3F,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,GAAG,GAAG,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IACtC,MAAM,MAAM,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;IAChC,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;QAC1C,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,8CAA8C,CAAC,CAAC;QACrE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,MAAM,GAAG,YAAY,CAAC,MAA4C,CAAC,CAAC;IAE1E,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAC/D,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IACrD,CAAC;IACD,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AAClC,CAAC;AAED,IAAI,EAAE,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,67 @@
+/**
+ * @vorim/verify — Offline verifier for Vorim audit bundles.
+ *
+ * Pure Node.js (built-in `crypto` only). No network calls, no Vorim API
+ * dependency, no telemetry. Designed to be reproduced from scratch by any
+ * counterparty who wants to convince themselves the bundle is authentic
+ * without trusting Vorim.
+ */
+import type { AuditBundle, BundleEvent, VerifyReport } from './types.js';
+export type { AuditBundle, BundleAgent, BundleEvent, EventResult, EventVerdict, VerifyReport, } from './types.js';
+/**
+ * VAIP v0 canonical bytes for audit-event signing.
+ *
+ * Pipe-joined content fields with empty-string substitution for missing
+ * values. Must produce byte-identical output to:
+ *   - @vorim/sdk `canonicalPayloadV0` (TypeScript SDK)
+ *   - vorim Python SDK `canonical_payload_v0`
+ *   - @vorim/shared-types `canonicalPayloadV0` (server)
+ *
+ * This is intentionally duplicated here so the verifier has zero
+ * dependencies. The test suite for each implementation cross-checks them
+ * against the same fixture matrix.
+ */
+export declare function canonicalPayloadV0(event: {
+    event_type: string;
+    action: string;
+    resource?: string | null;
+    input_hash?: string | null;
+    output_hash?: string | null;
+    result: string;
+}): string;
+/**
+ * Verify the SHA-256 manifest over `{ events, agents }`. Returns null if
+ * the bundle has no manifest field (older exports). Manifest format is
+ * `sha256:<hex>` to match the server's `exportAuditBundle`.
+ */
+export declare function verifyManifest(bundle: AuditBundle): {
+    ok: boolean | null;
+    expected: string | null;
+    actual: string | null;
+};
+/**
+ * Verify a single Ed25519 signature against `canonicalPayloadV0(event)`.
+ * `signature` is the `ed25519:<base64>` form the SDK produces; the prefix
+ * is stripped before decoding.
+ */
+export declare function verifyEventSignature(event: BundleEvent, publicKeyPem: string): {
+    ok: boolean;
+    reason?: string;
+};
+/**
+ * Verify every event in the bundle. Each event ends up in exactly one of
+ * five buckets:
+ *
+ *  - `verified` — signature present, agent's public key found, sig valid
+ *  - `unsigned` — no signature in the event (acceptable; just unverifiable)
+ *  - `bad_signature` — signature present but does not verify
+ *  - `unknown_agent` — signature present but no public key in `agents[]`
+ *  - `malformed_signature` — signature present but unparseable / wrong key format
+ *
+ * The whole report is `ok` iff `bad_signature` and `malformed_signature`
+ * are both zero, AND the manifest verifies (or is absent). Unsigned and
+ * unknown-agent events do NOT fail the report — they are surfaced so the
+ * reader can make their own call.
+ */
+export declare function verifyBundle(bundle: AuditBundle): VerifyReport;
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,KAAK,EACV,WAAW,EAEX,WAAW,EAEX,YAAY,EACb,MAAM,YAAY,CAAC;AAEpB,YAAY,EACV,WAAW,EACX,WAAW,EACX,WAAW,EACX,WAAW,EACX,YAAY,EACZ,YAAY,GACb,MAAM,YAAY,CAAC;AAEpB;;;;;;;;;;;;GAYG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE;IACxC,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,MAAM,EAAE,MAAM,CAAC;CAChB,GAAG,MAAM,CAST;AAED;;;;GAIG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,WAAW,GAAG;IACnD,EAAE,EAAE,OAAO,GAAG,IAAI,CAAC;IACnB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB,CAKA;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,CAClC,KAAK,EAAE,WAAW,EAClB,YAAY,EAAE,MAAM,GACnB;IAAE,EAAE,EAAE,OAAO,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,CA6BlC;AAYD;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,YAAY,CAAC,MAAM,EAAE,WAAW,GAAG,YAAY,CAyG9D"}

package/dist/index.js

@@ -0,0 +1,199 @@
+/**
+ * @vorim/verify — Offline verifier for Vorim audit bundles.
+ *
+ * Pure Node.js (built-in `crypto` only). No network calls, no Vorim API
+ * dependency, no telemetry. Designed to be reproduced from scratch by any
+ * counterparty who wants to convince themselves the bundle is authentic
+ * without trusting Vorim.
+ */
+import { createHash, createPublicKey, verify as cryptoVerify } from 'node:crypto';
+/**
+ * VAIP v0 canonical bytes for audit-event signing.
+ *
+ * Pipe-joined content fields with empty-string substitution for missing
+ * values. Must produce byte-identical output to:
+ *   - @vorim/sdk `canonicalPayloadV0` (TypeScript SDK)
+ *   - vorim Python SDK `canonical_payload_v0`
+ *   - @vorim/shared-types `canonicalPayloadV0` (server)
+ *
+ * This is intentionally duplicated here so the verifier has zero
+ * dependencies. The test suite for each implementation cross-checks them
+ * against the same fixture matrix.
+ */
+export function canonicalPayloadV0(event) {
+    return [
+        event.event_type,
+        event.action,
+        event.resource ?? '',
+        event.input_hash ?? '',
+        event.output_hash ?? '',
+        event.result,
+    ].join('|');
+}
+/**
+ * Verify the SHA-256 manifest over `{ events, agents }`. Returns null if
+ * the bundle has no manifest field (older exports). Manifest format is
+ * `sha256:<hex>` to match the server's `exportAuditBundle`.
+ */
+export function verifyManifest(bundle) {
+    if (!bundle.manifest)
+        return { ok: null, expected: null, actual: null };
+    const body = JSON.stringify({ events: bundle.events, agents: bundle.agents });
+    const actual = 'sha256:' + createHash('sha256').update(body).digest('hex');
+    return { ok: actual === bundle.manifest, expected: bundle.manifest, actual };
+}
+/**
+ * Verify a single Ed25519 signature against `canonicalPayloadV0(event)`.
+ * `signature` is the `ed25519:<base64>` form the SDK produces; the prefix
+ * is stripped before decoding.
+ */
+export function verifyEventSignature(event, publicKeyPem) {
+    const sig = event.signature;
+    if (!sig)
+        return { ok: false, reason: 'no signature' };
+    const stripped = sig.startsWith('ed25519:') ? sig.slice('ed25519:'.length) : sig;
+    let sigBytes;
+    try {
+        sigBytes = Buffer.from(stripped, 'base64');
+    }
+    catch {
+        return { ok: false, reason: 'malformed base64 signature' };
+    }
+    if (sigBytes.length === 0)
+        return { ok: false, reason: 'empty signature' };
+    let pubKey;
+    try {
+        pubKey = createPublicKey(publicKeyPem);
+    }
+    catch (e) {
+        return {
+            ok: false,
+            reason: `unparseable public key: ${e.message}`,
+        };
+    }
+    const payload = Buffer.from(canonicalPayloadV0(event), 'utf-8');
+    try {
+        return { ok: cryptoVerify(null, payload, pubKey, sigBytes) };
+    }
+    catch (e) {
+        return { ok: false, reason: `verify error: ${e.message}` };
+    }
+}
+function eventAgentId(event) {
+    // The export joins agents and stores the public-facing agent_id as
+    // `agent_id_str`. Fall back to `agent_id` for hand-crafted bundles.
+    return ((typeof event.agent_id_str === 'string' && event.agent_id_str) ||
+        (typeof event.agent_id === 'string' && event.agent_id) ||
+        null);
+}
+/**
+ * Verify every event in the bundle. Each event ends up in exactly one of
+ * five buckets:
+ *
+ *  - `verified` — signature present, agent's public key found, sig valid
+ *  - `unsigned` — no signature in the event (acceptable; just unverifiable)
+ *  - `bad_signature` — signature present but does not verify
+ *  - `unknown_agent` — signature present but no public key in `agents[]`
+ *  - `malformed_signature` — signature present but unparseable / wrong key format
+ *
+ * The whole report is `ok` iff `bad_signature` and `malformed_signature`
+ * are both zero, AND the manifest verifies (or is absent). Unsigned and
+ * unknown-agent events do NOT fail the report — they are surfaced so the
+ * reader can make their own call.
+ */
+export function verifyBundle(bundle) {
+    const agentMap = new Map((bundle.agents ?? []).map(a => [a.agent_id, a]));
+    const events = (bundle.events ?? []).map(e => {
+        const agentId = eventAgentId(e);
+        const baseId = typeof e.event_id === 'string' ? e.event_id : undefined;
+        if (!e.signature) {
+            return {
+                event_id: baseId,
+                agent_id: agentId,
+                action: e.action,
+                verdict: 'unsigned',
+            };
+        }
+        if (!agentId) {
+            return {
+                event_id: baseId,
+                agent_id: null,
+                action: e.action,
+                verdict: 'unknown_agent',
+                reason: 'event has no agent_id',
+            };
+        }
+        const agent = agentMap.get(agentId);
+        if (!agent) {
+            return {
+                event_id: baseId,
+                agent_id: agentId,
+                action: e.action,
+                verdict: 'unknown_agent',
+                reason: `bundle.agents[] does not contain ${agentId}`,
+            };
+        }
+        const v = verifyEventSignature(e, agent.public_key);
+        if (v.ok) {
+            return {
+                event_id: baseId,
+                agent_id: agentId,
+                action: e.action,
+                verdict: 'verified',
+            };
+        }
+        if (v.reason && v.reason.startsWith('unparseable public key')) {
+            return {
+                event_id: baseId,
+                agent_id: agentId,
+                action: e.action,
+                verdict: 'malformed_signature',
+                reason: v.reason,
+            };
+        }
+        if (v.reason && (v.reason.includes('base64') || v.reason.includes('verify error'))) {
+            return {
+                event_id: baseId,
+                agent_id: agentId,
+                action: e.action,
+                verdict: 'malformed_signature',
+                reason: v.reason,
+            };
+        }
+        return {
+            event_id: baseId,
+            agent_id: agentId,
+            action: e.action,
+            verdict: 'bad_signature',
+            reason: v.reason,
+        };
+    });
+    const counts = {
+        verified: 0,
+        unsigned: 0,
+        bad_signature: 0,
+        unknown_agent: 0,
+        malformed_signature: 0,
+    };
+    for (const r of events)
+        counts[r.verdict]++;
+    const manifest = verifyManifest(bundle);
+    const ok = counts.bad_signature === 0 &&
+        counts.malformed_signature === 0 &&
+        manifest.ok !== false;
+    return {
+        bundle_version: typeof bundle.bundle_version === 'string' ? bundle.bundle_version : null,
+        manifest_ok: manifest.ok,
+        manifest_expected: manifest.expected,
+        manifest_actual: manifest.actual,
+        event_count: events.length,
+        verified: counts.verified,
+        unsigned: counts.unsigned,
+        bad_signature: counts.bad_signature,
+        unknown_agent: counts.unknown_agent,
+        malformed_signature: counts.malformed_signature,
+        events,
+        ok,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,IAAI,YAAY,EAAE,MAAM,aAAa,CAAC;AAkBlF;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,kBAAkB,CAAC,KAOlC;IACC,OAAO;QACL,KAAK,CAAC,UAAU;QAChB,KAAK,CAAC,MAAM;QACZ,KAAK,CAAC,QAAQ,IAAI,EAAE;QACpB,KAAK,CAAC,UAAU,IAAI,EAAE;QACtB,KAAK,CAAC,WAAW,IAAI,EAAE;QACvB,KAAK,CAAC,MAAM;KACb,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACd,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAC,MAAmB;IAKhD,IAAI,CAAC,MAAM,CAAC,QAAQ;QAAE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;IACxE,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC9E,MAAM,MAAM,GAAG,SAAS,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC3E,OAAO,EAAE,EAAE,EAAE,MAAM,KAAK,MAAM,CAAC,QAAQ,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,EAAE,CAAC;AAC/E,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,oBAAoB,CAClC,KAAkB,EAClB,YAAoB;IAEpB,MAAM,GAAG,GAAG,KAAK,CAAC,SAAS,CAAC;IAC5B,IAAI,CAAC,GAAG;QAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,cAAc,EAAE,CAAC;IAEvD,MAAM,QAAQ,GAAG,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;IACjF,IAAI,QAAgB,CAAC;IACrB,IAAI,CAAC;QACH,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAC7C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,4BAA4B,EAAE,CAAC;IAC7D,CAAC;IACD,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC;IAE3E,IAAI,MAAM,CAAC;IACX,IAAI,CAAC;QACH,MAAM,GAAG,eAAe,CAAC,YAAY,CAAC,CAAC;IACzC,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO;YACL,EAAE,EAAE,KAAK;YACT,MAAM,EAAE,2BAA4B,CAAW,CAAC,OAAO,EAAE;SAC1D,CAAC;IACJ,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,EAAE,OAAO,CAAC,CAAC;IAChE,IAAI,CAAC;QACH,OAAO,EAAE,EAAE,EAAE,YAAY,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC;IAC/D,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAkB,CAAW,CAAC,OAAO,EAAE,EAAE,CAAC;IACxE,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,KAAkB;IACtC,mEAAmE;IACnE,oEAAoE;IACpE,OAAO,CACL,CAAC,OAAO,KAAK,CAAC,YAAY,KAAK,QAAQ,IAAI,KAAK,CAAC,YAAY,CAAC;QAC9D,CAAC,OAAO,KAAK,CAAC,QAAQ,KAAK,QAAQ,IAAI,KAAK,CAAC,QAAQ,CAAC;QACtD,IAAI,CACL,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,YAAY,CAAC,MAAmB;IAC9C,MAAM,QAAQ,GAAG,IAAI,GAAG,CACtB,CAAC,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAChD,CAAC;IAEF,MAAM,MAAM,GAAkB,CAAC,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;QAC1D,MAAM,OAAO,GAAG,YAAY,CAAC,CAAC,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,OAAO,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;QAEvE,IAAI,CAAC,CAAC,CAAC,SAAS,EAAE,CAAC;YACjB,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,OAAO,EAAE,UAAU;aACpB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,IAAI;gBACd,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,OAAO,EAAE,eAAe;gBACxB,MAAM,EAAE,uBAAuB;aAChC,CAAC;QACJ,CAAC;QAED,MAAM,KAAK,GAAG,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACpC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,OAAO,EAAE,eAAe;gBACxB,MAAM,EAAE,oCAAoC,OAAO,EAAE;aACtD,CAAC;QACJ,CAAC;QAED,MAAM,CAAC,GAAG,oBAAoB,CAAC,CAAC,EAAE,KAAK,CAAC,UAAU,CAAC,CAAC;QACpD,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC;YACT,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,OAAO,EAAE,UAAU;aACpB,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,wBAAwB,CAAC,EAAE,CAAC;YAC9D,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,OAAO,EAAE,qBAAqB;gBAC9B,MAAM,EAAE,CAAC,CAAC,MAAM;aACjB,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,EAAE,CAAC;YACnF,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,OAAO,EAAE,qBAAqB;gBAC9B,MAAM,EAAE,CAAC,CAAC,MAAM;aACjB,CAAC;QACJ,CAAC;QACD,OAAO;YACL,QAAQ,EAAE,MAAM;YAChB,QAAQ,EAAE,OAAO;YACjB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,OAAO,EAAE,eAAe;YACxB,MAAM,EAAE,CAAC,CAAC,MAAM;SACjB,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG;QACb,QAAQ,EAAE,CAAC;QACX,QAAQ,EAAE,CAAC;QACX,aAAa,EAAE,CAAC;QAChB,aAAa,EAAE,CAAC;QAChB,mBAAmB,EAAE,CAAC;KACvB,CAAC;IACF,KAAK,MAAM,CAAC,IAAI,MAAM;QAAE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IAE5C,MAAM,QAAQ,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;IACxC,MAAM,EAAE,GACN,MAAM,CAAC,aAAa,KAAK,CAAC;QAC1B,MAAM,CAAC,mBAAmB,KAAK,CAAC;QAChC,QAAQ,CAAC,EAAE,KAAK,KAAK,CAAC;IAExB,OAAO;QACL,cAAc,EACZ,OAAO,MAAM,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,IAAI;QAC1E,WAAW,EAAE,QAAQ,CAAC,EAAE;QACxB,iBAAiB,EAAE,QAAQ,CAAC,QAAQ;QACpC,eAAe,EAAE,QAAQ,CAAC,MAAM;QAChC,WAAW,EAAE,MAAM,CAAC,MAAM;QAC1B,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,aAAa,EAAE,MAAM,CAAC,aAAa;QACnC,aAAa,EAAE,MAAM,CAAC,aAAa;QACnC,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC/C,MAAM;QACN,EAAE;KACH,CAAC;AACJ,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,65 @@
+/**
+ * Shape of a Vorim audit bundle as produced by the API's
+ * `POST /v1/audit/export` endpoint (bundle_version: "vaip-v0").
+ *
+ * The verifier only depends on the fields it inspects; extra fields are
+ * preserved so future bundle revisions remain readable.
+ */
+export interface AuditBundle {
+    bundle_version?: string;
+    canonical_form?: string;
+    manifest?: string;
+    events: BundleEvent[];
+    agents: BundleAgent[];
+    event_count?: number;
+    agent_count?: number;
+    from?: string;
+    to?: string;
+    org_id?: string;
+    generated_at?: string;
+    [key: string]: unknown;
+}
+export interface BundleEvent {
+    event_id?: string;
+    agent_id_str?: string;
+    agent_id?: string | number;
+    event_type: string;
+    action: string;
+    resource?: string | null;
+    input_hash?: string | null;
+    output_hash?: string | null;
+    result: string;
+    signature?: string | null;
+    timestamp?: string;
+    [key: string]: unknown;
+}
+export interface BundleAgent {
+    agent_id: string;
+    public_key: string;
+    key_fingerprint?: string;
+    status?: string;
+    name?: string;
+}
+export type EventVerdict = 'verified' | 'unsigned' | 'bad_signature' | 'unknown_agent' | 'malformed_signature';
+export interface EventResult {
+    event_id?: string;
+    agent_id: string | null;
+    action: string;
+    verdict: EventVerdict;
+    reason?: string;
+}
+export interface VerifyReport {
+    bundle_version: string | null;
+    manifest_ok: boolean | null;
+    manifest_expected: string | null;
+    manifest_actual: string | null;
+    event_count: number;
+    verified: number;
+    unsigned: number;
+    bad_signature: number;
+    unknown_agent: number;
+    malformed_signature: number;
+    events: EventResult[];
+    ok: boolean;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,MAAM,WAAW,WAAW;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,WAAW,EAAE,CAAC;IACtB,MAAM,EAAE,WAAW,EAAE,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC3B,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,MAAM,YAAY,GACpB,UAAU,GACV,UAAU,GACV,eAAe,GACf,eAAe,GACf,qBAAqB,CAAC;AAE1B,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,YAAY,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,YAAY;IAC3B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,WAAW,EAAE,OAAO,GAAG,IAAI,CAAC;IAC5B,iBAAiB,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,MAAM,EAAE,WAAW,EAAE,CAAC;IACtB,EAAE,EAAE,OAAO,CAAC;CACb"}

package/dist/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}

package/package.json

@@ -0,0 +1,56 @@
+{
+  "name": "@vorim/verify",
+  "version": "0.1.0",
+  "description": "Offline verifier for Vorim audit bundles — no network, no Vorim API call, no telemetry.",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    }
+  },
+  "bin": {
+    "vorim-verify": "dist/cli.js"
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "test": "vitest run",
+    "typecheck": "tsc --noEmit"
+  },
+  "dependencies": {},
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.4.0",
+    "vitest": "^2.0.0"
+  },
+  "keywords": [
+    "vorim",
+    "audit",
+    "verifier",
+    "ed25519",
+    "offline",
+    "agent-identity",
+    "ai-agents"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/Kzino/vorim-protocol",
+    "directory": "packages/verify"
+  },
+  "homepage": "https://vorim.ai",
+  "bugs": {
+    "url": "https://github.com/Kzino/vorim-protocol/issues"
+  },
+  "author": "Vorim AI <hello@vorim.ai>",
+  "license": "MIT",
+  "engines": {
+    "node": ">=18.0.0"
+  }
+}