npm - mneme-ai - Versions diffs - 2.78.0 → 2.79.0 - Mend

mneme-ai 2.78.0 → 2.79.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/dist/commands/notary.d.ts +23 -0
package/dist/commands/notary.d.ts.map +1 -0
package/dist/commands/notary.js +89 -0
package/dist/commands/notary.js.map +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +28 -0
package/dist/index.js.map +1 -1
package/package.json +5 -5

package/dist/commands/notary.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+/**
+ * v2.79.0 — `mneme notary <action>`
+ *
+ * Portable proof-of-provenance receipts (Ed25519). Verify with a public key
+ * alone — no Mneme, no network, no shared secret.
+ *
+ *   mneme notary pubkey            — show this repo's issuer public key + fingerprint
+ *   mneme notary issue   --subject S [--kind K] [--payload JSON] [--no-payload] [--prev ID]
+ *   mneme notary verify  <file|->  — verify a receipt OFFLINE (exit 0 valid, 1 invalid)
+ */
+export interface NotaryOpts {
+    cwd: string;
+    action: string;
+    subject?: string;
+    kind?: string;
+    payload?: string;
+    noPayload?: boolean;
+    prev?: string;
+    file?: string;
+    json?: boolean;
+}
+export declare function notaryCommand(opts: NotaryOpts): Promise<number>;
+//# sourceMappingURL=notary.d.ts.map

package/dist/commands/notary.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"notary.d.ts","sourceRoot":"","sources":["../../src/commands/notary.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAUH,MAAM,WAAW,UAAU;IACzB,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAID,wBAAsB,aAAa,CAAC,IAAI,EAAE,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,CA8CrE"}

package/dist/commands/notary.js ADDED Viewed

@@ -0,0 +1,89 @@
+/**
+ * v2.79.0 — `mneme notary <action>`
+ *
+ * Portable proof-of-provenance receipts (Ed25519). Verify with a public key
+ * alone — no Mneme, no network, no shared secret.
+ *
+ *   mneme notary pubkey            — show this repo's issuer public key + fingerprint
+ *   mneme notary issue   --subject S [--kind K] [--payload JSON] [--no-payload] [--prev ID]
+ *   mneme notary verify  <file|->  — verify a receipt OFFLINE (exit 0 valid, 1 invalid)
+ */
+import { writeSync, readFileSync } from "node:fs";
+import * as core from "@mneme-ai/core";
+import { parseJsonArg } from "../util/json_arg.js";
+function out(s) {
+    try {
+        writeSync(1, s);
+    }
+    catch {
+        process.stdout.write(s);
+    }
+}
+const KINDS = new Set(["claim-verdict", "protocol-hop", "memory-capsule", "reasoning-trace", "generic"]);
+export async function notaryCommand(opts) {
+    const { getIssuerKeyPair, issueReceipt, verifyReceipt } = core.notary;
+    if (opts.action === "pubkey" || opts.action === "keygen") {
+        const kp = getIssuerKeyPair(opts.cwd);
+        if (opts.json) {
+            out(JSON.stringify({ alg: "ed25519", fingerprint: kp.fingerprint, publicKeyB64: kp.publicKeyB64 }, null, 2) + "\n");
+            return 0;
+        }
+        out(`🪪 MNEME NOTARY — issuer public key (this repo)\n\n  alg:         ed25519\n  fingerprint: ${kp.fingerprint}\n  publicKey:   ${kp.publicKeyB64}\n\n  Share the public key. Anyone can verify your receipts offline with it.\n  The private key stays in .mneme/notary/issuer.key (never shared).\n`);
+        return 0;
+    }
+    if (opts.action === "issue") {
+        if (!opts.subject) {
+            out("✗ issue requires --subject\n");
+            return 2;
+        }
+        const kind = opts.kind && KINDS.has(opts.kind) ? opts.kind : "generic";
+        let payload = undefined;
+        if (opts.payload) {
+            try {
+                payload = parseJsonArg(opts.payload);
+            }
+            catch {
+                out("✗ --payload is not valid JSON\n");
+                return 2;
+            }
+        }
+        const r = issueReceipt(opts.cwd, {
+            kind, subject: opts.subject, payload,
+            includePayload: !opts.noPayload, prev: opts.prev ?? null,
+        });
+        out(JSON.stringify(r, null, 2) + "\n");
+        return 0;
+    }
+    if (opts.action === "verify") {
+        let raw;
+        try {
+            raw = opts.file && opts.file !== "-" ? readFileSync(opts.file, "utf8") : readFileSync(0, "utf8");
+        }
+        catch (e) {
+            out(`✗ cannot read receipt: ${e.message}\n`);
+            return 2;
+        }
+        let receipt;
+        try {
+            receipt = JSON.parse(raw);
+        }
+        catch {
+            out("✗ receipt is not valid JSON\n");
+            return 2;
+        }
+        const v = verifyReceipt(receipt);
+        if (opts.json) {
+            out(JSON.stringify(v, null, 2) + "\n");
+            return v.valid ? 0 : 1;
+        }
+        if (v.valid) {
+            out(`🟢 VALID — signature verifies offline against the embedded public key.\n  issuer:   ${v.issuerFingerprint}\n  kind:     ${v.kind}\n  subject:  ${v.subject}\n`);
+            return 0;
+        }
+        out(`🔴 INVALID — ${v.reason}\n`);
+        return 1;
+    }
+    out(`✗ Unknown notary action "${opts.action}". Try: pubkey | issue | verify\n`);
+    return 2;
+}
+//# sourceMappingURL=notary.js.map

package/dist/commands/notary.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"notary.js","sourceRoot":"","sources":["../../src/commands/notary.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAClD,OAAO,KAAK,IAAI,MAAM,gBAAgB,CAAC;AACvC,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,SAAS,GAAG,CAAC,CAAS;IACpB,IAAI,CAAC;QAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAAC,CAAC;IAAC,MAAM,CAAC;QAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC;AAC7D,CAAC;AAcD,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,CAAC,eAAe,EAAE,cAAc,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,SAAS,CAAC,CAAC,CAAC;AAEzG,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,IAAgB;IAClD,MAAM,EAAE,gBAAgB,EAAE,YAAY,EAAE,aAAa,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC;IAEtE,IAAI,IAAI,CAAC,MAAM,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QACzD,MAAM,EAAE,GAAG,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACtC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,WAAW,EAAE,YAAY,EAAE,EAAE,CAAC,YAAY,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;YAAC,OAAO,CAAC,CAAC;QAAC,CAAC;QACjJ,GAAG,CAAC,6FAA6F,EAAE,CAAC,WAAW,oBAAoB,EAAE,CAAC,YAAY,qJAAqJ,CAAC,CAAC;QACzS,OAAO,CAAC,CAAC;IACX,CAAC;IAED,IAAI,IAAI,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;QAC5B,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;YAAC,OAAO,CAAC,CAAC;QAAC,CAAC;QACrE,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAA+B,CAAC,CAAC,CAAC,SAAS,CAAC;QAClG,IAAI,OAAO,GAAY,SAAS,CAAC;QACjC,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjB,IAAI,CAAC;gBAAC,OAAO,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAAC,CAAC;YAAC,MAAM,CAAC;gBAAC,GAAG,CAAC,iCAAiC,CAAC,CAAC;gBAAC,OAAO,CAAC,CAAC;YAAC,CAAC;QAC3G,CAAC;QACD,MAAM,CAAC,GAAG,YAAY,CAAC,IAAI,CAAC,GAAG,EAAE;YAC/B,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,OAAO;YACpC,cAAc,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,IAAI;SACzD,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;QACvC,OAAO,CAAC,CAAC;IACX,CAAC;IAED,IAAI,IAAI,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QAC7B,IAAI,GAAW,CAAC;QAChB,IAAI,CAAC;YACH,GAAG,GAAG,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QACnG,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,GAAG,CAAC,0BAA2B,CAAW,CAAC,OAAO,IAAI,CAAC,CAAC;YAAC,OAAO,CAAC,CAAC;QACpE,CAAC;QACD,IAAI,OAAgB,CAAC;QACrB,IAAI,CAAC;YAAC,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC;YAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;YAAC,OAAO,CAAC,CAAC;QAAC,CAAC;QAC5F,MAAM,CAAC,GAAG,aAAa,CAAC,OAAO,CAAC,CAAC;QACjC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;YAAC,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAAC,CAAC;QAClF,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;YACZ,GAAG,CAAC,uFAAuF,CAAC,CAAC,iBAAiB,iBAAiB,CAAC,CAAC,IAAI,iBAAiB,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC;YACrK,OAAO,CAAC,CAAC;QACX,CAAC;QACD,GAAG,CAAC,gBAAgB,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC;QAClC,OAAO,CAAC,CAAC;IACX,CAAC;IAED,GAAG,CAAC,4BAA4B,IAAI,CAAC,MAAM,mCAAmC,CAAC,CAAC;IAChF,OAAO,CAAC,CAAC;AACX,CAAC"}

package/dist/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAuIA,wBAAsB,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,~~CAwzMvD~~"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAuIA,wBAAsB,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAq1MvD"}

package/dist/index.js CHANGED Viewed

@@ -4181,6 +4181,34 @@ export async function run(argv) {
         const { immuneCommand } = await import("./commands/immune.js");
         process.exit(await immuneCommand({ cwd: process.cwd(), json: !!opts.json }));
     });
+    // v2.79.0 — NOTARY. Portable, offline-verifiable proof-of-provenance receipts
+    // (Ed25519). Verify with a public key alone — no Mneme, no network, no secret.
+    // The TRUST FABRIC spine for cross-protocol routing, portable memory, and the
+    // AI flight recorder.
+    program
+        .command("notary <action>")
+        .description("🪪 NOTARY — Ed25519-signed proof receipts anyone verifies OFFLINE with a public key (no Mneme, no network, no shared secret). actions: pubkey | issue | verify <file|->. Mneme's first asymmetric-crypto primitive.")
+        .option("--subject <s>", "what the receipt attests (issue)")
+        .option("--kind <k>", "claim-verdict | protocol-hop | memory-capsule | reasoning-trace | generic", "generic")
+        .option("--payload <json>", "JSON payload to attest (issue)")
+        .option("--hash-only", "privacy: omit the inline payload, attest only its hash (issue)", false)
+        .option("--prev <id>", "previous receiptId to chain onto (issue)")
+        .option("--file <path>", "receipt file to verify (use '-' for stdin)")
+        .option("--json", "machine-readable output", false)
+        .action(async (action, o) => {
+        const { notaryCommand } = await import("./commands/notary.js");
+        process.exit(await notaryCommand({
+            cwd: process.cwd(),
+            action,
+            subject: o.subject,
+            kind: o.kind,
+            payload: o.payload,
+            noPayload: !!o.hashOnly,
+            prev: o.prev,
+            file: o.file,
+            json: !!o.json,
+        }));
+    });
     program
         .command("atlas")
         .description("🗺  ATLAS HELP — six-layer discovery (TASTE · BLOOM · HOT · TAGS · INTENT · FULL). AI agents read 200 bytes here instead of 14 KB from --help.")