kontext-sdk 0.6.0 → 0.7.0

package/dist/index.d.mts

@@ -765,6 +765,10 @@ interface VerifyInput extends LogTransactionInput {
     confidence?: number;
     /** Additional reasoning context */
     context?: Record<string, unknown>;
+    /** When provided, anchors the terminal digest on-chain after compliance checks */
+    anchor?: OnChainAnchorConfig;
+    /** Counterparty agent for bilateral A2A attestation exchange */
+    counterparty?: CounterpartyConfig;
 }
 /** Result of the verify() convenience method */
 interface VerifyResult {
@@ -790,6 +794,10 @@ interface VerifyResult {
     };
     /** Reasoning entry ID (present when reasoning was provided in input) */
     reasoningId?: string;
+    /** On-chain anchor proof (present when anchor config provided in input) */
+    anchorProof?: AnchorResult;
+    /** Counterparty attestation (present when counterparty config provided in input) */
+    counterparty?: CounterpartyAttestation;
     /** True when the transaction amount exceeds the approvalThreshold */
     requiresApproval?: boolean;
     /** The pending approval task (present when requiresApproval is true) */
@@ -852,6 +860,102 @@ interface ReasoningEntry {
     /** Context */
     context: Record<string, unknown>;
 }
+/** Configuration for on-chain digest anchoring */
+interface OnChainAnchorConfig {
+    /** JSON-RPC URL for the target chain */
+    rpcUrl: string;
+    /** KontextAnchor contract address */
+    contractAddress: string;
+    /** Private key of the signer (hex with 0x prefix). Required for write operations. */
+    privateKey?: string;
+}
+/** Result of an on-chain anchor transaction */
+interface AnchorResult {
+    /** The digest that was anchored */
+    digest: string;
+    /** The on-chain transaction hash */
+    txHash: string;
+    /** The block number containing the anchor */
+    blockNumber: number;
+    /** Block timestamp (unix seconds) */
+    timestamp: number;
+    /** Contract address used */
+    contractAddress: string;
+    /** Chain the anchor was submitted to */
+    chain: string;
+}
+/** Result of verifying an anchor on-chain */
+interface AnchorVerification {
+    /** Whether the digest was found on-chain */
+    anchored: boolean;
+    /** The digest that was checked */
+    digest: string;
+    /** Anchorer address (if anchored) */
+    anchorer?: string;
+    /** Project hash (if anchored) */
+    projectHash?: string;
+    /** Block timestamp (if anchored) */
+    timestamp?: number;
+}
+/** Agent card served at /.well-known/kontext.json */
+interface AgentCard {
+    /** Agent identifier */
+    agentId: string;
+    /** Kontext SDK version */
+    kontextVersion: string;
+    /** Supported capabilities (e.g., ['verify', 'attest']) */
+    capabilities: string[];
+    /** Attestation endpoint path (relative to host) */
+    attestEndpoint: string;
+}
+/** Counterparty configuration for verify() */
+interface CounterpartyConfig {
+    /** Base URL of the counterparty agent (e.g., https://agent.example.com) */
+    endpoint: string;
+    /** Expected agent ID (optional, verified against agent card) */
+    agentId?: string;
+    /** Timeout for attestation exchange in milliseconds (default: 10000) */
+    timeoutMs?: number;
+}
+/** Attestation request sent to counterparty */
+interface AttestationRequest {
+    /** Sender's terminal digest */
+    senderDigest: string;
+    /** Sender's agent ID */
+    senderAgentId: string;
+    /** Transaction hash */
+    txHash?: string;
+    /** Chain */
+    chain?: string;
+    /** Transfer amount */
+    amount: string;
+    /** Token */
+    token?: string;
+    /** Timestamp of the request */
+    timestamp: string;
+}
+/** Attestation response from counterparty */
+interface AttestationResponse {
+    /** Whether the counterparty attested */
+    attested: boolean;
+    /** Counterparty's terminal digest */
+    receiverDigest: string;
+    /** Counterparty's agent ID */
+    receiverAgentId: string;
+    /** Timestamp of attestation */
+    timestamp: string;
+}
+/** Counterparty attestation result included in VerifyResult */
+interface CounterpartyAttestation {
+    /** Whether the counterparty successfully attested */
+    attested: boolean;
+    /** Counterparty's digest (proof they ran compliance) */
+    digest: string;
+    /** Counterparty's agent ID */
+    agentId: string;
+    /** Attestation timestamp */
+    timestamp: string;
+}
 /** Error codes for Kontext SDK */
 declare enum KontextErrorCode {
     INITIALIZATION_ERROR = "INITIALIZATION_ERROR",
@@ -1837,6 +1941,57 @@ declare class PaymentCompliance {
     private static generateRecommendations;
 }
 
+/**
+ * Verify whether a digest has been anchored on-chain.
+ * Uses eth_call — no signing required, no dependencies.
+ */
+declare function verifyAnchor(rpcUrl: string, contractAddress: string, digest: string): Promise<AnchorVerification>;
+/**
+ * Get full anchor details for a digest.
+ * Returns null if the digest is not anchored.
+ */
+declare function getAnchor(rpcUrl: string, contractAddress: string, digest: string): Promise<{
+    anchorer: string;
+    projectHash: string;
+    timestamp: number;
+} | null>;
+/**
+ * Anchor a digest hash on-chain via the KontextAnchor contract.
+ * Requires viem: `npm install viem`
+ */
+declare function anchorDigest(config: OnChainAnchorConfig, digest: string, projectId: string): Promise<AnchorResult>;
+/**
+ * Exporter that anchors terminal digest hashes on Base chain.
+ * Buffers events and anchors when batchSize is reached.
+ */
+declare class OnChainExporter implements EventExporter {
+    private readonly config;
+    private readonly projectId;
+    private readonly batchSize;
+    private readonly getTerminalDigest;
+    private eventCount;
+    constructor(config: OnChainAnchorConfig, projectId: string, getTerminalDigest: () => string);
+    export(events: ActionLog[]): Promise<ExporterResult>;
+    flush(): Promise<void>;
+    shutdown(): Promise<void>;
+}
+
+/**
+ * Fetch the counterparty's agent card from /.well-known/kontext.json
+ */
+declare function fetchAgentCard(endpoint: string, timeoutMs?: number): Promise<AgentCard>;
+/**
+ * Exchange compliance attestation with a counterparty agent.
+ *
+ * Flow:
+ * 1. Fetch counterparty's agent card from /.well-known/kontext.json
+ * 2. Validate agent ID if specified
+ * 3. Verify counterparty supports attestation
+ * 4. POST attestation request to counterparty's attest endpoint
+ * 5. Return counterparty's attestation response
+ */
+declare function exchangeAttestation(config: CounterpartyConfig, request: AttestationRequest): Promise<CounterpartyAttestation>;
+
 /**
  * In-memory data store for the Kontext SDK.
  * Holds all action logs, transactions, tasks, and anomaly events.
@@ -2182,4 +2337,4 @@ declare class AnomalyDetector {
     private notifyCallbacks;
 }
 
-export { type ActionLog, type AgentData, type AnomalyCallback, type AnomalyDetectionConfig, AnomalyDetector, type AnomalyEvent, type AnomalyRuleType, type AnomalySeverity, type AnomalyThresholds, type Chain, type ComplianceCertificate, type ComplianceCheckResult, type ComplianceReport, type ConfirmTaskInput, ConsoleExporter, type CreateTaskInput, type DateRange, DigestChain, type DigestLink, type DigestVerification, type Environment, type EventExporter, type ExportFormat, type ExportOptions, type ExportResult, type ExporterResult, type FeatureFlag, type FeatureFlagConfig, FeatureFlagManager, FileStorage, type FlagPlanTargeting, type FlagScope, type FlagTargeting, type GatedFeature, type GenerateComplianceCertificateInput, JsonFileExporter, Kontext, type KontextConfig, KontextError, KontextErrorCode, type KontextMode, type LimitEvent, type LogActionInput, type LogLevel, type LogReasoningInput, type LogTransactionInput, MemoryStorage, type MetadataValidator, NoopExporter, PLAN_LIMITS, PaymentCompliance, type PlanConfig, PlanManager, type PlanTier, type PlanUsage, type PrecisionTimestamp, type ReasoningEntry, type ReportOptions, type ReportType, type RiskFactor, type SanctionsCheckResult, type StorageAdapter, type Task, type TaskEvidence, type TaskStatus, type Token, type TransactionEvaluation, type TransactionRecord, type TrustFactor, type TrustScore, TrustScorer, UsdcCompliance, type UsdcComplianceCheck, type VerifyInput, type VerifyResult, isCryptoTransaction, isFeatureAvailable, requirePlan, verifyExportedChain };
+export { type ActionLog, type AgentCard, type AgentData, type AnchorResult, type AnchorVerification, type AnomalyCallback, type AnomalyDetectionConfig, AnomalyDetector, type AnomalyEvent, type AnomalyRuleType, type AnomalySeverity, type AnomalyThresholds, type AttestationRequest, type AttestationResponse, type Chain, type ComplianceCertificate, type ComplianceCheckResult, type ComplianceReport, type ConfirmTaskInput, ConsoleExporter, type CounterpartyAttestation, type CounterpartyConfig, type CreateTaskInput, type DateRange, DigestChain, type DigestLink, type DigestVerification, type Environment, type EventExporter, type ExportFormat, type ExportOptions, type ExportResult, type ExporterResult, type FeatureFlag, type FeatureFlagConfig, FeatureFlagManager, FileStorage, type FlagPlanTargeting, type FlagScope, type FlagTargeting, type GatedFeature, type GenerateComplianceCertificateInput, JsonFileExporter, Kontext, type KontextConfig, KontextError, KontextErrorCode, type KontextMode, type LimitEvent, type LogActionInput, type LogLevel, type LogReasoningInput, type LogTransactionInput, MemoryStorage, type MetadataValidator, NoopExporter, type OnChainAnchorConfig, OnChainExporter, PLAN_LIMITS, PaymentCompliance, type PlanConfig, PlanManager, type PlanTier, type PlanUsage, type PrecisionTimestamp, type ReasoningEntry, type ReportOptions, type ReportType, type RiskFactor, type SanctionsCheckResult, type StorageAdapter, type Task, type TaskEvidence, type TaskStatus, type Token, type TransactionEvaluation, type TransactionRecord, type TrustFactor, type TrustScore, TrustScorer, UsdcCompliance, type UsdcComplianceCheck, type VerifyInput, type VerifyResult, anchorDigest, exchangeAttestation, fetchAgentCard, getAnchor, isCryptoTransaction, isFeatureAvailable, requirePlan, verifyAnchor, verifyExportedChain };

package/dist/index.d.ts

@@ -765,6 +765,10 @@ interface VerifyInput extends LogTransactionInput {
     confidence?: number;
     /** Additional reasoning context */
     context?: Record<string, unknown>;
+    /** When provided, anchors the terminal digest on-chain after compliance checks */
+    anchor?: OnChainAnchorConfig;
+    /** Counterparty agent for bilateral A2A attestation exchange */
+    counterparty?: CounterpartyConfig;
 }
 /** Result of the verify() convenience method */
 interface VerifyResult {
@@ -790,6 +794,10 @@ interface VerifyResult {
     };
     /** Reasoning entry ID (present when reasoning was provided in input) */
     reasoningId?: string;
+    /** On-chain anchor proof (present when anchor config provided in input) */
+    anchorProof?: AnchorResult;
+    /** Counterparty attestation (present when counterparty config provided in input) */
+    counterparty?: CounterpartyAttestation;
     /** True when the transaction amount exceeds the approvalThreshold */
     requiresApproval?: boolean;
     /** The pending approval task (present when requiresApproval is true) */
@@ -852,6 +860,102 @@ interface ReasoningEntry {
     /** Context */
     context: Record<string, unknown>;
 }
+/** Configuration for on-chain digest anchoring */
+interface OnChainAnchorConfig {
+    /** JSON-RPC URL for the target chain */
+    rpcUrl: string;
+    /** KontextAnchor contract address */
+    contractAddress: string;
+    /** Private key of the signer (hex with 0x prefix). Required for write operations. */
+    privateKey?: string;
+}
+/** Result of an on-chain anchor transaction */
+interface AnchorResult {
+    /** The digest that was anchored */
+    digest: string;
+    /** The on-chain transaction hash */
+    txHash: string;
+    /** The block number containing the anchor */
+    blockNumber: number;
+    /** Block timestamp (unix seconds) */
+    timestamp: number;
+    /** Contract address used */
+    contractAddress: string;
+    /** Chain the anchor was submitted to */
+    chain: string;
+}
+/** Result of verifying an anchor on-chain */
+interface AnchorVerification {
+    /** Whether the digest was found on-chain */
+    anchored: boolean;
+    /** The digest that was checked */
+    digest: string;
+    /** Anchorer address (if anchored) */
+    anchorer?: string;
+    /** Project hash (if anchored) */
+    projectHash?: string;
+    /** Block timestamp (if anchored) */
+    timestamp?: number;
+}
+/** Agent card served at /.well-known/kontext.json */
+interface AgentCard {
+    /** Agent identifier */
+    agentId: string;
+    /** Kontext SDK version */
+    kontextVersion: string;
+    /** Supported capabilities (e.g., ['verify', 'attest']) */
+    capabilities: string[];
+    /** Attestation endpoint path (relative to host) */
+    attestEndpoint: string;
+}
+/** Counterparty configuration for verify() */
+interface CounterpartyConfig {
+    /** Base URL of the counterparty agent (e.g., https://agent.example.com) */
+    endpoint: string;
+    /** Expected agent ID (optional, verified against agent card) */
+    agentId?: string;
+    /** Timeout for attestation exchange in milliseconds (default: 10000) */
+    timeoutMs?: number;
+}
+/** Attestation request sent to counterparty */
+interface AttestationRequest {
+    /** Sender's terminal digest */
+    senderDigest: string;
+    /** Sender's agent ID */
+    senderAgentId: string;
+    /** Transaction hash */
+    txHash?: string;
+    /** Chain */
+    chain?: string;
+    /** Transfer amount */
+    amount: string;
+    /** Token */
+    token?: string;
+    /** Timestamp of the request */
+    timestamp: string;
+}
+/** Attestation response from counterparty */
+interface AttestationResponse {
+    /** Whether the counterparty attested */
+    attested: boolean;
+    /** Counterparty's terminal digest */
+    receiverDigest: string;
+    /** Counterparty's agent ID */
+    receiverAgentId: string;
+    /** Timestamp of attestation */
+    timestamp: string;
+}
+/** Counterparty attestation result included in VerifyResult */
+interface CounterpartyAttestation {
+    /** Whether the counterparty successfully attested */
+    attested: boolean;
+    /** Counterparty's digest (proof they ran compliance) */
+    digest: string;
+    /** Counterparty's agent ID */
+    agentId: string;
+    /** Attestation timestamp */
+    timestamp: string;
+}
 /** Error codes for Kontext SDK */
 declare enum KontextErrorCode {
     INITIALIZATION_ERROR = "INITIALIZATION_ERROR",
@@ -1837,6 +1941,57 @@ declare class PaymentCompliance {
     private static generateRecommendations;
 }
 
+/**
+ * Verify whether a digest has been anchored on-chain.
+ * Uses eth_call — no signing required, no dependencies.
+ */
+declare function verifyAnchor(rpcUrl: string, contractAddress: string, digest: string): Promise<AnchorVerification>;
+/**
+ * Get full anchor details for a digest.
+ * Returns null if the digest is not anchored.
+ */
+declare function getAnchor(rpcUrl: string, contractAddress: string, digest: string): Promise<{
+    anchorer: string;
+    projectHash: string;
+    timestamp: number;
+} | null>;
+/**
+ * Anchor a digest hash on-chain via the KontextAnchor contract.
+ * Requires viem: `npm install viem`
+ */
+declare function anchorDigest(config: OnChainAnchorConfig, digest: string, projectId: string): Promise<AnchorResult>;
+/**
+ * Exporter that anchors terminal digest hashes on Base chain.
+ * Buffers events and anchors when batchSize is reached.
+ */
+declare class OnChainExporter implements EventExporter {
+    private readonly config;
+    private readonly projectId;
+    private readonly batchSize;
+    private readonly getTerminalDigest;
+    private eventCount;
+    constructor(config: OnChainAnchorConfig, projectId: string, getTerminalDigest: () => string);
+    export(events: ActionLog[]): Promise<ExporterResult>;
+    flush(): Promise<void>;
+    shutdown(): Promise<void>;
+}
+
+/**
+ * Fetch the counterparty's agent card from /.well-known/kontext.json
+ */
+declare function fetchAgentCard(endpoint: string, timeoutMs?: number): Promise<AgentCard>;
+/**
+ * Exchange compliance attestation with a counterparty agent.
+ *
+ * Flow:
+ * 1. Fetch counterparty's agent card from /.well-known/kontext.json
+ * 2. Validate agent ID if specified
+ * 3. Verify counterparty supports attestation
+ * 4. POST attestation request to counterparty's attest endpoint
+ * 5. Return counterparty's attestation response
+ */
+declare function exchangeAttestation(config: CounterpartyConfig, request: AttestationRequest): Promise<CounterpartyAttestation>;
+
 /**
  * In-memory data store for the Kontext SDK.
  * Holds all action logs, transactions, tasks, and anomaly events.
@@ -2182,4 +2337,4 @@ declare class AnomalyDetector {
     private notifyCallbacks;
 }
 
-export { type ActionLog, type AgentData, type AnomalyCallback, type AnomalyDetectionConfig, AnomalyDetector, type AnomalyEvent, type AnomalyRuleType, type AnomalySeverity, type AnomalyThresholds, type Chain, type ComplianceCertificate, type ComplianceCheckResult, type ComplianceReport, type ConfirmTaskInput, ConsoleExporter, type CreateTaskInput, type DateRange, DigestChain, type DigestLink, type DigestVerification, type Environment, type EventExporter, type ExportFormat, type ExportOptions, type ExportResult, type ExporterResult, type FeatureFlag, type FeatureFlagConfig, FeatureFlagManager, FileStorage, type FlagPlanTargeting, type FlagScope, type FlagTargeting, type GatedFeature, type GenerateComplianceCertificateInput, JsonFileExporter, Kontext, type KontextConfig, KontextError, KontextErrorCode, type KontextMode, type LimitEvent, type LogActionInput, type LogLevel, type LogReasoningInput, type LogTransactionInput, MemoryStorage, type MetadataValidator, NoopExporter, PLAN_LIMITS, PaymentCompliance, type PlanConfig, PlanManager, type PlanTier, type PlanUsage, type PrecisionTimestamp, type ReasoningEntry, type ReportOptions, type ReportType, type RiskFactor, type SanctionsCheckResult, type StorageAdapter, type Task, type TaskEvidence, type TaskStatus, type Token, type TransactionEvaluation, type TransactionRecord, type TrustFactor, type TrustScore, TrustScorer, UsdcCompliance, type UsdcComplianceCheck, type VerifyInput, type VerifyResult, isCryptoTransaction, isFeatureAvailable, requirePlan, verifyExportedChain };
+export { type ActionLog, type AgentCard, type AgentData, type AnchorResult, type AnchorVerification, type AnomalyCallback, type AnomalyDetectionConfig, AnomalyDetector, type AnomalyEvent, type AnomalyRuleType, type AnomalySeverity, type AnomalyThresholds, type AttestationRequest, type AttestationResponse, type Chain, type ComplianceCertificate, type ComplianceCheckResult, type ComplianceReport, type ConfirmTaskInput, ConsoleExporter, type CounterpartyAttestation, type CounterpartyConfig, type CreateTaskInput, type DateRange, DigestChain, type DigestLink, type DigestVerification, type Environment, type EventExporter, type ExportFormat, type ExportOptions, type ExportResult, type ExporterResult, type FeatureFlag, type FeatureFlagConfig, FeatureFlagManager, FileStorage, type FlagPlanTargeting, type FlagScope, type FlagTargeting, type GatedFeature, type GenerateComplianceCertificateInput, JsonFileExporter, Kontext, type KontextConfig, KontextError, KontextErrorCode, type KontextMode, type LimitEvent, type LogActionInput, type LogLevel, type LogReasoningInput, type LogTransactionInput, MemoryStorage, type MetadataValidator, NoopExporter, type OnChainAnchorConfig, OnChainExporter, PLAN_LIMITS, PaymentCompliance, type PlanConfig, PlanManager, type PlanTier, type PlanUsage, type PrecisionTimestamp, type ReasoningEntry, type ReportOptions, type ReportType, type RiskFactor, type SanctionsCheckResult, type StorageAdapter, type Task, type TaskEvidence, type TaskStatus, type Token, type TransactionEvaluation, type TransactionRecord, type TrustFactor, type TrustScore, TrustScorer, UsdcCompliance, type UsdcComplianceCheck, type VerifyInput, type VerifyResult, anchorDigest, exchangeAttestation, fetchAgentCard, getAnchor, isCryptoTransaction, isFeatureAvailable, requirePlan, verifyAnchor, verifyExportedChain };

package/dist/index.js

@@ -25,12 +25,229 @@ function _interopNamespace(e) {
 var fs4__namespace = /*#__PURE__*/_interopNamespace(fs4);
 var path4__namespace = /*#__PURE__*/_interopNamespace(path4);
 
+var __defProp = Object.defineProperty;
+var __getOwnPropNames = Object.getOwnPropertyNames;
 var __require = /* @__PURE__ */ ((x) => typeof require !== "undefined" ? require : typeof Proxy !== "undefined" ? new Proxy(x, {
   get: (a, b) => (typeof require !== "undefined" ? require : a)[b]
 }) : x)(function(x) {
   if (typeof require !== "undefined") return require.apply(this, arguments);
   throw Error('Dynamic require of "' + x + '" is not supported');
 });
+var __esm = (fn, res) => function __init() {
+  return fn && (res = (0, fn[__getOwnPropNames(fn)[0]])(fn = 0)), res;
+};
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+
+// src/onchain.ts
+var onchain_exports = {};
+__export(onchain_exports, {
+  OnChainExporter: () => exports.OnChainExporter,
+  anchorDigest: () => anchorDigest,
+  getAnchor: () => getAnchor,
+  verifyAnchor: () => verifyAnchor
+});
+async function rpcCall(rpcUrl, method, params) {
+  const res = await fetch(rpcUrl, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify({ jsonrpc: "2.0", id: 1, method, params })
+  });
+  const json = await res.json();
+  if (json.error) throw new Error(`RPC error: ${json.error.message}`);
+  return json.result;
+}
+function encodeBytes32(hex) {
+  const clean = hex.startsWith("0x") ? hex.slice(2) : hex;
+  return clean.padStart(64, "0");
+}
+function decodeUint256(hex) {
+  const clean = hex.startsWith("0x") ? hex.slice(2) : hex;
+  return parseInt(clean, 16);
+}
+function decodeAddress(hex) {
+  const clean = hex.startsWith("0x") ? hex.slice(2) : hex;
+  return "0x" + clean.slice(24);
+}
+async function verifyAnchor(rpcUrl, contractAddress, digest) {
+  const calldata = SEL_VERIFY + encodeBytes32(digest);
+  const result = await rpcCall(rpcUrl, "eth_call", [
+    { to: contractAddress, data: calldata },
+    "latest"
+  ]);
+  const anchored = decodeUint256(result) !== 0;
+  return { anchored, digest };
+}
+async function getAnchor(rpcUrl, contractAddress, digest) {
+  const calldata = SEL_GET_ANCHOR + encodeBytes32(digest);
+  try {
+    const result = await rpcCall(rpcUrl, "eth_call", [
+      { to: contractAddress, data: calldata },
+      "latest"
+    ]);
+    const clean = result.startsWith("0x") ? result.slice(2) : result;
+    if (clean.length < 192) return null;
+    const anchorer = decodeAddress(clean.slice(0, 64));
+    const projectHash = "0x" + clean.slice(64, 128);
+    const timestamp = decodeUint256("0x" + clean.slice(128, 192));
+    return { anchorer, projectHash, timestamp };
+  } catch {
+    return null;
+  }
+}
+async function anchorDigest(config, digest, projectId) {
+  let viem;
+  let viemChains;
+  let viemAccounts;
+  try {
+    viem = await import('viem');
+    viemChains = await import('viem/chains');
+    viemAccounts = await import('viem/accounts');
+  } catch {
+    throw new Error(
+      "On-chain anchoring requires viem. Install it: npm install viem"
+    );
+  }
+  if (!config.privateKey) {
+    throw new Error("privateKey is required for on-chain anchoring");
+  }
+  const account = viemAccounts.privateKeyToAccount(config.privateKey);
+  const chain = config.rpcUrl.includes("sepolia") ? viemChains.baseSepolia : viemChains.base;
+  const client = viem.createWalletClient({
+    account,
+    chain,
+    transport: viem.http(config.rpcUrl)
+  });
+  const publicClient = viem.createPublicClient({
+    chain,
+    transport: viem.http(config.rpcUrl)
+  });
+  const projectHash = viem.keccak256(viem.toBytes(projectId));
+  const digestBytes32 = digest.startsWith("0x") ? digest : `0x${digest}`;
+  const abi = [
+    {
+      name: "anchor",
+      type: "function",
+      stateMutability: "nonpayable",
+      inputs: [
+        { name: "digest", type: "bytes32" },
+        { name: "projectHash", type: "bytes32" }
+      ],
+      outputs: []
+    }
+  ];
+  const txHash = await client.writeContract({
+    address: config.contractAddress,
+    abi,
+    functionName: "anchor",
+    args: [digestBytes32, projectHash]
+  });
+  const receipt = await publicClient.waitForTransactionReceipt({ hash: txHash });
+  return {
+    digest,
+    txHash,
+    blockNumber: Number(receipt.blockNumber),
+    timestamp: Math.floor(Date.now() / 1e3),
+    contractAddress: config.contractAddress,
+    chain: chain.name.toLowerCase()
+  };
+}
+var SEL_VERIFY, SEL_GET_ANCHOR; exports.OnChainExporter = void 0;
+var init_onchain = __esm({
+  "src/onchain.ts"() {
+    SEL_VERIFY = "0x75e36616";
+    SEL_GET_ANCHOR = "0x7feb51d9";
+    exports.OnChainExporter = class {
+      config;
+      projectId;
+      batchSize;
+      getTerminalDigest;
+      eventCount = 0;
+      constructor(config, projectId, getTerminalDigest) {
+        this.config = config;
+        this.projectId = projectId;
+        this.batchSize = 10;
+        this.getTerminalDigest = getTerminalDigest;
+      }
+      async export(events) {
+        this.eventCount += events.length;
+        if (this.eventCount >= this.batchSize) {
+          const digest = this.getTerminalDigest();
+          await anchorDigest(this.config, digest, this.projectId);
+          this.eventCount = 0;
+        }
+        return { success: true, exportedCount: events.length };
+      }
+      async flush() {
+        if (this.eventCount > 0) {
+          const digest = this.getTerminalDigest();
+          await anchorDigest(this.config, digest, this.projectId);
+          this.eventCount = 0;
+        }
+      }
+      async shutdown() {
+        await this.flush();
+      }
+    };
+  }
+});
+
+// src/attestation.ts
+var attestation_exports = {};
+__export(attestation_exports, {
+  exchangeAttestation: () => exchangeAttestation,
+  fetchAgentCard: () => fetchAgentCard
+});
+async function fetchAgentCard(endpoint, timeoutMs = DEFAULT_TIMEOUT_MS) {
+  const url = `${endpoint.replace(/\/$/, "")}/.well-known/kontext.json`;
+  const response = await fetch(url, {
+    signal: AbortSignal.timeout(timeoutMs),
+    headers: { Accept: "application/json" }
+  });
+  if (!response.ok) {
+    throw new Error(`Failed to fetch agent card from ${url}: ${response.status}`);
+  }
+  return response.json();
+}
+async function exchangeAttestation(config, request) {
+  const timeoutMs = config.timeoutMs ?? DEFAULT_TIMEOUT_MS;
+  const card = await fetchAgentCard(config.endpoint, timeoutMs);
+  if (config.agentId && card.agentId !== config.agentId) {
+    throw new Error(
+      `Agent ID mismatch: expected ${config.agentId}, got ${card.agentId}`
+    );
+  }
+  if (!card.capabilities.includes("attest")) {
+    throw new Error(
+      `Counterparty ${card.agentId} does not support attestation`
+    );
+  }
+  const attestUrl = `${config.endpoint.replace(/\/$/, "")}${card.attestEndpoint}`;
+  const response = await fetch(attestUrl, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify(request),
+    signal: AbortSignal.timeout(timeoutMs)
+  });
+  if (!response.ok) {
+    throw new Error(`Attestation request failed: ${response.status}`);
+  }
+  const result = await response.json();
+  return {
+    attested: result.attested,
+    digest: result.receiverDigest,
+    agentId: result.receiverAgentId,
+    timestamp: result.timestamp
+  };
+}
+var DEFAULT_TIMEOUT_MS;
+var init_attestation = __esm({
+  "src/attestation.ts"() {
+    DEFAULT_TIMEOUT_MS = 1e4;
+  }
+});
 
 // src/utils.ts
 function generateId() {
@@ -3778,6 +3995,24 @@ var Kontext = class _Kontext {
     const verification = this.verifyDigestChain();
     const chainLength = this.logger.getDigestChain().getChainLength();
     const terminalDigest = this.getTerminalDigest();
+    let anchorProof;
+    if (input.anchor) {
+      const { anchorDigest: anchorDigest2 } = await Promise.resolve().then(() => (init_onchain(), onchain_exports));
+      anchorProof = await anchorDigest2(input.anchor, terminalDigest, this.config.projectId);
+    }
+    let counterpartyResult;
+    if (input.counterparty) {
+      const { exchangeAttestation: exchangeAttestation2 } = await Promise.resolve().then(() => (init_attestation(), attestation_exports));
+      counterpartyResult = await exchangeAttestation2(input.counterparty, {
+        senderDigest: terminalDigest,
+        senderAgentId: input.agentId,
+        txHash: input.txHash,
+        chain: input.chain,
+        amount: input.amount,
+        token: input.token,
+        timestamp: (/* @__PURE__ */ new Date()).toISOString()
+      });
+    }
     let requiresApproval;
     let task;
     if (this.config.approvalThreshold) {
@@ -3819,7 +4054,9 @@ var Kontext = class _Kontext {
         valid: verification.valid
       },
       ...reasoningId ? { reasoningId } : {},
-      ...requiresApproval ? { requiresApproval, task } : {}
+      ...requiresApproval ? { requiresApproval, task } : {},
+      ...anchorProof ? { anchorProof } : {},
+      ...counterpartyResult ? { counterparty: counterpartyResult } : {}
     };
   }
   // --------------------------------------------------------------------------
@@ -4200,6 +4437,10 @@ var FileStorage = class {
   }
 };
 
+// src/index.ts
+init_onchain();
+init_attestation();
+
 exports.AnomalyDetector = AnomalyDetector;
 exports.ConsoleExporter = ConsoleExporter;
 exports.DigestChain = DigestChain;
@@ -4216,9 +4457,14 @@ exports.PaymentCompliance = PaymentCompliance;
 exports.PlanManager = PlanManager;
 exports.TrustScorer = TrustScorer;
 exports.UsdcCompliance = UsdcCompliance;
+exports.anchorDigest = anchorDigest;
+exports.exchangeAttestation = exchangeAttestation;
+exports.fetchAgentCard = fetchAgentCard;
+exports.getAnchor = getAnchor;
 exports.isCryptoTransaction = isCryptoTransaction;
 exports.isFeatureAvailable = isFeatureAvailable;
 exports.requirePlan = requirePlan;
+exports.verifyAnchor = verifyAnchor;
 exports.verifyExportedChain = verifyExportedChain;
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map