npm - agent-passport-system - Versions diffs - 2.6.0-alpha.4 → 2.6.0-alpha.5 - Mend

agent-passport-system 2.6.0-alpha.4 → 2.6.0-alpha.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (52) hide show

package/README.md CHANGED Viewed

@@ -143,7 +143,7 @@ The composition contract specifies how a verifier MUST cross-check per-request s
 ## Numbers
-2,884 tests. 8 protocol layers. Framework adapters for CrewAI, LangChain, ADK, A2A, MCP, OpenShell, IBAC, Gonka. Gateway evaluation under 2ms. Zero heavy dependencies. Apache-2.0.
+3,008 tests. 8 protocol layers. Framework adapters for CrewAI, LangChain, ADK, A2A, MCP, OpenShell, IBAC, Gonka. Gateway evaluation under 2ms. Zero heavy dependencies. Apache-2.0.
 ## Papers
@@ -155,7 +155,7 @@ The composition contract specifies how a verifier MUST cross-check per-request s
 - [Governance in the Medium](https://doi.org/10.5281/zenodo.19582550)
 - [Cognitive Attestation](https://doi.org/10.5281/zenodo.19646276)
 - [The Evidence-Safety Gap](https://doi.org/10.5281/zenodo.19914628)
-- IETF Internet-Draft: `draft-pidlisnyi-aps-00`
+- IETF Internet-Draft: `draft-pidlisnyi-aps-01`
 ## Contributing

package/dist/src/core/action-ref.d.ts CHANGED Viewed

@@ -5,7 +5,7 @@ import type { ActionIntent } from '../types/policy.js';
  * Inputs hashed: agentId, action.type, action.scopeRequired, normalized timestamp.
  * Timestamp defaults to intent.createdAt; falls back to current time.
  *
- * Canonicalization follows RFC 8785 JCS strictly, per draft-pidlisnyi-aps-00
+ * Canonicalization follows RFC 8785 JCS strictly, per draft-pidlisnyi-aps-01
  * §4.1: null/undefined-valued keys are preserved (not stripped) so that
  * cross-engine correlation byte-matches against any other strict-JCS
  * implementation (x402 ecosystem, AgentGraph CTEF, Nobulex, etc.).

package/dist/src/core/action-ref.js CHANGED Viewed

@@ -23,7 +23,7 @@ import { canonicalHashJCS } from './canonical-jcs.js';
  * Inputs hashed: agentId, action.type, action.scopeRequired, normalized timestamp.
  * Timestamp defaults to intent.createdAt; falls back to current time.
  *
- * Canonicalization follows RFC 8785 JCS strictly, per draft-pidlisnyi-aps-00
+ * Canonicalization follows RFC 8785 JCS strictly, per draft-pidlisnyi-aps-01
  * §4.1: null/undefined-valued keys are preserved (not stripped) so that
  * cross-engine correlation byte-matches against any other strict-JCS
  * implementation (x402 ecosystem, AgentGraph CTEF, Nobulex, etc.).

package/dist/src/core/canonical-jcs.d.ts CHANGED Viewed

@@ -21,7 +21,7 @@ export interface CanonicalizationTestVector {
 /** SHA-256 (lowercase hex) of canonicalizeJCS(obj). Strict-RFC-8785
  *  counterpart of canonicalHash() from ./canonical.ts. Use this for any
  *  cross-implementation hash whose conformance pin requires strict JCS
- *  (e.g. action_ref per draft-pidlisnyi-aps-00 §4.1). */
+ *  (e.g. action_ref per draft-pidlisnyi-aps-01 §4.1). */
 export declare function canonicalHashJCS(obj: Record<string, unknown>): string;
 /** Built-in test vectors for cross-language verification */
 export declare function getTestVectors(): CanonicalizationTestVector[];

package/dist/src/core/canonical-jcs.js CHANGED Viewed

@@ -81,7 +81,7 @@ function sha256hex(input) {
 /** SHA-256 (lowercase hex) of canonicalizeJCS(obj). Strict-RFC-8785
  *  counterpart of canonicalHash() from ./canonical.ts. Use this for any
  *  cross-implementation hash whose conformance pin requires strict JCS
- *  (e.g. action_ref per draft-pidlisnyi-aps-00 §4.1). */
+ *  (e.g. action_ref per draft-pidlisnyi-aps-01 §4.1). */
 export function canonicalHashJCS(obj) {
     return sha256hex(canonicalizeJCS(obj));
 }

package/dist/src/v2/cognitive_attestation/__tests__/cognitive_attestation.test.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=cognitive_attestation.test.d.ts.map

package/dist/src/v2/cognitive_attestation/__tests__/cognitive_attestation.test.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"cognitive_attestation.test.d.ts","sourceRoot":"","sources":["../../../../../src/v2/cognitive_attestation/__tests__/cognitive_attestation.test.ts"],"names":[],"mappings":""}

package/dist/src/v2/cognitive_attestation/__tests__/cognitive_attestation.test.js ADDED Viewed

@@ -0,0 +1,224 @@
+// Copyright 2024-2026 Tymofii Pidlisnyi. Apache-2.0 license. See LICENSE.
+// ══════════════════════════════════════════════════════════════════
+// cognitive_attestation signal_type (v0.1): tests
+// ══════════════════════════════════════════════════════════════════
+import { describe, it } from 'node:test';
+import assert from 'node:assert/strict';
+import { createHash } from 'node:crypto';
+import { generateKeyPair, publicKeyFromPrivate } from '../../../crypto/keys.js';
+import { signCognitiveAttestation, verifyCognitiveAttestation, isCognitiveAttestation, canonicalizeForSignature, } from '../index.js';
+function sha256Hex(s) {
+    return createHash('sha256').update(s, 'utf8').digest('hex');
+}
+const FIXED_TIMESTAMP_MS = 1748275200000; // 2026-05-26T16:00:00Z
+const PRECONDITION_PAYLOAD = (() => {
+    const sorted = ['policy.4.2', 'scope.commerce.purchase', 'tool.email_send'];
+    return {
+        available_preconditions: sorted,
+        precondition_hashes: sorted.map(sha256Hex),
+    };
+})();
+const CANDIDATE_PAYLOAD = {
+    evaluated_candidates: [
+        { candidate_ref: sha256Hex('action.transfer'), eliminated: true, elimination_reason: 'violates policy 4.2' },
+        { candidate_ref: sha256Hex('action.deny'), eliminated: false },
+        { candidate_ref: sha256Hex('action.escalate'), eliminated: true, elimination_reason: 'no human available in scope' },
+    ],
+};
+const DECISION_PATH_PAYLOAD = {
+    chosen_path_ref: sha256Hex('chosen.deny'),
+    confidence: 0.91,
+    reasoning_chain_hashes: [
+        sha256Hex('step.1.precondition-check'),
+        sha256Hex('step.2.candidate-eval'),
+        sha256Hex('step.3.policy-match'),
+    ],
+};
+function makeUnsigned(klass, agent_id) {
+    const decision_ref = sha256Hex('decision.test.001');
+    const base = {
+        signal_type: 'cognitive_attestation',
+        agent_id,
+        decision_ref,
+        timestamp_ms: FIXED_TIMESTAMP_MS,
+    };
+    if (klass === 'precondition_set') {
+        return { ...base, class: 'precondition_set', class_payload: PRECONDITION_PAYLOAD };
+    }
+    if (klass === 'candidate_set') {
+        return { ...base, class: 'candidate_set', class_payload: CANDIDATE_PAYLOAD };
+    }
+    return { ...base, class: 'decision_path', class_payload: DECISION_PATH_PAYLOAD };
+}
+// ── Round-trip per class ─────────────────────────────────────────
+describe('cognitive_attestation: round-trip per class', () => {
+    for (const klass of ['precondition_set', 'candidate_set', 'decision_path']) {
+        it(`sign + verify round-trips a ${klass} envelope`, () => {
+            const kp = generateKeyPair();
+            const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned(klass, kp.publicKey));
+            assert.equal(signed.signal_type, 'cognitive_attestation');
+            assert.equal(signed.class, klass);
+            assert.equal(signed.agent_id, kp.publicKey);
+            assert.equal(signed.signature.length, 128);
+            const result = verifyCognitiveAttestation(signed);
+            assert.equal(result.valid, true, `expected valid, got reason=${result.reason}`);
+        });
+    }
+});
+// ── Tamper detection ────────────────────────────────────────────
+describe('cognitive_attestation: tamper detection', () => {
+    it('flipping one byte of class_payload causes verification to fail', () => {
+        const kp = generateKeyPair();
+        const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned('decision_path', kp.publicKey));
+        // Mutate the confidence by a hair: still a valid two-decimal number but a
+        // different signed byte sequence.
+        const tampered = {
+            ...signed,
+            class_payload: { ...signed.class_payload, confidence: 0.92 },
+        };
+        const result = verifyCognitiveAttestation(tampered);
+        assert.equal(result.valid, false);
+        assert.equal(result.reason, 'SIGNATURE_INVALID');
+    });
+    it('mutating a precondition_set hash causes verification to fail', () => {
+        const kp = generateKeyPair();
+        const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned('precondition_set', kp.publicKey));
+        const mutatedHashes = [...signed.class_payload.precondition_hashes];
+        // Flip the last character of the first hash to a different hex digit.
+        const first = mutatedHashes[0];
+        const lastChar = first.slice(-1);
+        const flippedChar = lastChar === '0' ? '1' : '0';
+        mutatedHashes[0] = first.slice(0, -1) + flippedChar;
+        const tampered = {
+            ...signed,
+            class_payload: { ...signed.class_payload, precondition_hashes: mutatedHashes },
+        };
+        const result = verifyCognitiveAttestation(tampered);
+        assert.equal(result.valid, false);
+        assert.equal(result.reason, 'SIGNATURE_INVALID');
+    });
+});
+// ── Wrong-key detection ────────────────────────────────────────
+describe('cognitive_attestation: wrong-key detection', () => {
+    it('envelope signed with key A but claiming agent_id of key B fails', () => {
+        const keyA = generateKeyPair();
+        const keyB = generateKeyPair();
+        // Sign with A but rewrite agent_id to B's public key without re-signing.
+        const signedByA = signCognitiveAttestation(keyA.privateKey, makeUnsigned('candidate_set', keyA.publicKey));
+        const lyingEnvelope = { ...signedByA, agent_id: keyB.publicKey };
+        const result = verifyCognitiveAttestation(lyingEnvelope);
+        assert.equal(result.valid, false);
+        assert.equal(result.reason, 'SIGNATURE_INVALID');
+    });
+    it('signCognitiveAttestation always overwrites agent_id to match the signing key', () => {
+        const keyA = generateKeyPair();
+        const keyB = generateKeyPair();
+        // Caller hands in agent_id = B but signs with A. Helper overwrites to A.
+        const unsigned = makeUnsigned('precondition_set', keyB.publicKey);
+        const signed = signCognitiveAttestation(keyA.privateKey, unsigned);
+        assert.equal(signed.agent_id, publicKeyFromPrivate(keyA.privateKey));
+        const result = verifyCognitiveAttestation(signed);
+        assert.equal(result.valid, true);
+    });
+});
+// ── Canonicalization stability ─────────────────────────────────
+describe('cognitive_attestation: canonicalization stability', () => {
+    it('two envelopes with the same logical content but different field order produce the same signature', () => {
+        const kp = generateKeyPair();
+        const decision_ref = sha256Hex('decision.test.canon');
+        const ordering1 = {
+            signal_type: 'cognitive_attestation',
+            agent_id: kp.publicKey,
+            class: 'decision_path',
+            class_payload: DECISION_PATH_PAYLOAD,
+            decision_ref,
+            timestamp_ms: FIXED_TIMESTAMP_MS,
+        };
+        const ordering2 = {
+            class_payload: DECISION_PATH_PAYLOAD,
+            decision_ref,
+            timestamp_ms: FIXED_TIMESTAMP_MS,
+            class: 'decision_path',
+            agent_id: kp.publicKey,
+            signal_type: 'cognitive_attestation',
+        };
+        const signed1 = signCognitiveAttestation(kp.privateKey, ordering1);
+        const signed2 = signCognitiveAttestation(kp.privateKey, ordering2);
+        assert.equal(signed1.signature, signed2.signature);
+        // Canonical bytes equal across orderings, with the signature field emptied.
+        const canon1 = canonicalizeForSignature(ordering1);
+        const canon2 = canonicalizeForSignature(ordering2);
+        assert.equal(canon1, canon2);
+    });
+});
+// ── Class discriminator ────────────────────────────────────────
+describe('cognitive_attestation: class discriminator', () => {
+    it('isCognitiveAttestation accepts each of the three v0.1 class envelopes', () => {
+        const kp = generateKeyPair();
+        for (const klass of ['precondition_set', 'candidate_set', 'decision_path']) {
+            const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned(klass, kp.publicKey));
+            assert.equal(isCognitiveAttestation(signed), true, `failed for ${klass}`);
+        }
+    });
+    it('isCognitiveAttestation rejects envelopes carrying pre_commit_chain (v0.2 deferred)', () => {
+        const kp = generateKeyPair();
+        const v0_2_attempt = {
+            signal_type: 'cognitive_attestation',
+            class: 'pre_commit_chain',
+            agent_id: kp.publicKey,
+            decision_ref: sha256Hex('decision.v0_2'),
+            class_payload: {
+                // Whatever shape might land in v0.2 is irrelevant; the discriminator
+                // rejects the class name itself.
+                chained_commitments: [],
+            },
+            timestamp_ms: FIXED_TIMESTAMP_MS,
+            signature: '0'.repeat(128),
+        };
+        assert.equal(isCognitiveAttestation(v0_2_attempt), false);
+    });
+    it('isCognitiveAttestation rejects non-object inputs, wrong signal_type, malformed agent_id', () => {
+        assert.equal(isCognitiveAttestation(null), false);
+        assert.equal(isCognitiveAttestation('string'), false);
+        assert.equal(isCognitiveAttestation({}), false);
+        assert.equal(isCognitiveAttestation({ signal_type: 'reasoning_integrity' }), false);
+        const kp = generateKeyPair();
+        const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned('decision_path', kp.publicKey));
+        assert.equal(isCognitiveAttestation({ ...signed, agent_id: 'not-hex' }), false);
+        assert.equal(isCognitiveAttestation({ ...signed, signature: 'short' }), false);
+    });
+    it('isCognitiveAttestation rejects a candidate_set entry with eliminated=false carrying a reason', () => {
+        const kp = generateKeyPair();
+        const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned('candidate_set', kp.publicKey));
+        const bad = {
+            ...signed,
+            class_payload: {
+                evaluated_candidates: [
+                    { candidate_ref: sha256Hex('a'), eliminated: false, elimination_reason: 'should not be present' },
+                ],
+            },
+        };
+        assert.equal(isCognitiveAttestation(bad), false);
+    });
+});
+// ── Verifier rejects malformed inputs without throwing ─────────
+describe('cognitive_attestation: verifier shape failures', () => {
+    it('returns INVALID_SIGNAL_TYPE for a non-object input', () => {
+        assert.deepEqual(verifyCognitiveAttestation(null), { valid: false, reason: 'INVALID_SIGNAL_TYPE' });
+    });
+    it('returns INVALID_CLASS for an unknown class', () => {
+        const kp = generateKeyPair();
+        const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned('decision_path', kp.publicKey));
+        const result = verifyCognitiveAttestation({ ...signed, class: 'pre_commit_chain' });
+        assert.equal(result.valid, false);
+        assert.equal(result.reason, 'INVALID_CLASS');
+    });
+    it('returns INVALID_AGENT_ID for a malformed agent_id', () => {
+        const kp = generateKeyPair();
+        const signed = signCognitiveAttestation(kp.privateKey, makeUnsigned('candidate_set', kp.publicKey));
+        const result = verifyCognitiveAttestation({ ...signed, agent_id: 'XYZ' });
+        assert.equal(result.valid, false);
+        assert.equal(result.reason, 'INVALID_AGENT_ID');
+    });
+});
+//# sourceMappingURL=cognitive_attestation.test.js.map

package/dist/src/v2/cognitive_attestation/__tests__/cognitive_attestation.test.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cognitive_attestation.test.js","sourceRoot":"","sources":["../../../../../src/v2/cognitive_attestation/__tests__/cognitive_attestation.test.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,qEAAqE;AACrE,kDAAkD;AAClD,qEAAqE;AAErE,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,WAAW,CAAA;AACxC,OAAO,MAAM,MAAM,oBAAoB,CAAA;AACvC,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAExC,OAAO,EAAE,eAAe,EAAE,oBAAoB,EAAE,MAAM,yBAAyB,CAAA;AAE/E,OAAO,EACL,wBAAwB,EACxB,0BAA0B,EAC1B,sBAAsB,EACtB,wBAAwB,GACzB,MAAM,aAAa,CAAA;AAapB,SAAS,SAAS,CAAC,CAAS;IAC1B,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;AAC7D,CAAC;AAED,MAAM,kBAAkB,GAAG,aAAa,CAAA,CAAC,uBAAuB;AAEhE,MAAM,oBAAoB,GAA2B,CAAC,GAAG,EAAE;IACzD,MAAM,MAAM,GAAG,CAAC,YAAY,EAAE,yBAAyB,EAAE,iBAAiB,CAAC,CAAA;IAC3E,OAAO;QACL,uBAAuB,EAAE,MAAM;QAC/B,mBAAmB,EAAE,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC;KAC3C,CAAA;AACH,CAAC,CAAC,EAAE,CAAA;AAEJ,MAAM,iBAAiB,GAAwB;IAC7C,oBAAoB,EAAE;QACpB,EAAE,aAAa,EAAE,SAAS,CAAC,iBAAiB,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,kBAAkB,EAAE,qBAAqB,EAAE;QAC5G,EAAE,aAAa,EAAE,SAAS,CAAC,aAAa,CAAC,EAAE,UAAU,EAAE,KAAK,EAAE;QAC9D,EAAE,aAAa,EAAE,SAAS,CAAC,iBAAiB,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,kBAAkB,EAAE,6BAA6B,EAAE;KACrH;CACF,CAAA;AAED,MAAM,qBAAqB,GAAwB;IACjD,eAAe,EAAE,SAAS,CAAC,aAAa,CAAC;IACzC,UAAU,EAAE,IAAI;IAChB,sBAAsB,EAAE;QACtB,SAAS,CAAC,2BAA2B,CAAC;QACtC,SAAS,CAAC,uBAAuB,CAAC;QAClC,SAAS,CAAC,qBAAqB,CAAC;KACjC;CACF,CAAA;AAOD,SAAS,YAAY,CACnB,KAAQ,EACR,QAAgB;IAEhB,MAAM,YAAY,GAAG,SAAS,CAAC,mBAAmB,CAAC,CAAA;IACnD,MAAM,IAAI,GAAG;QACX,WAAW,EAAE,uBAAgC;QAC7C,QAAQ;QACR,YAAY;QACZ,YAAY,EAAE,kBAAkB;KACjC,CAAA;IACD,IAAI,KAAK,KAAK,kBAAkB,EAAE,CAAC;QACjC,OAAO,EAAE,GAAG,IAAI,EAAE,KAAK,EAAE,kBAA2B,EAAE,aAAa,EAAE,oBAAoB,EAAoB,CAAA;IAC/G,CAAC;IACD,IAAI,KAAK,KAAK,eAAe,EAAE,CAAC;QAC9B,OAAO,EAAE,GAAG,IAAI,EAAE,KAAK,EAAE,eAAwB,EAAE,aAAa,EAAE,iBAAiB,EAAoB,CAAA;IACzG,CAAC;IACD,OAAO,EAAE,GAAG,IAAI,EAAE,KAAK,EAAE,eAAwB,EAAE,aAAa,EAAE,qBAAqB,EAAoB,CAAA;AAC7G,CAAC;AAED,oEAAoE;AAEpE,QAAQ,CAAC,6CAA6C,EAAE,GAAG,EAAE;IAC3D,KAAK,MAAM,KAAK,IAAI,CAAC,kBAAkB,EAAE,eAAe,EAAE,eAAe,CAAU,EAAE,CAAC;QACpF,EAAE,CAAC,+BAA+B,KAAK,WAAW,EAAE,GAAG,EAAE;YACvD,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;YAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,KAAK,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;YACzF,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,WAAW,EAAE,uBAAuB,CAAC,CAAA;YACzD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAA;YACjC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,SAAS,CAAC,CAAA;YAC3C,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;YAC1C,MAAM,MAAM,GAAG,0BAA0B,CAAC,MAAM,CAAC,CAAA;YACjD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,8BAA8B,MAAM,CAAC,MAAM,EAAE,CAAC,CAAA;QACjF,CAAC,CAAC,CAAA;IACJ,CAAC;AACH,CAAC,CAAC,CAAA;AAEF,mEAAmE;AAEnE,QAAQ,CAAC,yCAAyC,EAAE,GAAG,EAAE;IACvD,EAAE,CAAC,gEAAgE,EAAE,GAAG,EAAE;QACxE,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,eAAe,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;QACnG,0EAA0E;QAC1E,kCAAkC;QAClC,MAAM,QAAQ,GAAG;YACf,GAAG,MAAM;YACT,aAAa,EAAE,EAAE,GAAG,MAAM,CAAC,aAAa,EAAE,UAAU,EAAE,IAAI,EAAE;SAC7B,CAAA;QACjC,MAAM,MAAM,GAAG,0BAA0B,CAAC,QAAQ,CAAC,CAAA;QACnD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAA;IAClD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,8DAA8D,EAAE,GAAG,EAAE;QACtE,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,kBAAkB,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;QACtG,MAAM,aAAa,GAAG,CAAC,GAAG,MAAM,CAAC,aAAa,CAAC,mBAAmB,CAAC,CAAA;QACnE,sEAAsE;QACtE,MAAM,KAAK,GAAG,aAAa,CAAC,CAAC,CAAC,CAAA;QAC9B,MAAM,QAAQ,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAA;QAChC,MAAM,WAAW,GAAG,QAAQ,KAAK,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAA;QAChD,aAAa,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,WAAW,CAAA;QACnD,MAAM,QAAQ,GAAG;YACf,GAAG,MAAM;YACT,aAAa,EAAE,EAAE,GAAG,MAAM,CAAC,aAAa,EAAE,mBAAmB,EAAE,aAAa,EAAE;SAC/C,CAAA;QACjC,MAAM,MAAM,GAAG,0BAA0B,CAAC,QAAQ,CAAC,CAAA;QACnD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAA;IAClD,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,kEAAkE;AAElE,QAAQ,CAAC,4CAA4C,EAAE,GAAG,EAAE;IAC1D,EAAE,CAAC,iEAAiE,EAAE,GAAG,EAAE;QACzE,MAAM,IAAI,GAAG,eAAe,EAAE,CAAA;QAC9B,MAAM,IAAI,GAAG,eAAe,EAAE,CAAA;QAC9B,yEAAyE;QACzE,MAAM,SAAS,GAAG,wBAAwB,CAAC,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,CAAA;QAC1G,MAAM,aAAa,GAAG,EAAE,GAAG,SAAS,EAAE,QAAQ,EAAE,IAAI,CAAC,SAAS,EAAkC,CAAA;QAChG,MAAM,MAAM,GAAG,0BAA0B,CAAC,aAAa,CAAC,CAAA;QACxD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAA;IAClD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,8EAA8E,EAAE,GAAG,EAAE;QACtF,MAAM,IAAI,GAAG,eAAe,EAAE,CAAA;QAC9B,MAAM,IAAI,GAAG,eAAe,EAAE,CAAA;QAC9B,yEAAyE;QACzE,MAAM,QAAQ,GAAG,YAAY,CAAC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;QACjE,MAAM,MAAM,GAAG,wBAAwB,CAAC,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAA;QAClE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,EAAE,oBAAoB,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAA;QACpE,MAAM,MAAM,GAAG,0BAA0B,CAAC,MAAM,CAAC,CAAA;QACjD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;IAClC,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,kEAAkE;AAElE,QAAQ,CAAC,mDAAmD,EAAE,GAAG,EAAE;IACjE,EAAE,CAAC,kGAAkG,EAAE,GAAG,EAAE;QAC1G,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,YAAY,GAAG,SAAS,CAAC,qBAAqB,CAAC,CAAA;QACrD,MAAM,SAAS,GAAG;YAChB,WAAW,EAAE,uBAAgC;YAC7C,QAAQ,EAAE,EAAE,CAAC,SAAS;YACtB,KAAK,EAAE,eAAwB;YAC/B,aAAa,EAAE,qBAAqB;YACpC,YAAY;YACZ,YAAY,EAAE,kBAAkB;SACjC,CAAA;QACD,MAAM,SAAS,GAAG;YAChB,aAAa,EAAE,qBAAqB;YACpC,YAAY;YACZ,YAAY,EAAE,kBAAkB;YAChC,KAAK,EAAE,eAAwB;YAC/B,QAAQ,EAAE,EAAE,CAAC,SAAS;YACtB,WAAW,EAAE,uBAAgC;SAC9C,CAAA;QACD,MAAM,OAAO,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,SAAiD,CAAC,CAAA;QAC1G,MAAM,OAAO,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,SAAiD,CAAC,CAAA;QAC1G,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,SAAS,CAAC,CAAA;QAElD,4EAA4E;QAC5E,MAAM,MAAM,GAAG,wBAAwB,CAAC,SAAiD,CAAC,CAAA;QAC1F,MAAM,MAAM,GAAG,wBAAwB,CAAC,SAAiD,CAAC,CAAA;QAC1F,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IAC9B,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,kEAAkE;AAElE,QAAQ,CAAC,4CAA4C,EAAE,GAAG,EAAE;IAC1D,EAAE,CAAC,uEAAuE,EAAE,GAAG,EAAE;QAC/E,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,KAAK,MAAM,KAAK,IAAI,CAAC,kBAAkB,EAAE,eAAe,EAAE,eAAe,CAAU,EAAE,CAAC;YACpF,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,KAAK,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;YACzF,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,cAAc,KAAK,EAAE,CAAC,CAAA;QAC3E,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,oFAAoF,EAAE,GAAG,EAAE;QAC5F,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,YAAY,GAAG;YACnB,WAAW,EAAE,uBAAuB;YACpC,KAAK,EAAE,kBAAkB;YACzB,QAAQ,EAAE,EAAE,CAAC,SAAS;YACtB,YAAY,EAAE,SAAS,CAAC,eAAe,CAAC;YACxC,aAAa,EAAE;gBACb,qEAAqE;gBACrE,iCAAiC;gBACjC,mBAAmB,EAAE,EAAE;aACxB;YACD,YAAY,EAAE,kBAAkB;YAChC,SAAS,EAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC;SAC3B,CAAA;QACD,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,YAAY,CAAC,EAAE,KAAK,CAAC,CAAA;IAC3D,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,yFAAyF,EAAE,GAAG,EAAE;QACjG,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,IAAI,CAAC,EAAE,KAAK,CAAC,CAAA;QACjD,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAA;QACrD,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,CAAA;QAC/C,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,EAAE,WAAW,EAAE,qBAAqB,EAAE,CAAC,EAAE,KAAK,CAAC,CAAA;QACnF,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,eAAe,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;QACnG,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,EAAE,GAAG,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC,EAAE,KAAK,CAAC,CAAA;QAC/E,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,EAAE,GAAG,MAAM,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,EAAE,KAAK,CAAC,CAAA;IAChF,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,8FAA8F,EAAE,GAAG,EAAE;QACtG,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,eAAe,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;QACnG,MAAM,GAAG,GAAG;YACV,GAAG,MAAM;YACT,aAAa,EAAE;gBACb,oBAAoB,EAAE;oBACpB,EAAE,aAAa,EAAE,SAAS,CAAC,GAAG,CAAC,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,uBAAuB,EAAE;iBAClG;aACF;SACF,CAAA;QACD,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAA;IAClD,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,kEAAkE;AAElE,QAAQ,CAAC,gDAAgD,EAAE,GAAG,EAAE;IAC9D,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAC5D,MAAM,CAAC,SAAS,CAAC,0BAA0B,CAAC,IAAI,CAAC,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC,CAAA;IACrG,CAAC,CAAC,CAAA;IACF,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;QACpD,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,eAAe,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;QACnG,MAAM,MAAM,GAAG,0BAA0B,CAAC,EAAE,GAAG,MAAM,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC,CAAA;QACnF,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAA;IAC9C,CAAC,CAAC,CAAA;IACF,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;QAC3D,MAAM,EAAE,GAAG,eAAe,EAAE,CAAA;QAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,CAAC,UAAU,EAAE,YAAY,CAAC,eAAe,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;QACnG,MAAM,MAAM,GAAG,0BAA0B,CAAC,EAAE,GAAG,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAA;QACzE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,kBAAkB,CAAC,CAAA;IACjD,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/src/v2/cognitive_attestation/envelope.d.ts ADDED Viewed

@@ -0,0 +1,25 @@
+import type { CognitiveAttestationEnvelope, UnsignedCognitiveAttestationEnvelope } from './types.js';
+/**
+ * Canonicalize an envelope for signing. The signature field is set to the
+ * empty string before serialization so that signing and verification
+ * agree on the bytes-under-signature without either side rebuilding the
+ * envelope from a partial shape.
+ */
+export declare function canonicalizeForSignature(envelope: UnsignedCognitiveAttestationEnvelope | CognitiveAttestationEnvelope): string;
+/**
+ * Sign an unsigned envelope with an Ed25519 private key (hex). Derives
+ * the public key from the private key and writes it into `agent_id` on
+ * the returned envelope; this guarantees that the embedded `agent_id`
+ * matches the signing key, which the verifier checks against.
+ *
+ * If the caller provides their own `agent_id` on the input, this helper
+ * still derives the public key from the private key and overwrites the
+ * field, because a divergence between the embedded agent_id and the
+ * signing key is always a bug. Use `publicKeyFromPrivate` upstream if a
+ * pre-flight check is needed.
+ */
+export declare function signCognitiveAttestation<T extends UnsignedCognitiveAttestationEnvelope>(privateKeyHex: string, unsigned: T): T & {
+    readonly signature: string;
+    readonly agent_id: string;
+};
+//# sourceMappingURL=envelope.d.ts.map

package/dist/src/v2/cognitive_attestation/envelope.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"envelope.d.ts","sourceRoot":"","sources":["../../../../src/v2/cognitive_attestation/envelope.ts"],"names":[],"mappings":"AAcA,OAAO,KAAK,EACV,4BAA4B,EAC5B,oCAAoC,EACrC,MAAM,YAAY,CAAA;AAEnB;;;;;GAKG;AACH,wBAAgB,wBAAwB,CACtC,QAAQ,EAAE,oCAAoC,GAAG,4BAA4B,GAC5E,MAAM,CAGR;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,wBAAwB,CAAC,CAAC,SAAS,oCAAoC,EACrF,aAAa,EAAE,MAAM,EACrB,QAAQ,EAAE,CAAC,GACV,CAAC,GAAG;IAAE,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,CAM/D"}

package/dist/src/v2/cognitive_attestation/envelope.js ADDED Viewed

@@ -0,0 +1,42 @@
+// Copyright 2024-2026 Tymofii Pidlisnyi. Apache-2.0 license. See LICENSE.
+// ══════════════════════════════════════════════════════════════════
+// cognitive_attestation signal_type (v0.1): envelope helpers
+// ══════════════════════════════════════════════════════════════════
+// Signs the JCS-canonical form of the envelope with the signature field
+// emptied, then attaches the resulting signature. Mirrors the pattern
+// used by v2/payment-rails and v2/instruction-provenance: canonical form
+// is the source of truth, the wire object is the canonical bytes plus
+// signature.
+// ══════════════════════════════════════════════════════════════════
+import { canonicalizeJCS } from '../../core/canonical-jcs.js';
+import { sign, publicKeyFromPrivate } from '../../crypto/keys.js';
+/**
+ * Canonicalize an envelope for signing. The signature field is set to the
+ * empty string before serialization so that signing and verification
+ * agree on the bytes-under-signature without either side rebuilding the
+ * envelope from a partial shape.
+ */
+export function canonicalizeForSignature(envelope) {
+    const draft = { ...envelope, signature: '' };
+    return canonicalizeJCS(draft);
+}
+/**
+ * Sign an unsigned envelope with an Ed25519 private key (hex). Derives
+ * the public key from the private key and writes it into `agent_id` on
+ * the returned envelope; this guarantees that the embedded `agent_id`
+ * matches the signing key, which the verifier checks against.
+ *
+ * If the caller provides their own `agent_id` on the input, this helper
+ * still derives the public key from the private key and overwrites the
+ * field, because a divergence between the embedded agent_id and the
+ * signing key is always a bug. Use `publicKeyFromPrivate` upstream if a
+ * pre-flight check is needed.
+ */
+export function signCognitiveAttestation(privateKeyHex, unsigned) {
+    const agent_id = publicKeyFromPrivate(privateKeyHex);
+    const withDerivedKey = { ...unsigned, agent_id };
+    const bytes = canonicalizeForSignature(withDerivedKey);
+    const signature = sign(bytes, privateKeyHex);
+    return { ...withDerivedKey, signature };
+}
+//# sourceMappingURL=envelope.js.map

package/dist/src/v2/cognitive_attestation/envelope.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"envelope.js","sourceRoot":"","sources":["../../../../src/v2/cognitive_attestation/envelope.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,qEAAqE;AACrE,6DAA6D;AAC7D,qEAAqE;AACrE,wEAAwE;AACxE,sEAAsE;AACtE,yEAAyE;AACzE,sEAAsE;AACtE,aAAa;AACb,qEAAqE;AAErE,OAAO,EAAE,eAAe,EAAE,MAAM,6BAA6B,CAAA;AAC7D,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAA;AAOjE;;;;;GAKG;AACH,MAAM,UAAU,wBAAwB,CACtC,QAA6E;IAE7E,MAAM,KAAK,GAAG,EAAE,GAAG,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE,CAAA;IAC5C,OAAO,eAAe,CAAC,KAAK,CAAC,CAAA;AAC/B,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,wBAAwB,CACtC,aAAqB,EACrB,QAAW;IAEX,MAAM,QAAQ,GAAG,oBAAoB,CAAC,aAAa,CAAC,CAAA;IACpD,MAAM,cAAc,GAAG,EAAE,GAAG,QAAQ,EAAE,QAAQ,EAAE,CAAA;IAChD,MAAM,KAAK,GAAG,wBAAwB,CAAC,cAAsD,CAAC,CAAA;IAC9F,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,EAAE,aAAa,CAAC,CAAA;IAC5C,OAAO,EAAE,GAAG,cAAc,EAAE,SAAS,EAAmE,CAAA;AAC1G,CAAC"}

package/dist/src/v2/cognitive_attestation/index.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export { signCognitiveAttestation, canonicalizeForSignature } from './envelope.js';
+export { verifyCognitiveAttestation } from './verify.js';
+export { isCognitiveAttestation, isPreconditionSetPayload, isCandidateSetPayload, isDecisionPathPayload, } from './types.js';
+export type { CognitiveAttestationSignalType, CognitiveAttestationClass, CognitiveAttestationEnvelope, PreconditionSetEnvelope, CandidateSetEnvelope, DecisionPathEnvelope, UnsignedCognitiveAttestationEnvelope, UnsignedPreconditionSetEnvelope, UnsignedCandidateSetEnvelope, UnsignedDecisionPathEnvelope, PreconditionSetPayload, CandidateSetPayload, EvaluatedCandidate, DecisionPathPayload, CognitiveAttestationVerifyResult, CognitiveAttestationVerifyReason, } from './types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/src/v2/cognitive_attestation/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/v2/cognitive_attestation/index.ts"],"names":[],"mappings":"AAyBA,OAAO,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAA;AAClF,OAAO,EAAE,0BAA0B,EAAE,MAAM,aAAa,CAAA;AACxD,OAAO,EACL,sBAAsB,EACtB,wBAAwB,EACxB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,YAAY,CAAA;AAEnB,YAAY,EACV,8BAA8B,EAC9B,yBAAyB,EACzB,4BAA4B,EAC5B,uBAAuB,EACvB,oBAAoB,EACpB,oBAAoB,EACpB,oCAAoC,EACpC,+BAA+B,EAC/B,4BAA4B,EAC5B,4BAA4B,EAC5B,sBAAsB,EACtB,mBAAmB,EACnB,kBAAkB,EAClB,mBAAmB,EACnB,gCAAgC,EAChC,gCAAgC,GACjC,MAAM,YAAY,CAAA"}

package/dist/src/v2/cognitive_attestation/index.js ADDED Viewed

@@ -0,0 +1,28 @@
+// Copyright 2024-2026 Tymofii Pidlisnyi. Apache-2.0 license. See LICENSE.
+// ══════════════════════════════════════════════════════════════════
+// cognitive_attestation signal_type (v0.1): public surface
+// ══════════════════════════════════════════════════════════════════
+// Vocabulary primitive declared at aeoess/agent-governance-vocabulary
+// PR #104 (signal_types.cognitive_attestation, status:proposed). This
+// module is the AEOESS reference implementation submitted as the first
+// of the two implementations CONTRIBUTING.md requires before the
+// status can promote.
+//
+// Scope (v0.1):
+//   - Three determinability classes: precondition_set, candidate_set,
+//     decision_path.
+//   - Envelope construction, JCS canonicalization, Ed25519 signing,
+//     signature verification.
+//   - Runtime type guard.
+//
+// Out of scope (v0.2 or deferred per PR #104 notes):
+//   - pre_commit_chain class.
+//   - (F, Ω, D) structural support in the signed envelope.
+//   - Reduction-map syntax.
+//   - Truth-of-claim verifier; downstream consumer responsibility.
+//   - Privacy posture (selective disclosure, ZK over reductions).
+// ══════════════════════════════════════════════════════════════════
+export { signCognitiveAttestation, canonicalizeForSignature } from './envelope.js';
+export { verifyCognitiveAttestation } from './verify.js';
+export { isCognitiveAttestation, isPreconditionSetPayload, isCandidateSetPayload, isDecisionPathPayload, } from './types.js';
+//# sourceMappingURL=index.js.map

package/dist/src/v2/cognitive_attestation/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/v2/cognitive_attestation/index.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,qEAAqE;AACrE,2DAA2D;AAC3D,qEAAqE;AACrE,sEAAsE;AACtE,sEAAsE;AACtE,uEAAuE;AACvE,iEAAiE;AACjE,sBAAsB;AACtB,EAAE;AACF,gBAAgB;AAChB,sEAAsE;AACtE,qBAAqB;AACrB,oEAAoE;AACpE,8BAA8B;AAC9B,0BAA0B;AAC1B,EAAE;AACF,qDAAqD;AACrD,8BAA8B;AAC9B,2DAA2D;AAC3D,4BAA4B;AAC5B,mEAAmE;AACnE,kEAAkE;AAClE,qEAAqE;AAErE,OAAO,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAA;AAClF,OAAO,EAAE,0BAA0B,EAAE,MAAM,aAAa,CAAA;AACxD,OAAO,EACL,sBAAsB,EACtB,wBAAwB,EACxB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,YAAY,CAAA"}

package/dist/src/v2/cognitive_attestation/types.d.ts ADDED Viewed

@@ -0,0 +1,129 @@
+/**
+ * Literal tag for envelope discrimination at the wire level.
+ */
+export type CognitiveAttestationSignalType = 'cognitive_attestation';
+/**
+ * The three v0.1 determinability classes. `pre_commit_chain` is a v0.2
+ * candidate per PR #104 notes and is not in this union.
+ */
+export type CognitiveAttestationClass = 'precondition_set' | 'candidate_set' | 'decision_path';
+/**
+ * Class payload for precondition_set: which preconditions were available
+ * at decision time (delegation scope, policy constraints, tool availability,
+ * context window). `available_preconditions` MUST be sorted lexicographically
+ * to produce a stable canonical form; `precondition_hashes[i]` is the
+ * sha256 hex of `available_preconditions[i]`.
+ */
+export interface PreconditionSetPayload {
+    /** Sorted lexicographically. JCS-canonical preserves array order. */
+    readonly available_preconditions: readonly string[];
+    /** sha256 hex (64 lowercase chars) of each precondition string, same order. */
+    readonly precondition_hashes: readonly string[];
+}
+/**
+ * Class payload for candidate_set: which candidate actions were evaluated
+ * and which were eliminated, with elimination reasons. `elimination_reason`
+ * is REQUIRED when `eliminated === true` and MUST be omitted when
+ * `eliminated === false`.
+ */
+export interface CandidateSetPayload {
+    readonly evaluated_candidates: readonly EvaluatedCandidate[];
+}
+export interface EvaluatedCandidate {
+    /** sha256 hex of the candidate description. */
+    readonly candidate_ref: string;
+    readonly eliminated: boolean;
+    /** Required when eliminated, omitted otherwise. */
+    readonly elimination_reason?: string;
+}
+/**
+ * Class payload for decision_path: the chosen path with confidence and
+ * the structured reasoning that selected it.
+ */
+export interface DecisionPathPayload {
+    /** sha256 hex of the chosen path description. */
+    readonly chosen_path_ref: string;
+    /** Two decimal places max, 0.00 through 1.00. */
+    readonly confidence: number;
+    /** sha256 hex of each reasoning step description, in evaluation order. */
+    readonly reasoning_chain_hashes: readonly string[];
+}
+/**
+ * Discriminated union of the three class-specific envelope shapes. The
+ * `class` field is the discriminator; `class_payload` is narrowed by it.
+ */
+export type CognitiveAttestationEnvelope = PreconditionSetEnvelope | CandidateSetEnvelope | DecisionPathEnvelope;
+export interface PreconditionSetEnvelope extends CognitiveAttestationEnvelopeBase {
+    readonly class: 'precondition_set';
+    readonly class_payload: PreconditionSetPayload;
+}
+export interface CandidateSetEnvelope extends CognitiveAttestationEnvelopeBase {
+    readonly class: 'candidate_set';
+    readonly class_payload: CandidateSetPayload;
+}
+export interface DecisionPathEnvelope extends CognitiveAttestationEnvelopeBase {
+    readonly class: 'decision_path';
+    readonly class_payload: DecisionPathPayload;
+}
+/**
+ * Shared envelope shape. The signature is computed over the JCS-canonical
+ * form of the envelope with the `signature` field omitted, then attached.
+ */
+interface CognitiveAttestationEnvelopeBase {
+    readonly signal_type: CognitiveAttestationSignalType;
+    /** Ed25519 public key of the attestor, lowercase hex (64 chars). */
+    readonly agent_id: string;
+    /** sha256 hex of the decision description being attested. */
+    readonly decision_ref: string;
+    /** Unix epoch milliseconds at the moment of attestation. */
+    readonly timestamp_ms: number;
+    /** Ed25519 signature, lowercase hex (128 chars). Empty during signing. */
+    readonly signature: string;
+}
+/**
+ * Unsigned envelope shape: same fields as the signed envelope, minus the
+ * signature. The signing helper accepts this and returns a fully populated
+ * envelope.
+ */
+export type UnsignedCognitiveAttestationEnvelope = UnsignedPreconditionSetEnvelope | UnsignedCandidateSetEnvelope | UnsignedDecisionPathEnvelope;
+export type UnsignedPreconditionSetEnvelope = Omit<PreconditionSetEnvelope, 'signature'>;
+export type UnsignedCandidateSetEnvelope = Omit<CandidateSetEnvelope, 'signature'>;
+export type UnsignedDecisionPathEnvelope = Omit<DecisionPathEnvelope, 'signature'>;
+/**
+ * Result of verifying an envelope. `valid: false` carries a `reason`
+ * string naming the specific failure mode. Reasons:
+ *   - INVALID_SIGNAL_TYPE: signal_type field is not the literal.
+ *   - INVALID_CLASS: class field is not one of the v0.1 classes.
+ *   - INVALID_AGENT_ID: agent_id is not 64 lowercase hex chars.
+ *   - INVALID_SIGNATURE_FORMAT: signature is not 128 lowercase hex chars.
+ *   - INVALID_PAYLOAD: class_payload shape does not match the declared class.
+ *   - SIGNATURE_INVALID: Ed25519 verification failed.
+ */
+export interface CognitiveAttestationVerifyResult {
+    readonly valid: boolean;
+    readonly reason?: CognitiveAttestationVerifyReason;
+}
+export type CognitiveAttestationVerifyReason = 'INVALID_SIGNAL_TYPE' | 'INVALID_CLASS' | 'INVALID_AGENT_ID' | 'INVALID_SIGNATURE_FORMAT' | 'INVALID_PAYLOAD' | 'SIGNATURE_INVALID';
+/**
+ * Runtime type guard. Returns true when `value` is structurally a signed
+ * cognitive_attestation envelope of any v0.1 class. Does NOT verify the
+ * signature; use `verifyCognitiveAttestation` for that.
+ *
+ * Invariants checked:
+ *   - signal_type literal matches.
+ *   - class is one of the three v0.1 values.
+ *   - agent_id, signature, decision_ref are lowercase hex of the expected
+ *     length.
+ *   - class_payload is structurally consistent with the declared class.
+ *   - timestamp_ms is a finite, non-negative integer.
+ */
+export declare function isCognitiveAttestation(value: unknown): value is CognitiveAttestationEnvelope;
+/**
+ * Validate a precondition_set payload shape. Exported as helper for the
+ * verifier; not part of the public surface beyond the type guard.
+ */
+export declare function isPreconditionSetPayload(value: unknown): value is PreconditionSetPayload;
+export declare function isCandidateSetPayload(value: unknown): value is CandidateSetPayload;
+export declare function isDecisionPathPayload(value: unknown): value is DecisionPathPayload;
+export {};
+//# sourceMappingURL=types.d.ts.map

package/dist/src/v2/cognitive_attestation/types.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/v2/cognitive_attestation/types.ts"],"names":[],"mappings":"AAuBA;;GAEG;AACH,MAAM,MAAM,8BAA8B,GAAG,uBAAuB,CAAA;AAEpE;;;GAGG;AACH,MAAM,MAAM,yBAAyB,GACjC,kBAAkB,GAClB,eAAe,GACf,eAAe,CAAA;AAEnB;;;;;;GAMG;AACH,MAAM,WAAW,sBAAsB;IACrC,qEAAqE;IACrE,QAAQ,CAAC,uBAAuB,EAAE,SAAS,MAAM,EAAE,CAAA;IACnD,+EAA+E;IAC/E,QAAQ,CAAC,mBAAmB,EAAE,SAAS,MAAM,EAAE,CAAA;CAChD;AAED;;;;;GAKG;AACH,MAAM,WAAW,mBAAmB;IAClC,QAAQ,CAAC,oBAAoB,EAAE,SAAS,kBAAkB,EAAE,CAAA;CAC7D;AAED,MAAM,WAAW,kBAAkB;IACjC,+CAA+C;IAC/C,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;IAC9B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,mDAAmD;IACnD,QAAQ,CAAC,kBAAkB,CAAC,EAAE,MAAM,CAAA;CACrC;AAED;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,iDAAiD;IACjD,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;IAChC,iDAAiD;IACjD,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;IAC3B,0EAA0E;IAC1E,QAAQ,CAAC,sBAAsB,EAAE,SAAS,MAAM,EAAE,CAAA;CACnD;AAED;;;GAGG;AACH,MAAM,MAAM,4BAA4B,GACpC,uBAAuB,GACvB,oBAAoB,GACpB,oBAAoB,CAAA;AAExB,MAAM,WAAW,uBAAwB,SAAQ,gCAAgC;IAC/E,QAAQ,CAAC,KAAK,EAAE,kBAAkB,CAAA;IAClC,QAAQ,CAAC,aAAa,EAAE,sBAAsB,CAAA;CAC/C;AAED,MAAM,WAAW,oBAAqB,SAAQ,gCAAgC;IAC5E,QAAQ,CAAC,KAAK,EAAE,eAAe,CAAA;IAC/B,QAAQ,CAAC,aAAa,EAAE,mBAAmB,CAAA;CAC5C;AAED,MAAM,WAAW,oBAAqB,SAAQ,gCAAgC;IAC5E,QAAQ,CAAC,KAAK,EAAE,eAAe,CAAA;IAC/B,QAAQ,CAAC,aAAa,EAAE,mBAAmB,CAAA;CAC5C;AAED;;;GAGG;AACH,UAAU,gCAAgC;IACxC,QAAQ,CAAC,WAAW,EAAE,8BAA8B,CAAA;IACpD,oEAAoE;IACpE,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,6DAA6D;IAC7D,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAA;IAC7B,4DAA4D;IAC5D,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAA;IAC7B,0EAA0E;IAC1E,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC3B;AAED;;;;GAIG;AACH,MAAM,MAAM,oCAAoC,GAC5C,+BAA+B,GAC/B,4BAA4B,GAC5B,4BAA4B,CAAA;AAEhC,MAAM,MAAM,+BAA+B,GAAG,IAAI,CAAC,uBAAuB,EAAE,WAAW,CAAC,CAAA;AACxF,MAAM,MAAM,4BAA4B,GAAG,IAAI,CAAC,oBAAoB,EAAE,WAAW,CAAC,CAAA;AAClF,MAAM,MAAM,4BAA4B,GAAG,IAAI,CAAC,oBAAoB,EAAE,WAAW,CAAC,CAAA;AAElF;;;;;;;;;GASG;AACH,MAAM,WAAW,gCAAgC;IAC/C,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAA;IACvB,QAAQ,CAAC,MAAM,CAAC,EAAE,gCAAgC,CAAA;CACnD;AAED,MAAM,MAAM,gCAAgC,GACxC,qBAAqB,GACrB,eAAe,GACf,kBAAkB,GAClB,0BAA0B,GAC1B,iBAAiB,GACjB,mBAAmB,CAAA;AAMvB;;;;;;;;;;;;GAYG;AACH,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,4BAA4B,CAoB5F;AAED;;;GAGG;AACH,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,sBAAsB,CAaxF;AAED,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,mBAAmB,CAgBlF;AAED,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,mBAAmB,CAclF"}