Added
- Three-Layer Attestation Architecture: L1 Commitment (<1ms), L2 TEE Attestation (<10ms), L3 ZK Proofs
- Warrant System v3: Complete rewrite with speculative warrants and 60s expiry
- Checkpoint Surety v3: Hash-chained audit trail with enhanced token attribution
- MCCA v3: Manifold-Constrained Context Architecture with fragment management
- Physics Engine v3: Hardware reality validation with commitment latency tracking
- Insurance Claims API: Generate insurance claim proofs from attestations
- npm package:
npm install @longarc/mdash
Changed
- Complete architecture redesign for three-layer attestation
- Test suite rebuilt: 120+ tests covering all v3 modules
Added
- Tool Attestation Registry (ASI04 Defense): Publisher trust tiers (core/verified/community/unverified), signature verification on every invocation, expiration and revocation handling
- Behavioral Integrity Manifests (ASI10 Defense): Human-operator-only registration, alignment scoring with permanent decrements, auto-revocation at score <40, statistical anomaly detection (>2σ)
- Tool attestation extends context hash chain
- Behavioral deviation feeds circuit breaker
- Unified audit trail across all security modules
- 37 new P1 security tests with
fast-check
Changed
- Test count: 59 → 96 total tests passing
- OWASP ASI coverage: 3/10 → 5/10 (+ ASI04, ASI10)
Security
- Addresses OWASP Agentic Security Initiative guidelines ASI04 (Tool Integrity), ASI10 (Behavioral Monitoring)
- Trust-based side effect restrictions (external operations require verified+ tier)
- No agent self-registration: manifests require human operator
Added
- Context Hash Chains (ASI06 Defense): SHA-256 context hashing with Ed25519 provenance signatures, unbroken chain validation, drift detection (>15% threshold)
- Delegation Engine (ASI07 Defense): Warrant delegation with chain depth cap (5), scope subset validation, TTL inheritance, revocation cascades
- Circuit Breakers (ASI08 Defense): 3-state machine (closed/open/half_open), failure metrics, blast radius escalation, audit logging
- 37 new property-based tests with
fast-check for P0 security modules
- External source trust ceiling enforcement (
trust_level < 50)
- Typed errors:
DelegationDepthExceeded, ScopeEscalation, BreakerTripped
Changed
- Test count: 147 → 156 total tests passing
- OWASP ASI coverage: 0/10 → 3/10 (ASI06, ASI07, ASI08)
Security
- Addresses OWASP Agentic Security Initiative guidelines ASI06 (Context Integrity), ASI07 (Delegation Control), ASI08 (Cascade Prevention)
- All state transitions logged to append-only audit trail
- Human escalation triggers for blast radius exceeding threshold
Added
- Property-based testing with
fast-check: Spec-as-Tests paradigm
- 22 new property tests encoding 7 core liability invariants
- Warrant state machine with legal transition validation
- Cryptographic rejection proofs with SHA-256 verification
- Temporal validity checks for time-bounded authorization
- Aggregate influence validation (
usr + env + ast ≤ 0.60)
Changed
- Test count: 125 → 147 total tests passing
- Validation API now returns boolean for sum/non-negative checks
- Types extended with
Warrant, WarrantState, RejectionProof
Technical
- 7 liability invariants now formally tested: Conservation, Non-Negative, Aggregate Bound, State Machine, Rejection Proof, Class Isolation, Temporal Validity
- Property tests run 500-1000 random inputs per invariant
- Insurers can read test file as specification
Added
- Manifold-Constrained Context Architecture (MCCA) foundation
- Influence budget system with four source classes (
sys/usr/env/ast)
- Constraint validation ensuring bounded liability
- Liability attribution matrix mapping violations to responsible parties
- 37 new tests covering constraint validation and normalization
- Unified architecture specification document
Changed
- Test count: 88 → 125 total tests passing
- Module manifest updated with MCCA module
Technical
- TypeScript types:
InfluenceBudget, SourceClass, ConstraintViolation
- Three enforcement modes:
OBSERVE, ALERT, ENFORCE
- Sinkhorn-Knopp inspired normalization for influence budgets
Added
- Comprehensive documentation site with full API reference
- Interactive state diagrams for warrant lifecycle visualization
- Mobile-responsive design across all pages
- Changelog page for version tracking
Changed
- Improved terminal component animations
- Enhanced accessibility with ARIA labels
- Optimized asset loading for faster initial render
Fixed
- Sidebar scroll behavior on mobile devices
- Code block horizontal overflow handling
- Navigation link states on docs page
Added
- Checkpoint Surety system with token attribution
- Hash-chained attestation records
- Documentation for new surety endpoints
Changed
- Warrant attestation now includes token cost tracking
- Improved Physics Engine validation performance
Added
- Physics Engine for hardware reality validation
- Sealed Context procedural invariants
- New
/warrant/validate endpoint
- TLA+ formal verification (5 properties proven)
Security
- Hardened against 20 documented attack vectors
- Added cryptographic binding for warrant chains
Added
- Two-Phase Warrant System (Authorization + Attestation)
- Warrant lifecycle state machine
- Initial API endpoints:
/warrant/request, /warrant/attest
Changed
- Complete architecture redesign for agent accountability
- Shifted from prevention model to attestation model
Added
- Core liability infrastructure framework
- Agent registration and identity system
- Cryptographic proof generation primitives
- Initial test suite (foundation for 88/88 tests)
Added
- Initial release: "Operating System for Agency" concept
- Core philosophy: Governance without control
- Foundational architecture design
- Long Arc Studios establishes mdash project