Expand description
Core attestation types and canonical serialization.
Structs§
- Attestation
- Represents a 2-way key attestation between a primary identity and a device key.
- Canonical
Attestation Data - Data structure for canonicalizing standard attestations (link, extend).
- Capability
- A validated capability identifier.
- Ed25519
Public Key - A 32-byte Ed25519 public key.
- Ed25519
Signature - A validated Ed25519 signature (64 bytes).
- Identity
Bundle - An identity bundle for stateless verification in CI/CD environments.
- Resource
Id - A validated resource identifier linking an attestation to its storage ref.
- Role
Parse Error - Error returned when parsing an invalid role string.
- Signature
Length Error - Error when constructing an Ed25519Signature from a byte slice of wrong length.
- Threshold
Policy - Policy for threshold signature operations (M-of-N).
- Verified
Attestation - An attestation that has passed signature verification.
Enums§
- Capability
Error - Error type for capability parsing and validation.
- Ed25519
KeyError - Error type for Ed25519 public key construction.
- Role
- Role classification for organization members.
- Signer
Type - The type of entity that produced a signature.
Constants§
- MAX_
ATTESTATION_ JSON_ SIZE - Maximum allowed size for a single attestation JSON input (64 KiB).
- MAX_
JSON_ BATCH_ SIZE - Maximum allowed size for JSON array inputs — chains, receipts, witness keys (1 MiB).
Functions§
- canonicalize_
attestation_ data - Produce the canonical JSON bytes over which signatures are computed.