npm - openfused - Versions diffs - 0.3.17 → 0.3.19 - Mend

openfused 0.3.17 → 0.3.19

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/cli.js CHANGED Viewed

@@ -635,12 +635,11 @@ program
     const reg = registry.resolveRegistry(opts.registry);
     try {
         const manifest = await registry.discover(name, reg);
-        // Auto-import key (untrusted) + add as peer so future `openfuse sync` can
-        // deliver replies and pull context. Key is deliberately NOT trusted — the user
-        // must explicitly `openfuse key trust <name>` after out-of-band verification.
-        // NOTE: manifest data comes from the registry and is attacker-controlled.
-        // The endpoint URL is stored as-is; a malicious entry could point at an internal
-        // service. Sync will pull from it — consider validating URL scheme/host.
+        // Auto-import key + add as peer. Keys discovered from openfused.net DNS
+        // are auto-trusted: the registry verified the Ed25519 signature before
+        // creating the TXT record, and DNSSEC is enabled on the zone. Keys from
+        // self-hosted domains remain untrusted (user must verify out-of-band).
+        const dnsDiscovered = !name.includes(".") || name.endsWith(".openfused.net");
         let config = await store.readConfig();
         if (!config.keyring.some((e) => e.signingKey === manifest.publicKey)) {
             config.keyring.push({
@@ -649,7 +648,7 @@ program
                 signingKey: manifest.publicKey,
                 encryptionKey: manifest.encryptionKey,
                 fingerprint: manifest.fingerprint,
-                trusted: false,
+                trusted: dnsDiscovered,
                 added: new Date().toISOString(),
             });
         }

package/dist/store.js CHANGED Viewed

@@ -193,10 +193,10 @@ export class ContextStore {
             signed = await signMessage(this.root, config.name, message);
         }
         // Envelope filename includes short fingerprint to disambiguate name collisions.
-        // Two agents named "carlos" with different keys get different filenames.
-        const shortFp = entry ? entry.fingerprint.replace(/:/g, "").slice(0, 8) : "unknown";
+        // If recipient isn't in keyring, omit fingerprint — keeps filenames matchable.
+        const shortFp = entry ? `-${entry.fingerprint.replace(/:/g, "").slice(0, 8)}` : "";
         const timestamp = new Date().toISOString().replace(/[:.]/g, "-");
-        const filename = `${timestamp}_from-${config.name}_to-${peerId}-${shortFp}.json`;
+        const filename = `${timestamp}_from-${config.name}_to-${peerId}${shortFp}.json`;
         await writeFile(join(this.root, "outbox", filename), serializeSignedMessage(signed));
         return filename;
     }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "openfused",
-  "version": "0.3.17",
+  "version": "0.3.19",
   "description": "The file protocol for AI agent context. Encrypted, signed, peer-to-peer.",
   "license": "MIT",
   "type": "module",