agent-passport-system-mcp 2.18.0 → 2.19.1

package/README.md

@@ -10,7 +10,7 @@ MCP server for the [Agent Passport System](https://github.com/aeoess/agent-passp
 
 > **🤖 For AI agents:** If you are an agent reading this, visit [aeoess.com/llms.txt](https://aeoess.com/llms.txt) for machine-readable documentation or [llms-full.txt](https://aeoess.com/llms-full.txt) for the complete technical reference. MCP discovery: [.well-known/mcp.json](https://aeoess.com/.well-known/mcp.json). This README is designed for humans.
 
-**122 tools** across 62 core modules + 32 v2 constitutional governance modules (separation of powers, circuit breakers, approval fatigue detection, and more). Independently cited by [PDR in Production (Nanook & Gerundium, UBC)](https://doi.org/10.5281/zenodo.19323172). Works with any MCP client: Claude Desktop, Cursor, Windsurf, and more.
+**125 tools** across 63 core modules + 32 v2 constitutional governance modules (separation of powers, circuit breakers, approval fatigue detection, and more). Independently cited by [PDR in Production (Nanook & Gerundium, UBC)](https://doi.org/10.5281/zenodo.19323172). Works with any MCP client: Claude Desktop, Cursor, Windsurf, and more.
 
 ## Quick Start
 
@@ -29,7 +29,7 @@ npm install -g agent-passport-system-mcp
 npx agent-passport-system-mcp setup
 ```
 
-Auto-configures Claude Desktop and Cursor. Restart your AI client. 122 tools ready.
+Auto-configures Claude Desktop and Cursor. Restart your AI client. 125 tools ready.
 
 <details>
 <summary>Manual config (if setup doesn't detect your client)</summary>
@@ -208,7 +208,7 @@ Layer 1 — Agent Passport Protocol (Ed25519 identity)
 
 ## Links
 
-- npm SDK: [agent-passport-system](https://www.npmjs.com/package/agent-passport-system) (v1.29.0, 1852 tests)
+- npm SDK: [agent-passport-system](https://www.npmjs.com/package/agent-passport-system) (v1.29.2, 1929 tests)
 - Python SDK: [agent-passport-system](https://pypi.org/project/agent-passport-system/) (v0.5.1)
 - Paper (Protocol): [doi.org/10.5281/zenodo.18749779](https://doi.org/10.5281/zenodo.18749779)
 - Paper (Faceted Narrowing): [doi.org/10.5281/zenodo.19260073](https://doi.org/10.5281/zenodo.19260073)

package/build/index.js

@@ -51,6 +51,8 @@ defineV2EmergencyPathway, activateV2Emergency,
 requestV2Migration, 
 // v2: Attestation
 createV2Attestation, assessV2AttestationQuality, } from "agent-passport-system";
+// Agent Attestation Architecture (Phase 1 — Consilium Build)
+import { createIssuanceContext, bindAttestation, createEmptyEvidenceRecord, PASSPORT_GRADE_LABELS, } from "agent-passport-system";
 // Data Governance (Modules 36A, 38, 39 + Enforcement Gate + Training Attribution)
 import { registerSelfAttestedSource, createContributionLedger, queryContributions, getSourceMetrics, getAgentDataFootprint, generateSettlement, verifySettlement, generateDataComplianceReport, DataEnforcementGate, createTrainingAttribution, verifyTrainingAttribution, createTrainingLedger, recordTrainingAttribution, getModelDataSources, } from "agent-passport-system";
 // Data Lifecycle Governance (Modules 43+)
@@ -149,8 +151,30 @@ const state = {
     sessionAgent: null,
     charters: new Map(),
     approvalRequests: new Map(),
+    // Agent Attestation Architecture (Phase 1)
+    issuanceContexts: new Map(),
+    issuanceChallenges: new Map(),
+    issuanceCount: 0,
+    postIssuanceBehavior: new Map(),
+    recentlyIssuedPassports: new Set(),
+    issuanceTimestamps: new Map(),
+    endorsementLatencies: new Map(),
 };
 // Load persisted task state
+// ── Post-issuance behavioral sequence recording ──
+// Consilium signal #2: first 10 tool calls after passport issuance.
+// Real agents do work. Farming agents extract. Server-recorded, can't retroactively change.
+const MAX_BEHAVIORAL_SEQUENCE = 10;
+function recordBehavior(toolName) {
+    // Record for all recently-issued passport holders in this session
+    for (const agentId of state.recentlyIssuedPassports) {
+        const seq = state.postIssuanceBehavior.get(agentId) || [];
+        if (seq.length < MAX_BEHAVIORAL_SEQUENCE) {
+            seq.push({ tool: toolName, ts: new Date().toISOString() });
+            state.postIssuanceBehavior.set(agentId, seq);
+        }
+    }
+}
 function loadTasks() {
     if (existsSync(STORE_PATH)) {
         try {
@@ -335,6 +359,8 @@ const server = new McpServer({
     name: "agent-passport-mcp",
     version: "2.0.0",
 });
+// Track server start time for Tier 0 connection timing
+globalThis.__mcpStartTime = Date.now();
 // ═══════════════════════════════════════
 // Tool Profiles — expose only relevant tools
 // ═══════════════════════════════════════
@@ -343,7 +369,8 @@ const server = new McpServer({
 // coordination, commerce, data, gateway, comms, minimal.
 const TOOL_PROFILES = {
     identity: new Set([
-        'identify', 'generate_keys', 'issue_passport', 'verify_issuer', 'create_principal', 'endorse_agent',
+        'identify', 'generate_keys', 'issue_passport', 'verify_issuer', 'get_passport_grade', 'list_issuance_records',
+        'create_principal', 'endorse_agent',
         'verify_endorsement', 'create_disclosure', 'create_delegation',
         'verify_delegation', 'revoke_delegation', 'sub_delegate',
         'revoke_endorsement', 'get_fleet_status', 'create_v2_delegation',
@@ -410,7 +437,8 @@ const TOOL_PROFILES = {
         'register_agora_public',
     ]),
     minimal: new Set([
-        'identify', 'generate_keys', 'issue_passport', 'verify_issuer', 'create_delegation', 'verify_delegation',
+        'identify', 'generate_keys', 'issue_passport', 'verify_issuer', 'get_passport_grade', 'list_issuance_records',
+        'create_delegation', 'verify_delegation',
         'create_intent', 'evaluate_intent', 'list_profiles',
     ]),
 };
@@ -440,6 +468,7 @@ server.tool("identify", "Identify yourself to the coordination server. Sets your
     private_key: z.string().describe("Your Ed25519 private key (for signing)"),
     agent_id: z.string().optional().describe("Your agent ID"),
 }, async (args) => {
+    recordBehavior('identify');
     state.agentKey = args.public_key;
     state.privateKey = args.private_key;
     state.agentId = args.agent_id || null;
@@ -496,13 +525,29 @@ server.tool("generate_keys", "Generate an Ed25519 keypair for agent identity.",
 // ═══════════════════════════════════════
 // TOOL: issue_passport
 // ═══════════════════════════════════════
-server.tool("issue_passport", "Issue a complete agent passport with keys, signed passport, and optional values floor attestation in a single call. Use this to onboard any agent — no npm install required.", {
+server.tool("issue_passport", "Issue a complete agent passport with keys, signed passport, attestation summary, and optional values floor in a single call. The server silently captures Tier 0 observed signals and computes a passport grade (0-3). Use this to onboard any agent — no npm install required.", {
     name: z.string().describe("Agent name (human-readable)"),
     owner: z.string().describe("Owner/principal identifier"),
     mission: z.string().optional().describe("Agent mission description"),
     capabilities: z.array(z.string()).optional().describe("Agent capabilities (e.g., ['research', 'writing'])"),
     attest_to_floor: z.boolean().optional().describe("If true, attests to the default values floor (F-001 through F-008)"),
 }, async (args) => {
+    const issuanceStart = Date.now();
+    // Phase 0: Silent Observation — capture Tier 0 signals before processing
+    state.issuanceCount++;
+    const { createHash } = await import('crypto');
+    const sha256 = (s) => createHash('sha256').update(s).digest('hex');
+    const observed = {
+        transportType: process.env.MCP_TRANSPORT || 'stdio',
+        issuanceVelocity: state.issuanceCount,
+        requestPayloadFingerprint: sha256(JSON.stringify({
+            name: args.name, owner: args.owner,
+            mission: args.mission, capabilities: args.capabilities,
+        })),
+        mcpClientId: state.agentId || undefined,
+        connectionTimingMs: issuanceStart - globalThis.__mcpStartTime || 0,
+    };
+    // Create the passport (same as before)
     const agent = joinSocialContract({
         name: args.name,
         mission: args.mission || 'General purpose agent',
@@ -513,24 +558,71 @@ server.tool("issue_passport", "Issue a complete agent passport with keys, signed
         floor: args.attest_to_floor ? (state.floorYaml || DEFAULT_FLOOR_YAML) : undefined,
     });
     // Countersign with AEOESS issuer key if available (CA model)
-    const passport = AEOESS_ISSUER_PRIVATE_KEY
+    const hasIssuer = !!AEOESS_ISSUER_PRIVATE_KEY;
+    const passport = hasIssuer
         ? countersignPassport(agent.passport, AEOESS_ISSUER_PRIVATE_KEY, 'aeoess')
         : agent.passport;
+    // Phase 4: Derive issuance context with computed signals
+    const evidence = createEmptyEvidenceRecord(observed);
+    const issuanceAgeMs = Date.now() - (globalThis.__mcpStartTime || Date.now());
+    const derivedSignals = [
+        { key: 'issuance_age_ms', value: String(issuanceAgeMs), derivedFrom: ['serverStartTime', 'requestedAt'], computedAt: new Date().toISOString() },
+        { key: 'session_passport_count', value: String(state.issuanceCount), derivedFrom: ['issuanceCount'], computedAt: new Date().toISOString() },
+    ];
+    const context = createIssuanceContext(evidence, {
+        hasIssuerSignature: hasIssuer,
+        derivedSignals,
+    });
+    // Phase 5: Bind attestation to passport
+    const attestedPassport = bindAttestation(passport, context);
+    // Store the issuance context (server-side memory)
+    const passportId = passport.passport.agentId;
+    state.issuanceContexts.set(passportId, context);
+    state.recentlyIssuedPassports.add(passportId);
+    state.issuanceTimestamps.set(passportId, Date.now());
+    // Initialize behavioral sequence tracking for this agent
+    state.postIssuanceBehavior.set(passportId, [{ tool: 'issue_passport', ts: new Date().toISOString() }]);
+    // Bridge: fire-and-forget POST to gateway (if configured)
+    // When Mini adds POST /issuance-dossier, this data starts flowing automatically.
+    const gwUrl = process.env.AEOESS_GATEWAY_URL; // e.g. https://gateway.aeoess.com
+    const gwKey = process.env.AEOESS_GATEWAY_KEY; // e.g. aps_live_...
+    if (gwUrl && gwKey) {
+        fetch(`${gwUrl}/api/v1/issuance-dossier`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${gwKey}` },
+            body: JSON.stringify({
+                passport_id: passportId,
+                public_key_hash: sha256(attestedPassport.passport.publicKey),
+                passport_grade: context.assessment.passportGrade,
+                flags: context.assessment.flags,
+                attestation_bundle_hash: context.assessment.attestationBundleHash,
+                observed_context: context.evidence.observed,
+                runtime_attestations: context.evidence.runtimeAttestations,
+                provider_attestations: context.evidence.providerAttestations,
+                self_declared_signals: context.evidence.selfDeclaredSignals,
+                derived_signals: context.assessment.derivedSignals || [],
+                prior_passport_ref: context.evidence.priorPassportRef || null,
+            }),
+        }).catch(() => { }); // fire-and-forget: never block passport issuance
+    }
     return {
         content: [{
                 type: "text",
                 text: JSON.stringify({
-                    passport: passport,
-                    publicKey: passport.passport.publicKey,
+                    passport: attestedPassport,
+                    publicKey: attestedPassport.passport.publicKey,
                     privateKey: agent.keyPair.privateKey,
-                    agentId: passport.passport.agentId,
+                    agentId: attestedPassport.passport.agentId,
                     attestation: agent.attestation || null,
-                    did: `did:aps:${passport.passport.publicKey}`,
-                    issuerVerified: !!passport.issuerSignature,
+                    passportAttestation: attestedPassport.attestation,
+                    passportGrade: context.assessment.passportGrade,
+                    passportGradeLabel: PASSPORT_GRADE_LABELS[context.assessment.passportGrade],
+                    did: `did:aps:${attestedPassport.passport.publicKey}`,
+                    issuerVerified: !!attestedPassport.issuerSignature,
                     issuerPublicKey: AEOESS_ISSUER_PUBLIC_KEY,
-                    note: passport.issuerSignature
-                        ? "This passport is countersigned by AEOESS. Verify with issuerPublicKey."
-                        : "This passport is self-signed (issuer key not configured on this server).",
+                    note: attestedPassport.issuerSignature
+                        ? `Grade ${context.assessment.passportGrade} passport (${PASSPORT_GRADE_LABELS[context.assessment.passportGrade]}). Countersigned by AEOESS.`
+                        : `Grade ${context.assessment.passportGrade} passport (${PASSPORT_GRADE_LABELS[context.assessment.passportGrade]}). Self-signed (issuer key not configured).`,
                 }, null, 2),
             }],
     };
@@ -573,6 +665,123 @@ server.tool("verify_issuer", "Verify that a passport was officially issued by AE
     };
 });
 // ═══════════════════════════════════════
+// TOOL: get_passport_grade
+// ═══════════════════════════════════════
+server.tool("get_passport_grade", "Query the attestation grade and issuance context for a passport. Returns the passport grade (0-3), flags, and evidence summary. Grade 0 = self-signed, 1 = issuer countersigned, 2 = runtime-bound, 3 = principal-bound. This is the partner-facing trust query.", {
+    agent_id: z.string().describe("The agent ID of the passport to query"),
+}, async (args) => {
+    const context = state.issuanceContexts.get(args.agent_id);
+    if (!context) {
+        return {
+            content: [{
+                    type: "text",
+                    text: JSON.stringify({
+                        found: false,
+                        agent_id: args.agent_id,
+                        note: "No issuance record found for this agent. The passport may have been issued before attestation tracking was enabled, or on a different server instance.",
+                    }, null, 2),
+                }],
+        };
+    }
+    return {
+        content: [{
+                type: "text",
+                text: JSON.stringify({
+                    found: true,
+                    agent_id: args.agent_id,
+                    passportGrade: context.assessment.passportGrade,
+                    passportGradeLabel: PASSPORT_GRADE_LABELS[context.assessment.passportGrade],
+                    flags: context.assessment.flags,
+                    attestationBundleHash: context.assessment.attestationBundleHash,
+                    assessedAt: context.assessment.assessedAt,
+                    evidenceSummary: {
+                        hasRuntimeAttestation: context.evidence.runtimeAttestations.length > 0,
+                        hasProviderAttestation: context.evidence.providerAttestations.length > 0,
+                        selfDeclaredSignalCount: context.evidence.selfDeclaredSignals.length,
+                        hasPriorPassport: !!context.evidence.priorPassportRef,
+                        hasContinuityProof: !!context.evidence.priorContinuityProof,
+                        observedTransport: context.evidence.observed.transportType || null,
+                        issuanceVelocity: context.evidence.observed.issuanceVelocity || null,
+                    },
+                    derivedSignals: context.assessment.derivedSignals || [],
+                    gradeHistory: context.assessment.gradeHistory || [],
+                }, null, 2),
+            }],
+    };
+});
+// ═══════════════════════════════════════
+// TOOL: list_issuance_records
+// ═══════════════════════════════════════
+server.tool("list_issuance_records", "List all stored issuance records with their passport grades. Shows how many passports have been issued in this session and their trust posture. Useful for monitoring issuance patterns.", {}, async () => {
+    const records = Array.from(state.issuanceContexts.entries()).map(([agentId, ctx]) => ({
+        agentId,
+        grade: ctx.assessment.passportGrade,
+        gradeLabel: PASSPORT_GRADE_LABELS[ctx.assessment.passportGrade],
+        flags: ctx.assessment.flags,
+        issuedAt: ctx.evidence.requestedAt,
+    }));
+    return {
+        content: [{
+                type: "text",
+                text: JSON.stringify({
+                    totalIssued: records.length,
+                    sessionVelocity: state.issuanceCount,
+                    records,
+                    gradeDistribution: {
+                        grade0: records.filter(r => r.grade === 0).length,
+                        grade1: records.filter(r => r.grade === 1).length,
+                        grade2: records.filter(r => r.grade === 2).length,
+                        grade3: records.filter(r => r.grade === 3).length,
+                    },
+                }, null, 2),
+            }],
+    };
+});
+// ═══════════════════════════════════════
+// TOOL: get_behavioral_sequence
+// ═══════════════════════════════════════
+server.tool("get_behavioral_sequence", "Get the post-issuance behavioral sequence for an agent. Shows the first 10 tool calls after passport issuance. Real agents do work. Farming agents extract. This is consilium signal #2.", {
+    agent_id: z.string().describe("The agent ID to query"),
+}, async (args) => {
+    const sequence = state.postIssuanceBehavior.get(args.agent_id);
+    if (!sequence || sequence.length === 0) {
+        return {
+            content: [{
+                    type: "text",
+                    text: JSON.stringify({
+                        agent_id: args.agent_id,
+                        found: false,
+                        note: "No behavioral sequence recorded. Agent may have been issued before tracking was enabled.",
+                    }, null, 2),
+                }],
+        };
+    }
+    // Classify the behavioral pattern
+    const toolNames = sequence.map(s => s.tool);
+    const hasWork = toolNames.some(t => ['submit_evidence', 'publish_intent_card', 'create_agora_message', 'submit_deliverable'].includes(t));
+    const hasExtraction = toolNames.some(t => ['commerce_preflight', 'create_checkout'].includes(t));
+    const pattern = hasWork ? 'productive' : hasExtraction ? 'extractive' : 'neutral';
+    return {
+        content: [{
+                type: "text",
+                text: JSON.stringify({
+                    agent_id: args.agent_id,
+                    found: true,
+                    sequence_length: sequence.length,
+                    max_tracked: MAX_BEHAVIORAL_SEQUENCE,
+                    pattern,
+                    tools_called: toolNames,
+                    sequence,
+                    note: pattern === 'extractive'
+                        ? "Agent's first actions after passport were value extraction (commerce). Farming signal."
+                        : pattern === 'productive'
+                            ? "Agent's first actions after passport were productive work. Healthy pattern."
+                            : "Neutral pattern — identity/delegation setup.",
+                }, null, 2),
+            }],
+    };
+});
+// ═══════════════════════════════════════
 // TOOL: get_my_role
 // ═══════════════════════════════════════
 server.tool("get_my_role", "Get your current role, assigned tasks, and role-specific instructions.", {}, async () => {
@@ -991,6 +1200,7 @@ server.tool("submit_evidence", "[RESEARCHER] Submit research evidence as a signe
     })).describe("Evidence claims with citations"),
     methodology: z.string().describe("How you gathered this evidence"),
 }, async (args) => {
+    recordBehavior('submit_evidence');
     const keyErr = requireKey();
     if (keyErr)
         return { content: [{ type: "text", text: keyErr }], isError: true };
@@ -1207,6 +1417,7 @@ server.tool("create_delegation", "[OPERATOR] Create a scoped delegation from one
     max_depth: z.number().default(1).describe("How many levels of sub-delegation"),
     expires_in_hours: z.number().default(24).describe("Delegation validity in hours"),
 }, async (args) => {
+    recordBehavior('create_delegation');
     const keyErr = requireKey();
     if (keyErr)
         return { content: [{ type: "text", text: keyErr }], isError: true };
@@ -1275,6 +1486,7 @@ server.tool("revoke_delegation", "[OPERATOR] Revoke a delegation. Optionally cas
     reason: z.string().describe("Why the delegation is being revoked"),
     cascade: z.boolean().default(true).describe("Also revoke all sub-delegations"),
 }, async (args) => {
+    recordBehavior('revoke_delegation');
     const keyErr = requireKey();
     if (keyErr)
         return { content: [{ type: "text", text: keyErr }], isError: true };
@@ -1833,6 +2045,7 @@ server.tool("commerce_preflight", "Run preflight checks before a purchase. Valid
     delegation_id: z.string().describe("Commerce delegation ID"),
     agent_id: z.string().describe("Agent making the purchase"),
 }, async (args) => {
+    recordBehavior('commerce_preflight');
     const keyErr = requireKey();
     if (keyErr)
         return { content: [{ type: "text", text: keyErr }], isError: true };
@@ -2123,6 +2336,12 @@ server.tool("endorse_agent", "Endorse an agent as a principal. Creates a cryptog
     relationship: z.enum(["creator", "operator", "employer", "sponsor"]).describe("How principal relates to agent"),
     expires_in_days: z.number().default(365).describe("Days until endorsement expires"),
 }, async (args) => {
+    recordBehavior('endorse_agent');
+    // Consilium signal #5: endorsement latency. T+200ms = automation. T+3h = human.
+    const issuedAt = state.issuanceTimestamps.get(args.agent_id);
+    if (issuedAt && !state.endorsementLatencies.has(args.agent_id)) {
+        state.endorsementLatencies.set(args.agent_id, Date.now() - issuedAt);
+    }
     if (!state.principal || !state.principalPrivateKey) {
         return { content: [{ type: "text", text: 'No principal identity. Call create_principal first.' }], isError: true };
     }
@@ -2679,6 +2898,7 @@ server.tool("publish_intent_card", "Publish an IntentCard to the Intent Network
     visibility: z.enum(["public", "verified", "minimal"]).default("public"),
     ttl_hours: z.number().default(24).describe("Hours until card expires"),
 }, async (args) => {
+    recordBehavior('publish_intent_card');
     const keyErr = requireKey();
     if (keyErr)
         return { content: [{ type: "text", text: keyErr }], isError: true };

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "agent-passport-system-mcp",
-  "version": "2.18.0",
+  "version": "2.19.1",
   "mcpName": "io.github.aeoess/agent-passport-mcp",
-  "description": "MCP server for the Agent Passport System — enforcement infrastructure for the agent economy. 122 tools across 94 modules. Policy eval <2ms. Identity, delegation, reputation, enforcement, feeless Nano wallet, commerce.",
+  "description": "MCP server for the Agent Passport System — enforcement infrastructure for the agent economy. 125 tools across 95 modules. Policy eval <2ms. Identity, delegation, reputation, enforcement, attestation, feeless Nano wallet, commerce.",
   "type": "module",
   "bin": {
     "agent-passport-system-mcp": "./build/bin.js",
@@ -49,7 +49,7 @@
   "homepage": "https://github.com/aeoess/agent-passport-mcp",
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.27.1",
-    "agent-passport-system": "^1.29.0",
+    "agent-passport-system": "^1.29.1",
     "zod": "^3.25.76"
   },
   "devDependencies": {