@vorionsys/contracts 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (173) hide show
  1. package/dist/aci/aci-string.d.ts +539 -0
  2. package/dist/aci/aci-string.d.ts.map +1 -0
  3. package/dist/aci/aci-string.js +563 -0
  4. package/dist/aci/aci-string.js.map +1 -0
  5. package/dist/aci/attestation.d.ts +648 -0
  6. package/dist/aci/attestation.d.ts.map +1 -0
  7. package/dist/aci/attestation.js +289 -0
  8. package/dist/aci/attestation.js.map +1 -0
  9. package/dist/aci/domains.d.ts +260 -0
  10. package/dist/aci/domains.d.ts.map +1 -0
  11. package/dist/aci/domains.js +322 -0
  12. package/dist/aci/domains.js.map +1 -0
  13. package/dist/aci/effective-permission.d.ts +371 -0
  14. package/dist/aci/effective-permission.d.ts.map +1 -0
  15. package/dist/aci/effective-permission.js +351 -0
  16. package/dist/aci/effective-permission.js.map +1 -0
  17. package/dist/aci/identity.d.ts +1100 -0
  18. package/dist/aci/identity.d.ts.map +1 -0
  19. package/dist/aci/identity.js +328 -0
  20. package/dist/aci/identity.js.map +1 -0
  21. package/dist/aci/index.d.ts +67 -0
  22. package/dist/aci/index.d.ts.map +1 -0
  23. package/dist/aci/index.js +157 -0
  24. package/dist/aci/index.js.map +1 -0
  25. package/dist/aci/jwt-claims.d.ts +756 -0
  26. package/dist/aci/jwt-claims.d.ts.map +1 -0
  27. package/dist/aci/jwt-claims.js +335 -0
  28. package/dist/aci/jwt-claims.js.map +1 -0
  29. package/dist/aci/levels.d.ts +279 -0
  30. package/dist/aci/levels.d.ts.map +1 -0
  31. package/dist/aci/levels.js +467 -0
  32. package/dist/aci/levels.js.map +1 -0
  33. package/dist/aci/mapping.d.ts +291 -0
  34. package/dist/aci/mapping.d.ts.map +1 -0
  35. package/dist/aci/mapping.js +427 -0
  36. package/dist/aci/mapping.js.map +1 -0
  37. package/dist/aci/skills.d.ts +314 -0
  38. package/dist/aci/skills.d.ts.map +1 -0
  39. package/dist/aci/skills.js +404 -0
  40. package/dist/aci/skills.js.map +1 -0
  41. package/dist/aci/tiers.d.ts +403 -0
  42. package/dist/aci/tiers.d.ts.map +1 -0
  43. package/dist/aci/tiers.js +659 -0
  44. package/dist/aci/tiers.js.map +1 -0
  45. package/dist/canonical/agent.d.ts +796 -0
  46. package/dist/canonical/agent.d.ts.map +1 -0
  47. package/dist/canonical/agent.js +527 -0
  48. package/dist/canonical/agent.js.map +1 -0
  49. package/dist/canonical/governance.d.ts +905 -0
  50. package/dist/canonical/governance.d.ts.map +1 -0
  51. package/dist/canonical/governance.js +454 -0
  52. package/dist/canonical/governance.js.map +1 -0
  53. package/dist/canonical/index.d.ts +17 -0
  54. package/dist/canonical/index.d.ts.map +1 -0
  55. package/dist/canonical/index.js +21 -0
  56. package/dist/canonical/index.js.map +1 -0
  57. package/dist/canonical/intent.d.ts +727 -0
  58. package/dist/canonical/intent.d.ts.map +1 -0
  59. package/dist/canonical/intent.js +203 -0
  60. package/dist/canonical/intent.js.map +1 -0
  61. package/dist/canonical/risk-level.d.ts +344 -0
  62. package/dist/canonical/risk-level.d.ts.map +1 -0
  63. package/dist/canonical/risk-level.js +472 -0
  64. package/dist/canonical/risk-level.js.map +1 -0
  65. package/dist/canonical/trust-band.d.ts +239 -0
  66. package/dist/canonical/trust-band.d.ts.map +1 -0
  67. package/dist/canonical/trust-band.js +298 -0
  68. package/dist/canonical/trust-band.js.map +1 -0
  69. package/dist/canonical/trust-score.d.ts +301 -0
  70. package/dist/canonical/trust-score.d.ts.map +1 -0
  71. package/dist/canonical/trust-score.js +390 -0
  72. package/dist/canonical/trust-score.js.map +1 -0
  73. package/dist/canonical/trust-signal.d.ts +617 -0
  74. package/dist/canonical/trust-signal.d.ts.map +1 -0
  75. package/dist/canonical/trust-signal.js +355 -0
  76. package/dist/canonical/trust-signal.js.map +1 -0
  77. package/dist/canonical/validation.d.ts +231 -0
  78. package/dist/canonical/validation.d.ts.map +1 -0
  79. package/dist/canonical/validation.js +558 -0
  80. package/dist/canonical/validation.js.map +1 -0
  81. package/dist/common/index.d.ts +7 -0
  82. package/dist/common/index.d.ts.map +1 -0
  83. package/dist/common/index.js +7 -0
  84. package/dist/common/index.js.map +1 -0
  85. package/dist/common/primitives.d.ts +56 -0
  86. package/dist/common/primitives.d.ts.map +1 -0
  87. package/dist/common/primitives.js +70 -0
  88. package/dist/common/primitives.js.map +1 -0
  89. package/dist/index.d.ts +11 -0
  90. package/dist/index.d.ts.map +1 -0
  91. package/dist/index.js +15 -0
  92. package/dist/index.js.map +1 -0
  93. package/dist/v2/canary-probe.d.ts +201 -0
  94. package/dist/v2/canary-probe.d.ts.map +1 -0
  95. package/dist/v2/canary-probe.js +99 -0
  96. package/dist/v2/canary-probe.js.map +1 -0
  97. package/dist/v2/component.d.ts +132 -0
  98. package/dist/v2/component.d.ts.map +1 -0
  99. package/dist/v2/component.js +5 -0
  100. package/dist/v2/component.js.map +1 -0
  101. package/dist/v2/decision.d.ts +310 -0
  102. package/dist/v2/decision.d.ts.map +1 -0
  103. package/dist/v2/decision.js +21 -0
  104. package/dist/v2/decision.js.map +1 -0
  105. package/dist/v2/enums.d.ts +185 -0
  106. package/dist/v2/enums.d.ts.map +1 -0
  107. package/dist/v2/enums.js +203 -0
  108. package/dist/v2/enums.js.map +1 -0
  109. package/dist/v2/evidence.d.ts +368 -0
  110. package/dist/v2/evidence.d.ts.map +1 -0
  111. package/dist/v2/evidence.js +152 -0
  112. package/dist/v2/evidence.js.map +1 -0
  113. package/dist/v2/execution.d.ts +190 -0
  114. package/dist/v2/execution.d.ts.map +1 -0
  115. package/dist/v2/execution.js +5 -0
  116. package/dist/v2/execution.js.map +1 -0
  117. package/dist/v2/index.d.ts +19 -0
  118. package/dist/v2/index.d.ts.map +1 -0
  119. package/dist/v2/index.js +32 -0
  120. package/dist/v2/index.js.map +1 -0
  121. package/dist/v2/intent.d.ts +89 -0
  122. package/dist/v2/intent.d.ts.map +1 -0
  123. package/dist/v2/intent.js +5 -0
  124. package/dist/v2/intent.js.map +1 -0
  125. package/dist/v2/policy-bundle.d.ts +166 -0
  126. package/dist/v2/policy-bundle.d.ts.map +1 -0
  127. package/dist/v2/policy-bundle.js +20 -0
  128. package/dist/v2/policy-bundle.js.map +1 -0
  129. package/dist/v2/pre-action-gate.d.ts +185 -0
  130. package/dist/v2/pre-action-gate.d.ts.map +1 -0
  131. package/dist/v2/pre-action-gate.js +64 -0
  132. package/dist/v2/pre-action-gate.js.map +1 -0
  133. package/dist/v2/proof-event.d.ts +201 -0
  134. package/dist/v2/proof-event.d.ts.map +1 -0
  135. package/dist/v2/proof-event.js +5 -0
  136. package/dist/v2/proof-event.js.map +1 -0
  137. package/dist/v2/retention.d.ts +329 -0
  138. package/dist/v2/retention.d.ts.map +1 -0
  139. package/dist/v2/retention.js +162 -0
  140. package/dist/v2/retention.js.map +1 -0
  141. package/dist/v2/trust-delta.d.ts +119 -0
  142. package/dist/v2/trust-delta.d.ts.map +1 -0
  143. package/dist/v2/trust-delta.js +28 -0
  144. package/dist/v2/trust-delta.js.map +1 -0
  145. package/dist/v2/trust-profile.d.ts +337 -0
  146. package/dist/v2/trust-profile.d.ts.map +1 -0
  147. package/dist/v2/trust-profile.js +96 -0
  148. package/dist/v2/trust-profile.js.map +1 -0
  149. package/dist/validators/decision.d.ts +430 -0
  150. package/dist/validators/decision.d.ts.map +1 -0
  151. package/dist/validators/decision.js +61 -0
  152. package/dist/validators/decision.js.map +1 -0
  153. package/dist/validators/enums.d.ts +24 -0
  154. package/dist/validators/enums.d.ts.map +1 -0
  155. package/dist/validators/enums.js +24 -0
  156. package/dist/validators/enums.js.map +1 -0
  157. package/dist/validators/index.d.ts +30 -0
  158. package/dist/validators/index.d.ts.map +1 -0
  159. package/dist/validators/index.js +42 -0
  160. package/dist/validators/index.js.map +1 -0
  161. package/dist/validators/intent.d.ts +229 -0
  162. package/dist/validators/intent.d.ts.map +1 -0
  163. package/dist/validators/intent.js +47 -0
  164. package/dist/validators/intent.js.map +1 -0
  165. package/dist/validators/proof-event.d.ts +981 -0
  166. package/dist/validators/proof-event.d.ts.map +1 -0
  167. package/dist/validators/proof-event.js +134 -0
  168. package/dist/validators/proof-event.js.map +1 -0
  169. package/dist/validators/trust-profile.d.ts +350 -0
  170. package/dist/validators/trust-profile.d.ts.map +1 -0
  171. package/dist/validators/trust-profile.js +65 -0
  172. package/dist/validators/trust-profile.js.map +1 -0
  173. package/package.json +65 -0
package/dist/aci/identity.d.ts ADDED
@@ -0,0 +1,1100 @@
1
+ /**
2
+ * @fileoverview Agent Identity Types
3
+ *
4
+ * Defines comprehensive agent identity types combining ACI classification,
5
+ * decentralized identifiers (DIDs), capabilities, and attestations into
6
+ * a unified identity model.
7
+ *
8
+ * @module @vorion/contracts/aci/identity
9
+ */
10
+ import { z } from 'zod';
11
+ import { type DomainCode } from './domains.js';
12
+ import { CapabilityLevel } from './levels.js';
13
+ import { CertificationTier, RuntimeTier } from './tiers.js';
14
+ import { type Attestation } from './attestation.js';
15
+ import { type ParsedACI } from './aci-string.js';
16
+ import { type SkillCode } from './skills.js';
17
+ /**
18
+ * Capability vector for queries and comparisons.
19
+ *
20
+ * Represents a set of capability requirements or grants that can be
21
+ * compared against other vectors for authorization decisions.
22
+ */
23
+ /**
24
+ * Capability vector describes what an agent CAN DO.
25
+ *
26
+ * NOTE: Trust/certification tier is NOT included here because:
27
+ * - Trust is computed at runtime from attestations
28
+ * - The ACI is an immutable identifier, not a trust indicator
29
+ * - Same agent can have different trust in different deployments
30
+ *
31
+ * Skills use bitmask encoding for efficient matching (see skills.ts).
32
+ */
33
+ export interface CapabilityVector {
34
+ /** Required/granted domains */
35
+ domains: readonly DomainCode[];
36
+ /** Domain bitmask for efficient queries */
37
+ domainsBitmask?: number;
38
+ /** Minimum level required/granted */
39
+ level: CapabilityLevel;
40
+ /** Optional skill codes for fine-grained matching */
41
+ skills?: readonly SkillCode[];
42
+ /** Skill bitmask for efficient queries */
43
+ skillsBitmask?: number;
44
+ }
45
+ /**
46
+ * Zod schema for CapabilityVector validation.
47
+ */
48
+ export declare const capabilityVectorSchema: z.ZodObject<{
49
+ domains: z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">;
50
+ domainsBitmask: z.ZodOptional<z.ZodNumber>;
51
+ level: z.ZodNativeEnum<typeof CapabilityLevel>;
52
+ skills: z.ZodOptional<z.ZodArray<z.ZodEnum<["TG", "CW", "CR", "TD", "TR", "SM", "DA", "RS", "QA", "CA", "DV", "RV", "WS", "FO", "AI", "PL", "CM", "CS", "AU", "SC", "GV"]>, "many">>;
53
+ skillsBitmask: z.ZodOptional<z.ZodNumber>;
54
+ }, "strip", z.ZodTypeAny, {
55
+ level: CapabilityLevel;
56
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
57
+ skills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
58
+ domainsBitmask?: number | undefined;
59
+ skillsBitmask?: number | undefined;
60
+ }, {
61
+ level: CapabilityLevel;
62
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
63
+ skills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
64
+ domainsBitmask?: number | undefined;
65
+ skillsBitmask?: number | undefined;
66
+ }>;
67
+ /**
68
+ * Metadata about an agent.
69
+ */
70
+ export interface AgentMetadata {
71
+ /** Human-readable description */
72
+ description?: string;
73
+ /** Agent software version */
74
+ version?: string;
75
+ /** Contact information (email, URL) */
76
+ contact?: string;
77
+ /** Documentation URL */
78
+ documentation?: string;
79
+ /** Support URL */
80
+ support?: string;
81
+ /** Terms of service URL */
82
+ termsOfService?: string;
83
+ /** Privacy policy URL */
84
+ privacyPolicy?: string;
85
+ /** Organization name */
86
+ organization?: string;
87
+ /** Organization logo URL */
88
+ logo?: string;
89
+ /** Additional custom properties */
90
+ [key: string]: string | undefined;
91
+ }
92
+ /**
93
+ * Zod schema for AgentMetadata validation.
94
+ */
95
+ export declare const agentMetadataSchema: z.ZodObject<{
96
+ description: z.ZodOptional<z.ZodString>;
97
+ version: z.ZodOptional<z.ZodString>;
98
+ contact: z.ZodOptional<z.ZodString>;
99
+ documentation: z.ZodOptional<z.ZodString>;
100
+ support: z.ZodOptional<z.ZodString>;
101
+ termsOfService: z.ZodOptional<z.ZodString>;
102
+ privacyPolicy: z.ZodOptional<z.ZodString>;
103
+ organization: z.ZodOptional<z.ZodString>;
104
+ logo: z.ZodOptional<z.ZodString>;
105
+ }, "strip", z.ZodOptional<z.ZodString>, z.objectOutputType<{
106
+ description: z.ZodOptional<z.ZodString>;
107
+ version: z.ZodOptional<z.ZodString>;
108
+ contact: z.ZodOptional<z.ZodString>;
109
+ documentation: z.ZodOptional<z.ZodString>;
110
+ support: z.ZodOptional<z.ZodString>;
111
+ termsOfService: z.ZodOptional<z.ZodString>;
112
+ privacyPolicy: z.ZodOptional<z.ZodString>;
113
+ organization: z.ZodOptional<z.ZodString>;
114
+ logo: z.ZodOptional<z.ZodString>;
115
+ }, z.ZodOptional<z.ZodString>, "strip">, z.objectInputType<{
116
+ description: z.ZodOptional<z.ZodString>;
117
+ version: z.ZodOptional<z.ZodString>;
118
+ contact: z.ZodOptional<z.ZodString>;
119
+ documentation: z.ZodOptional<z.ZodString>;
120
+ support: z.ZodOptional<z.ZodString>;
121
+ termsOfService: z.ZodOptional<z.ZodString>;
122
+ privacyPolicy: z.ZodOptional<z.ZodString>;
123
+ organization: z.ZodOptional<z.ZodString>;
124
+ logo: z.ZodOptional<z.ZodString>;
125
+ }, z.ZodOptional<z.ZodString>, "strip">>;
126
+ /**
127
+ * Verification method in a DID document.
128
+ */
129
+ export interface VerificationMethod {
130
+ /** Verification method ID */
131
+ id: string;
132
+ /** Type of verification method */
133
+ type: string;
134
+ /** Controller DID */
135
+ controller: string;
136
+ /** Public key in JWK format */
137
+ publicKeyJwk?: Record<string, unknown>;
138
+ /** Public key in multibase format */
139
+ publicKeyMultibase?: string;
140
+ }
141
+ /**
142
+ * Service endpoint in a DID document.
143
+ */
144
+ export interface ServiceEndpoint {
145
+ /** Service ID */
146
+ id: string;
147
+ /** Service type */
148
+ type: string;
149
+ /** Service endpoint URL */
150
+ serviceEndpoint: string;
151
+ /** Additional service properties */
152
+ [key: string]: unknown;
153
+ }
154
+ /**
155
+ * Zod schema for VerificationMethod.
156
+ */
157
+ export declare const verificationMethodSchema: z.ZodObject<{
158
+ id: z.ZodString;
159
+ type: z.ZodString;
160
+ controller: z.ZodString;
161
+ publicKeyJwk: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
162
+ publicKeyMultibase: z.ZodOptional<z.ZodString>;
163
+ }, "strip", z.ZodTypeAny, {
164
+ type: string;
165
+ id: string;
166
+ controller: string;
167
+ publicKeyJwk?: Record<string, unknown> | undefined;
168
+ publicKeyMultibase?: string | undefined;
169
+ }, {
170
+ type: string;
171
+ id: string;
172
+ controller: string;
173
+ publicKeyJwk?: Record<string, unknown> | undefined;
174
+ publicKeyMultibase?: string | undefined;
175
+ }>;
176
+ /**
177
+ * Zod schema for ServiceEndpoint.
178
+ */
179
+ export declare const serviceEndpointSchema: z.ZodObject<{
180
+ id: z.ZodString;
181
+ type: z.ZodString;
182
+ serviceEndpoint: z.ZodString;
183
+ }, "strip", z.ZodUnknown, z.objectOutputType<{
184
+ id: z.ZodString;
185
+ type: z.ZodString;
186
+ serviceEndpoint: z.ZodString;
187
+ }, z.ZodUnknown, "strip">, z.objectInputType<{
188
+ id: z.ZodString;
189
+ type: z.ZodString;
190
+ serviceEndpoint: z.ZodString;
191
+ }, z.ZodUnknown, "strip">>;
192
+ /**
193
+ * Full agent identity combining ACI, DID, and capabilities.
194
+ *
195
+ * This is the comprehensive identity structure for an agent in the system,
196
+ * containing all information needed for authentication, authorization,
197
+ * and capability verification.
198
+ */
199
+ export interface AgentIdentity {
200
+ /** Full ACI string */
201
+ aci: string;
202
+ /** Parsed ACI components */
203
+ parsedACI?: ParsedACI;
204
+ /** Agent DID (Decentralized Identifier) */
205
+ did: string;
206
+ /** Capability vector */
207
+ capabilities: CapabilityVector;
208
+ /** Active attestations */
209
+ attestations: Attestation[];
210
+ /** Service endpoint URL for agent communication */
211
+ serviceEndpoint?: string;
212
+ /** Additional service endpoints */
213
+ services?: ServiceEndpoint[];
214
+ /** Verification methods */
215
+ verificationMethods?: VerificationMethod[];
216
+ /** Agent metadata */
217
+ metadata?: AgentMetadata;
218
+ /** Runtime tier in current deployment */
219
+ runtimeTier?: RuntimeTier;
220
+ /** Creation timestamp */
221
+ created: Date;
222
+ /** Last update timestamp */
223
+ updated: Date;
224
+ /** Whether the identity is currently active */
225
+ active: boolean;
226
+ }
227
+ /**
228
+ * Zod schema for AgentIdentity validation.
229
+ */
230
+ export declare const agentIdentitySchema: z.ZodObject<{
231
+ aci: z.ZodEffects<z.ZodString, string, string>;
232
+ parsedACI: z.ZodOptional<z.ZodObject<{
233
+ aci: z.ZodString;
234
+ registry: z.ZodString;
235
+ organization: z.ZodString;
236
+ agentClass: z.ZodString;
237
+ domains: z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">;
238
+ domainsBitmask: z.ZodNumber;
239
+ level: z.ZodNativeEnum<typeof CapabilityLevel>;
240
+ version: z.ZodString;
241
+ extensions: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
242
+ }, "strip", z.ZodTypeAny, {
243
+ version: string;
244
+ level: CapabilityLevel;
245
+ aci: string;
246
+ registry: string;
247
+ organization: string;
248
+ agentClass: string;
249
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
250
+ domainsBitmask: number;
251
+ extensions: string[];
252
+ }, {
253
+ version: string;
254
+ level: CapabilityLevel;
255
+ aci: string;
256
+ registry: string;
257
+ organization: string;
258
+ agentClass: string;
259
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
260
+ domainsBitmask: number;
261
+ extensions?: string[] | undefined;
262
+ }>>;
263
+ did: z.ZodString;
264
+ capabilities: z.ZodObject<{
265
+ domains: z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">;
266
+ domainsBitmask: z.ZodOptional<z.ZodNumber>;
267
+ level: z.ZodNativeEnum<typeof CapabilityLevel>;
268
+ skills: z.ZodOptional<z.ZodArray<z.ZodEnum<["TG", "CW", "CR", "TD", "TR", "SM", "DA", "RS", "QA", "CA", "DV", "RV", "WS", "FO", "AI", "PL", "CM", "CS", "AU", "SC", "GV"]>, "many">>;
269
+ skillsBitmask: z.ZodOptional<z.ZodNumber>;
270
+ }, "strip", z.ZodTypeAny, {
271
+ level: CapabilityLevel;
272
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
273
+ skills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
274
+ domainsBitmask?: number | undefined;
275
+ skillsBitmask?: number | undefined;
276
+ }, {
277
+ level: CapabilityLevel;
278
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
279
+ skills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
280
+ domainsBitmask?: number | undefined;
281
+ skillsBitmask?: number | undefined;
282
+ }>;
283
+ attestations: z.ZodArray<z.ZodObject<{
284
+ id: z.ZodString;
285
+ issuer: z.ZodString;
286
+ subject: z.ZodString;
287
+ scope: z.ZodEnum<["full", "domain", "level", "training", "security", "compliance", "identity"]>;
288
+ certificationTier: z.ZodNativeEnum<typeof CertificationTier>;
289
+ domains: z.ZodOptional<z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">>;
290
+ issuedAt: z.ZodDate;
291
+ expiresAt: z.ZodDate;
292
+ status: z.ZodEnum<["active", "expired", "revoked", "suspended", "pending"]>;
293
+ evidence: z.ZodOptional<z.ZodObject<{
294
+ testResults: z.ZodOptional<z.ZodString>;
295
+ auditReport: z.ZodOptional<z.ZodString>;
296
+ trainingVerification: z.ZodOptional<z.ZodString>;
297
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
298
+ }, "strip", z.ZodOptional<z.ZodString>, z.objectOutputType<{
299
+ testResults: z.ZodOptional<z.ZodString>;
300
+ auditReport: z.ZodOptional<z.ZodString>;
301
+ trainingVerification: z.ZodOptional<z.ZodString>;
302
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
303
+ }, z.ZodOptional<z.ZodString>, "strip">, z.objectInputType<{
304
+ testResults: z.ZodOptional<z.ZodString>;
305
+ auditReport: z.ZodOptional<z.ZodString>;
306
+ trainingVerification: z.ZodOptional<z.ZodString>;
307
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
308
+ }, z.ZodOptional<z.ZodString>, "strip">>>;
309
+ proof: z.ZodOptional<z.ZodObject<{
310
+ type: z.ZodString;
311
+ created: z.ZodString;
312
+ verificationMethod: z.ZodString;
313
+ proofPurpose: z.ZodString;
314
+ jws: z.ZodString;
315
+ nonce: z.ZodOptional<z.ZodString>;
316
+ challenge: z.ZodOptional<z.ZodString>;
317
+ domain: z.ZodOptional<z.ZodString>;
318
+ }, "strip", z.ZodTypeAny, {
319
+ type: string;
320
+ created: string;
321
+ verificationMethod: string;
322
+ proofPurpose: string;
323
+ jws: string;
324
+ nonce?: string | undefined;
325
+ domain?: string | undefined;
326
+ challenge?: string | undefined;
327
+ }, {
328
+ type: string;
329
+ created: string;
330
+ verificationMethod: string;
331
+ proofPurpose: string;
332
+ jws: string;
333
+ nonce?: string | undefined;
334
+ domain?: string | undefined;
335
+ challenge?: string | undefined;
336
+ }>>;
337
+ metadata: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
338
+ }, "strip", z.ZodTypeAny, {
339
+ id: string;
340
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
341
+ expiresAt: Date;
342
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
343
+ issuer: string;
344
+ subject: string;
345
+ certificationTier: CertificationTier;
346
+ issuedAt: Date;
347
+ metadata?: Record<string, unknown> | undefined;
348
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
349
+ evidence?: z.objectOutputType<{
350
+ testResults: z.ZodOptional<z.ZodString>;
351
+ auditReport: z.ZodOptional<z.ZodString>;
352
+ trainingVerification: z.ZodOptional<z.ZodString>;
353
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
354
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
355
+ proof?: {
356
+ type: string;
357
+ created: string;
358
+ verificationMethod: string;
359
+ proofPurpose: string;
360
+ jws: string;
361
+ nonce?: string | undefined;
362
+ domain?: string | undefined;
363
+ challenge?: string | undefined;
364
+ } | undefined;
365
+ }, {
366
+ id: string;
367
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
368
+ expiresAt: Date;
369
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
370
+ issuer: string;
371
+ subject: string;
372
+ certificationTier: CertificationTier;
373
+ issuedAt: Date;
374
+ metadata?: Record<string, unknown> | undefined;
375
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
376
+ evidence?: z.objectInputType<{
377
+ testResults: z.ZodOptional<z.ZodString>;
378
+ auditReport: z.ZodOptional<z.ZodString>;
379
+ trainingVerification: z.ZodOptional<z.ZodString>;
380
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
381
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
382
+ proof?: {
383
+ type: string;
384
+ created: string;
385
+ verificationMethod: string;
386
+ proofPurpose: string;
387
+ jws: string;
388
+ nonce?: string | undefined;
389
+ domain?: string | undefined;
390
+ challenge?: string | undefined;
391
+ } | undefined;
392
+ }>, "many">;
393
+ serviceEndpoint: z.ZodOptional<z.ZodString>;
394
+ services: z.ZodOptional<z.ZodArray<z.ZodObject<{
395
+ id: z.ZodString;
396
+ type: z.ZodString;
397
+ serviceEndpoint: z.ZodString;
398
+ }, "strip", z.ZodUnknown, z.objectOutputType<{
399
+ id: z.ZodString;
400
+ type: z.ZodString;
401
+ serviceEndpoint: z.ZodString;
402
+ }, z.ZodUnknown, "strip">, z.objectInputType<{
403
+ id: z.ZodString;
404
+ type: z.ZodString;
405
+ serviceEndpoint: z.ZodString;
406
+ }, z.ZodUnknown, "strip">>, "many">>;
407
+ verificationMethods: z.ZodOptional<z.ZodArray<z.ZodObject<{
408
+ id: z.ZodString;
409
+ type: z.ZodString;
410
+ controller: z.ZodString;
411
+ publicKeyJwk: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
412
+ publicKeyMultibase: z.ZodOptional<z.ZodString>;
413
+ }, "strip", z.ZodTypeAny, {
414
+ type: string;
415
+ id: string;
416
+ controller: string;
417
+ publicKeyJwk?: Record<string, unknown> | undefined;
418
+ publicKeyMultibase?: string | undefined;
419
+ }, {
420
+ type: string;
421
+ id: string;
422
+ controller: string;
423
+ publicKeyJwk?: Record<string, unknown> | undefined;
424
+ publicKeyMultibase?: string | undefined;
425
+ }>, "many">>;
426
+ metadata: z.ZodOptional<z.ZodObject<{
427
+ description: z.ZodOptional<z.ZodString>;
428
+ version: z.ZodOptional<z.ZodString>;
429
+ contact: z.ZodOptional<z.ZodString>;
430
+ documentation: z.ZodOptional<z.ZodString>;
431
+ support: z.ZodOptional<z.ZodString>;
432
+ termsOfService: z.ZodOptional<z.ZodString>;
433
+ privacyPolicy: z.ZodOptional<z.ZodString>;
434
+ organization: z.ZodOptional<z.ZodString>;
435
+ logo: z.ZodOptional<z.ZodString>;
436
+ }, "strip", z.ZodOptional<z.ZodString>, z.objectOutputType<{
437
+ description: z.ZodOptional<z.ZodString>;
438
+ version: z.ZodOptional<z.ZodString>;
439
+ contact: z.ZodOptional<z.ZodString>;
440
+ documentation: z.ZodOptional<z.ZodString>;
441
+ support: z.ZodOptional<z.ZodString>;
442
+ termsOfService: z.ZodOptional<z.ZodString>;
443
+ privacyPolicy: z.ZodOptional<z.ZodString>;
444
+ organization: z.ZodOptional<z.ZodString>;
445
+ logo: z.ZodOptional<z.ZodString>;
446
+ }, z.ZodOptional<z.ZodString>, "strip">, z.objectInputType<{
447
+ description: z.ZodOptional<z.ZodString>;
448
+ version: z.ZodOptional<z.ZodString>;
449
+ contact: z.ZodOptional<z.ZodString>;
450
+ documentation: z.ZodOptional<z.ZodString>;
451
+ support: z.ZodOptional<z.ZodString>;
452
+ termsOfService: z.ZodOptional<z.ZodString>;
453
+ privacyPolicy: z.ZodOptional<z.ZodString>;
454
+ organization: z.ZodOptional<z.ZodString>;
455
+ logo: z.ZodOptional<z.ZodString>;
456
+ }, z.ZodOptional<z.ZodString>, "strip">>>;
457
+ runtimeTier: z.ZodOptional<z.ZodNativeEnum<typeof RuntimeTier>>;
458
+ created: z.ZodDate;
459
+ updated: z.ZodDate;
460
+ active: z.ZodBoolean;
461
+ }, "strip", z.ZodTypeAny, {
462
+ active: boolean;
463
+ capabilities: {
464
+ level: CapabilityLevel;
465
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
466
+ skills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
467
+ domainsBitmask?: number | undefined;
468
+ skillsBitmask?: number | undefined;
469
+ };
470
+ aci: string;
471
+ created: Date;
472
+ did: string;
473
+ attestations: {
474
+ id: string;
475
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
476
+ expiresAt: Date;
477
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
478
+ issuer: string;
479
+ subject: string;
480
+ certificationTier: CertificationTier;
481
+ issuedAt: Date;
482
+ metadata?: Record<string, unknown> | undefined;
483
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
484
+ evidence?: z.objectOutputType<{
485
+ testResults: z.ZodOptional<z.ZodString>;
486
+ auditReport: z.ZodOptional<z.ZodString>;
487
+ trainingVerification: z.ZodOptional<z.ZodString>;
488
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
489
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
490
+ proof?: {
491
+ type: string;
492
+ created: string;
493
+ verificationMethod: string;
494
+ proofPurpose: string;
495
+ jws: string;
496
+ nonce?: string | undefined;
497
+ domain?: string | undefined;
498
+ challenge?: string | undefined;
499
+ } | undefined;
500
+ }[];
501
+ updated: Date;
502
+ metadata?: z.objectOutputType<{
503
+ description: z.ZodOptional<z.ZodString>;
504
+ version: z.ZodOptional<z.ZodString>;
505
+ contact: z.ZodOptional<z.ZodString>;
506
+ documentation: z.ZodOptional<z.ZodString>;
507
+ support: z.ZodOptional<z.ZodString>;
508
+ termsOfService: z.ZodOptional<z.ZodString>;
509
+ privacyPolicy: z.ZodOptional<z.ZodString>;
510
+ organization: z.ZodOptional<z.ZodString>;
511
+ logo: z.ZodOptional<z.ZodString>;
512
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
513
+ runtimeTier?: RuntimeTier | undefined;
514
+ serviceEndpoint?: string | undefined;
515
+ parsedACI?: {
516
+ version: string;
517
+ level: CapabilityLevel;
518
+ aci: string;
519
+ registry: string;
520
+ organization: string;
521
+ agentClass: string;
522
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
523
+ domainsBitmask: number;
524
+ extensions: string[];
525
+ } | undefined;
526
+ services?: z.objectOutputType<{
527
+ id: z.ZodString;
528
+ type: z.ZodString;
529
+ serviceEndpoint: z.ZodString;
530
+ }, z.ZodUnknown, "strip">[] | undefined;
531
+ verificationMethods?: {
532
+ type: string;
533
+ id: string;
534
+ controller: string;
535
+ publicKeyJwk?: Record<string, unknown> | undefined;
536
+ publicKeyMultibase?: string | undefined;
537
+ }[] | undefined;
538
+ }, {
539
+ active: boolean;
540
+ capabilities: {
541
+ level: CapabilityLevel;
542
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
543
+ skills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
544
+ domainsBitmask?: number | undefined;
545
+ skillsBitmask?: number | undefined;
546
+ };
547
+ aci: string;
548
+ created: Date;
549
+ did: string;
550
+ attestations: {
551
+ id: string;
552
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
553
+ expiresAt: Date;
554
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
555
+ issuer: string;
556
+ subject: string;
557
+ certificationTier: CertificationTier;
558
+ issuedAt: Date;
559
+ metadata?: Record<string, unknown> | undefined;
560
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
561
+ evidence?: z.objectInputType<{
562
+ testResults: z.ZodOptional<z.ZodString>;
563
+ auditReport: z.ZodOptional<z.ZodString>;
564
+ trainingVerification: z.ZodOptional<z.ZodString>;
565
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
566
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
567
+ proof?: {
568
+ type: string;
569
+ created: string;
570
+ verificationMethod: string;
571
+ proofPurpose: string;
572
+ jws: string;
573
+ nonce?: string | undefined;
574
+ domain?: string | undefined;
575
+ challenge?: string | undefined;
576
+ } | undefined;
577
+ }[];
578
+ updated: Date;
579
+ metadata?: z.objectInputType<{
580
+ description: z.ZodOptional<z.ZodString>;
581
+ version: z.ZodOptional<z.ZodString>;
582
+ contact: z.ZodOptional<z.ZodString>;
583
+ documentation: z.ZodOptional<z.ZodString>;
584
+ support: z.ZodOptional<z.ZodString>;
585
+ termsOfService: z.ZodOptional<z.ZodString>;
586
+ privacyPolicy: z.ZodOptional<z.ZodString>;
587
+ organization: z.ZodOptional<z.ZodString>;
588
+ logo: z.ZodOptional<z.ZodString>;
589
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
590
+ runtimeTier?: RuntimeTier | undefined;
591
+ serviceEndpoint?: string | undefined;
592
+ parsedACI?: {
593
+ version: string;
594
+ level: CapabilityLevel;
595
+ aci: string;
596
+ registry: string;
597
+ organization: string;
598
+ agentClass: string;
599
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
600
+ domainsBitmask: number;
601
+ extensions?: string[] | undefined;
602
+ } | undefined;
603
+ services?: z.objectInputType<{
604
+ id: z.ZodString;
605
+ type: z.ZodString;
606
+ serviceEndpoint: z.ZodString;
607
+ }, z.ZodUnknown, "strip">[] | undefined;
608
+ verificationMethods?: {
609
+ type: string;
610
+ id: string;
611
+ controller: string;
612
+ publicKeyJwk?: Record<string, unknown> | undefined;
613
+ publicKeyMultibase?: string | undefined;
614
+ }[] | undefined;
615
+ }>;
616
+ /**
617
+ * Lightweight summary of an agent identity.
618
+ *
619
+ * Used for listings, search results, and contexts where the full
620
+ * identity is not needed.
621
+ */
622
+ /**
623
+ * Summarized agent identity for quick lookups.
624
+ *
625
+ * NOTE: certificationTier is OPTIONAL because it comes from attestations,
626
+ * not the ACI. Use getHighestAttestationTier() to compute it.
627
+ */
628
+ export interface AgentIdentitySummary {
629
+ /** Full ACI string */
630
+ aci: string;
631
+ /** Agent DID */
632
+ did: string;
633
+ /** Capability domains */
634
+ domains: readonly DomainCode[];
635
+ /** Capability level */
636
+ level: CapabilityLevel;
637
+ /**
638
+ * Certification tier from attestations (optional).
639
+ * Compute from valid attestations; defaults to T0 if none.
640
+ */
641
+ certificationTier?: CertificationTier;
642
+ /** Runtime tier (if available) */
643
+ runtimeTier?: RuntimeTier;
644
+ /** Agent name/description */
645
+ name?: string;
646
+ /** Whether the agent is active */
647
+ active: boolean;
648
+ }
649
+ /**
650
+ * Zod schema for AgentIdentitySummary.
651
+ */
652
+ export declare const agentIdentitySummarySchema: z.ZodObject<{
653
+ aci: z.ZodEffects<z.ZodString, string, string>;
654
+ did: z.ZodString;
655
+ domains: z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">;
656
+ level: z.ZodNativeEnum<typeof CapabilityLevel>;
657
+ certificationTier: z.ZodNativeEnum<typeof CertificationTier>;
658
+ runtimeTier: z.ZodOptional<z.ZodNativeEnum<typeof RuntimeTier>>;
659
+ name: z.ZodOptional<z.ZodString>;
660
+ active: z.ZodBoolean;
661
+ }, "strip", z.ZodTypeAny, {
662
+ active: boolean;
663
+ level: CapabilityLevel;
664
+ aci: string;
665
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
666
+ certificationTier: CertificationTier;
667
+ did: string;
668
+ name?: string | undefined;
669
+ runtimeTier?: RuntimeTier | undefined;
670
+ }, {
671
+ active: boolean;
672
+ level: CapabilityLevel;
673
+ aci: string;
674
+ domains: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[];
675
+ certificationTier: CertificationTier;
676
+ did: string;
677
+ name?: string | undefined;
678
+ runtimeTier?: RuntimeTier | undefined;
679
+ }>;
680
+ /**
681
+ * Options for registering a new agent identity.
682
+ */
683
+ export interface AgentRegistrationOptions {
684
+ /** ACI string or components */
685
+ aci: string;
686
+ /** Agent DID */
687
+ did: string;
688
+ /** Service endpoint URL */
689
+ serviceEndpoint?: string;
690
+ /** Additional services */
691
+ services?: ServiceEndpoint[];
692
+ /** Verification methods */
693
+ verificationMethods?: VerificationMethod[];
694
+ /** Agent metadata */
695
+ metadata?: AgentMetadata;
696
+ /** Initial attestations */
697
+ attestations?: Attestation[];
698
+ }
699
+ /**
700
+ * Zod schema for AgentRegistrationOptions.
701
+ */
702
+ export declare const agentRegistrationOptionsSchema: z.ZodObject<{
703
+ aci: z.ZodEffects<z.ZodString, string, string>;
704
+ did: z.ZodString;
705
+ serviceEndpoint: z.ZodOptional<z.ZodString>;
706
+ services: z.ZodOptional<z.ZodArray<z.ZodObject<{
707
+ id: z.ZodString;
708
+ type: z.ZodString;
709
+ serviceEndpoint: z.ZodString;
710
+ }, "strip", z.ZodUnknown, z.objectOutputType<{
711
+ id: z.ZodString;
712
+ type: z.ZodString;
713
+ serviceEndpoint: z.ZodString;
714
+ }, z.ZodUnknown, "strip">, z.objectInputType<{
715
+ id: z.ZodString;
716
+ type: z.ZodString;
717
+ serviceEndpoint: z.ZodString;
718
+ }, z.ZodUnknown, "strip">>, "many">>;
719
+ verificationMethods: z.ZodOptional<z.ZodArray<z.ZodObject<{
720
+ id: z.ZodString;
721
+ type: z.ZodString;
722
+ controller: z.ZodString;
723
+ publicKeyJwk: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
724
+ publicKeyMultibase: z.ZodOptional<z.ZodString>;
725
+ }, "strip", z.ZodTypeAny, {
726
+ type: string;
727
+ id: string;
728
+ controller: string;
729
+ publicKeyJwk?: Record<string, unknown> | undefined;
730
+ publicKeyMultibase?: string | undefined;
731
+ }, {
732
+ type: string;
733
+ id: string;
734
+ controller: string;
735
+ publicKeyJwk?: Record<string, unknown> | undefined;
736
+ publicKeyMultibase?: string | undefined;
737
+ }>, "many">>;
738
+ metadata: z.ZodOptional<z.ZodObject<{
739
+ description: z.ZodOptional<z.ZodString>;
740
+ version: z.ZodOptional<z.ZodString>;
741
+ contact: z.ZodOptional<z.ZodString>;
742
+ documentation: z.ZodOptional<z.ZodString>;
743
+ support: z.ZodOptional<z.ZodString>;
744
+ termsOfService: z.ZodOptional<z.ZodString>;
745
+ privacyPolicy: z.ZodOptional<z.ZodString>;
746
+ organization: z.ZodOptional<z.ZodString>;
747
+ logo: z.ZodOptional<z.ZodString>;
748
+ }, "strip", z.ZodOptional<z.ZodString>, z.objectOutputType<{
749
+ description: z.ZodOptional<z.ZodString>;
750
+ version: z.ZodOptional<z.ZodString>;
751
+ contact: z.ZodOptional<z.ZodString>;
752
+ documentation: z.ZodOptional<z.ZodString>;
753
+ support: z.ZodOptional<z.ZodString>;
754
+ termsOfService: z.ZodOptional<z.ZodString>;
755
+ privacyPolicy: z.ZodOptional<z.ZodString>;
756
+ organization: z.ZodOptional<z.ZodString>;
757
+ logo: z.ZodOptional<z.ZodString>;
758
+ }, z.ZodOptional<z.ZodString>, "strip">, z.objectInputType<{
759
+ description: z.ZodOptional<z.ZodString>;
760
+ version: z.ZodOptional<z.ZodString>;
761
+ contact: z.ZodOptional<z.ZodString>;
762
+ documentation: z.ZodOptional<z.ZodString>;
763
+ support: z.ZodOptional<z.ZodString>;
764
+ termsOfService: z.ZodOptional<z.ZodString>;
765
+ privacyPolicy: z.ZodOptional<z.ZodString>;
766
+ organization: z.ZodOptional<z.ZodString>;
767
+ logo: z.ZodOptional<z.ZodString>;
768
+ }, z.ZodOptional<z.ZodString>, "strip">>>;
769
+ attestations: z.ZodOptional<z.ZodArray<z.ZodObject<{
770
+ id: z.ZodString;
771
+ issuer: z.ZodString;
772
+ subject: z.ZodString;
773
+ scope: z.ZodEnum<["full", "domain", "level", "training", "security", "compliance", "identity"]>;
774
+ certificationTier: z.ZodNativeEnum<typeof CertificationTier>;
775
+ domains: z.ZodOptional<z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">>;
776
+ issuedAt: z.ZodDate;
777
+ expiresAt: z.ZodDate;
778
+ status: z.ZodEnum<["active", "expired", "revoked", "suspended", "pending"]>;
779
+ evidence: z.ZodOptional<z.ZodObject<{
780
+ testResults: z.ZodOptional<z.ZodString>;
781
+ auditReport: z.ZodOptional<z.ZodString>;
782
+ trainingVerification: z.ZodOptional<z.ZodString>;
783
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
784
+ }, "strip", z.ZodOptional<z.ZodString>, z.objectOutputType<{
785
+ testResults: z.ZodOptional<z.ZodString>;
786
+ auditReport: z.ZodOptional<z.ZodString>;
787
+ trainingVerification: z.ZodOptional<z.ZodString>;
788
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
789
+ }, z.ZodOptional<z.ZodString>, "strip">, z.objectInputType<{
790
+ testResults: z.ZodOptional<z.ZodString>;
791
+ auditReport: z.ZodOptional<z.ZodString>;
792
+ trainingVerification: z.ZodOptional<z.ZodString>;
793
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
794
+ }, z.ZodOptional<z.ZodString>, "strip">>>;
795
+ proof: z.ZodOptional<z.ZodObject<{
796
+ type: z.ZodString;
797
+ created: z.ZodString;
798
+ verificationMethod: z.ZodString;
799
+ proofPurpose: z.ZodString;
800
+ jws: z.ZodString;
801
+ nonce: z.ZodOptional<z.ZodString>;
802
+ challenge: z.ZodOptional<z.ZodString>;
803
+ domain: z.ZodOptional<z.ZodString>;
804
+ }, "strip", z.ZodTypeAny, {
805
+ type: string;
806
+ created: string;
807
+ verificationMethod: string;
808
+ proofPurpose: string;
809
+ jws: string;
810
+ nonce?: string | undefined;
811
+ domain?: string | undefined;
812
+ challenge?: string | undefined;
813
+ }, {
814
+ type: string;
815
+ created: string;
816
+ verificationMethod: string;
817
+ proofPurpose: string;
818
+ jws: string;
819
+ nonce?: string | undefined;
820
+ domain?: string | undefined;
821
+ challenge?: string | undefined;
822
+ }>>;
823
+ metadata: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
824
+ }, "strip", z.ZodTypeAny, {
825
+ id: string;
826
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
827
+ expiresAt: Date;
828
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
829
+ issuer: string;
830
+ subject: string;
831
+ certificationTier: CertificationTier;
832
+ issuedAt: Date;
833
+ metadata?: Record<string, unknown> | undefined;
834
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
835
+ evidence?: z.objectOutputType<{
836
+ testResults: z.ZodOptional<z.ZodString>;
837
+ auditReport: z.ZodOptional<z.ZodString>;
838
+ trainingVerification: z.ZodOptional<z.ZodString>;
839
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
840
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
841
+ proof?: {
842
+ type: string;
843
+ created: string;
844
+ verificationMethod: string;
845
+ proofPurpose: string;
846
+ jws: string;
847
+ nonce?: string | undefined;
848
+ domain?: string | undefined;
849
+ challenge?: string | undefined;
850
+ } | undefined;
851
+ }, {
852
+ id: string;
853
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
854
+ expiresAt: Date;
855
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
856
+ issuer: string;
857
+ subject: string;
858
+ certificationTier: CertificationTier;
859
+ issuedAt: Date;
860
+ metadata?: Record<string, unknown> | undefined;
861
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
862
+ evidence?: z.objectInputType<{
863
+ testResults: z.ZodOptional<z.ZodString>;
864
+ auditReport: z.ZodOptional<z.ZodString>;
865
+ trainingVerification: z.ZodOptional<z.ZodString>;
866
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
867
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
868
+ proof?: {
869
+ type: string;
870
+ created: string;
871
+ verificationMethod: string;
872
+ proofPurpose: string;
873
+ jws: string;
874
+ nonce?: string | undefined;
875
+ domain?: string | undefined;
876
+ challenge?: string | undefined;
877
+ } | undefined;
878
+ }>, "many">>;
879
+ }, "strip", z.ZodTypeAny, {
880
+ aci: string;
881
+ did: string;
882
+ metadata?: z.objectOutputType<{
883
+ description: z.ZodOptional<z.ZodString>;
884
+ version: z.ZodOptional<z.ZodString>;
885
+ contact: z.ZodOptional<z.ZodString>;
886
+ documentation: z.ZodOptional<z.ZodString>;
887
+ support: z.ZodOptional<z.ZodString>;
888
+ termsOfService: z.ZodOptional<z.ZodString>;
889
+ privacyPolicy: z.ZodOptional<z.ZodString>;
890
+ organization: z.ZodOptional<z.ZodString>;
891
+ logo: z.ZodOptional<z.ZodString>;
892
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
893
+ serviceEndpoint?: string | undefined;
894
+ attestations?: {
895
+ id: string;
896
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
897
+ expiresAt: Date;
898
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
899
+ issuer: string;
900
+ subject: string;
901
+ certificationTier: CertificationTier;
902
+ issuedAt: Date;
903
+ metadata?: Record<string, unknown> | undefined;
904
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
905
+ evidence?: z.objectOutputType<{
906
+ testResults: z.ZodOptional<z.ZodString>;
907
+ auditReport: z.ZodOptional<z.ZodString>;
908
+ trainingVerification: z.ZodOptional<z.ZodString>;
909
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
910
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
911
+ proof?: {
912
+ type: string;
913
+ created: string;
914
+ verificationMethod: string;
915
+ proofPurpose: string;
916
+ jws: string;
917
+ nonce?: string | undefined;
918
+ domain?: string | undefined;
919
+ challenge?: string | undefined;
920
+ } | undefined;
921
+ }[] | undefined;
922
+ services?: z.objectOutputType<{
923
+ id: z.ZodString;
924
+ type: z.ZodString;
925
+ serviceEndpoint: z.ZodString;
926
+ }, z.ZodUnknown, "strip">[] | undefined;
927
+ verificationMethods?: {
928
+ type: string;
929
+ id: string;
930
+ controller: string;
931
+ publicKeyJwk?: Record<string, unknown> | undefined;
932
+ publicKeyMultibase?: string | undefined;
933
+ }[] | undefined;
934
+ }, {
935
+ aci: string;
936
+ did: string;
937
+ metadata?: z.objectInputType<{
938
+ description: z.ZodOptional<z.ZodString>;
939
+ version: z.ZodOptional<z.ZodString>;
940
+ contact: z.ZodOptional<z.ZodString>;
941
+ documentation: z.ZodOptional<z.ZodString>;
942
+ support: z.ZodOptional<z.ZodString>;
943
+ termsOfService: z.ZodOptional<z.ZodString>;
944
+ privacyPolicy: z.ZodOptional<z.ZodString>;
945
+ organization: z.ZodOptional<z.ZodString>;
946
+ logo: z.ZodOptional<z.ZodString>;
947
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
948
+ serviceEndpoint?: string | undefined;
949
+ attestations?: {
950
+ id: string;
951
+ status: "active" | "suspended" | "pending" | "expired" | "revoked";
952
+ expiresAt: Date;
953
+ scope: "training" | "domain" | "security" | "compliance" | "level" | "identity" | "full";
954
+ issuer: string;
955
+ subject: string;
956
+ certificationTier: CertificationTier;
957
+ issuedAt: Date;
958
+ metadata?: Record<string, unknown> | undefined;
959
+ domains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
960
+ evidence?: z.objectInputType<{
961
+ testResults: z.ZodOptional<z.ZodString>;
962
+ auditReport: z.ZodOptional<z.ZodString>;
963
+ trainingVerification: z.ZodOptional<z.ZodString>;
964
+ complianceDocumentation: z.ZodOptional<z.ZodString>;
965
+ }, z.ZodOptional<z.ZodString>, "strip"> | undefined;
966
+ proof?: {
967
+ type: string;
968
+ created: string;
969
+ verificationMethod: string;
970
+ proofPurpose: string;
971
+ jws: string;
972
+ nonce?: string | undefined;
973
+ domain?: string | undefined;
974
+ challenge?: string | undefined;
975
+ } | undefined;
976
+ }[] | undefined;
977
+ services?: z.objectInputType<{
978
+ id: z.ZodString;
979
+ type: z.ZodString;
980
+ serviceEndpoint: z.ZodString;
981
+ }, z.ZodUnknown, "strip">[] | undefined;
982
+ verificationMethods?: {
983
+ type: string;
984
+ id: string;
985
+ controller: string;
986
+ publicKeyJwk?: Record<string, unknown> | undefined;
987
+ publicKeyMultibase?: string | undefined;
988
+ }[] | undefined;
989
+ }>;
990
+ /**
991
+ * Criteria for matching agent identities.
992
+ */
993
+ export interface AgentMatchCriteria {
994
+ /** Required domains (all must be present) */
995
+ requiredDomains?: readonly DomainCode[];
996
+ /** Minimum capability level */
997
+ minLevel?: CapabilityLevel;
998
+ /** Minimum certification tier */
999
+ minCertificationTier?: CertificationTier;
1000
+ /** Minimum runtime tier */
1001
+ minRuntimeTier?: RuntimeTier;
1002
+ /** Required skills (all must be present) */
1003
+ requiredSkills?: readonly SkillCode[];
1004
+ /** Must be active */
1005
+ mustBeActive?: boolean;
1006
+ /** Must have valid attestations */
1007
+ mustHaveValidAttestations?: boolean;
1008
+ /** Organization filter */
1009
+ organization?: string;
1010
+ /** Registry filter */
1011
+ registry?: string;
1012
+ }
1013
+ /**
1014
+ * Zod schema for AgentMatchCriteria.
1015
+ */
1016
+ export declare const agentMatchCriteriaSchema: z.ZodObject<{
1017
+ requiredDomains: z.ZodOptional<z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">>;
1018
+ minLevel: z.ZodOptional<z.ZodNativeEnum<typeof CapabilityLevel>>;
1019
+ minCertificationTier: z.ZodOptional<z.ZodNativeEnum<typeof CertificationTier>>;
1020
+ minRuntimeTier: z.ZodOptional<z.ZodNativeEnum<typeof RuntimeTier>>;
1021
+ requiredSkills: z.ZodOptional<z.ZodArray<z.ZodEnum<["TG", "CW", "CR", "TD", "TR", "SM", "DA", "RS", "QA", "CA", "DV", "RV", "WS", "FO", "AI", "PL", "CM", "CS", "AU", "SC", "GV"]>, "many">>;
1022
+ mustBeActive: z.ZodOptional<z.ZodBoolean>;
1023
+ mustHaveValidAttestations: z.ZodOptional<z.ZodBoolean>;
1024
+ organization: z.ZodOptional<z.ZodString>;
1025
+ registry: z.ZodOptional<z.ZodString>;
1026
+ }, "strip", z.ZodTypeAny, {
1027
+ minCertificationTier?: CertificationTier | undefined;
1028
+ registry?: string | undefined;
1029
+ organization?: string | undefined;
1030
+ requiredDomains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
1031
+ minLevel?: CapabilityLevel | undefined;
1032
+ minRuntimeTier?: RuntimeTier | undefined;
1033
+ requiredSkills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
1034
+ mustBeActive?: boolean | undefined;
1035
+ mustHaveValidAttestations?: boolean | undefined;
1036
+ }, {
1037
+ minCertificationTier?: CertificationTier | undefined;
1038
+ registry?: string | undefined;
1039
+ organization?: string | undefined;
1040
+ requiredDomains?: ("A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S")[] | undefined;
1041
+ minLevel?: CapabilityLevel | undefined;
1042
+ minRuntimeTier?: RuntimeTier | undefined;
1043
+ requiredSkills?: ("TG" | "CW" | "CR" | "TD" | "TR" | "SM" | "DA" | "RS" | "QA" | "CA" | "DV" | "RV" | "WS" | "FO" | "AI" | "PL" | "CM" | "CS" | "AU" | "SC" | "GV")[] | undefined;
1044
+ mustBeActive?: boolean | undefined;
1045
+ mustHaveValidAttestations?: boolean | undefined;
1046
+ }>;
1047
+ /**
1048
+ * Creates an agent identity from registration options.
1049
+ *
1050
+ * @param options - Registration options
1051
+ * @param parsedACI - Pre-parsed ACI (optional)
1052
+ * @returns New agent identity
1053
+ */
1054
+ export declare function createAgentIdentity(options: AgentRegistrationOptions, parsedACI?: ParsedACI): AgentIdentity;
1055
+ /**
1056
+ * Creates a summary from a full agent identity.
1057
+ *
1058
+ * @param identity - Full agent identity
1059
+ * @returns Agent identity summary
1060
+ */
1061
+ /**
1062
+ * Converts an AgentIdentity to a summary view.
1063
+ *
1064
+ * @param identity - Full agent identity
1065
+ * @returns Summarized view
1066
+ */
1067
+ export declare function toAgentIdentitySummary(identity: AgentIdentity): AgentIdentitySummary;
1068
+ /**
1069
+ * Checks if an agent identity matches given criteria.
1070
+ *
1071
+ * @param identity - Agent identity to check
1072
+ * @param criteria - Matching criteria
1073
+ * @returns True if the identity matches all criteria
1074
+ */
1075
+ export declare function matchesAgentCriteria(identity: AgentIdentity, criteria: AgentMatchCriteria): boolean;
1076
+ /**
1077
+ * Compares two capability vectors.
1078
+ *
1079
+ * NOTE: Certification tier is NOT compared here because it's not part
1080
+ * of CapabilityVector. Trust comes from attestations at runtime.
1081
+ * Use separate attestation comparison if needed.
1082
+ *
1083
+ * @param a - First capability vector
1084
+ * @param b - Second capability vector
1085
+ * @returns True if a satisfies or exceeds b (domains + level only)
1086
+ */
1087
+ export declare function capabilityVectorSatisfies(a: CapabilityVector, b: CapabilityVector): boolean;
1088
+ /**
1089
+ * Type guard to check if a value is a valid CapabilityVector.
1090
+ */
1091
+ export declare function isCapabilityVector(value: unknown): value is CapabilityVector;
1092
+ /**
1093
+ * Type guard to check if a value is a valid AgentIdentity.
1094
+ */
1095
+ export declare function isAgentIdentity(value: unknown): value is AgentIdentity;
1096
+ /**
1097
+ * Type guard to check if a value is a valid AgentIdentitySummary.
1098
+ */
1099
+ export declare function isAgentIdentitySummary(value: unknown): value is AgentIdentitySummary;
1100
+ //# sourceMappingURL=identity.d.ts.map