Expand description
§chio-core
Shared vocabulary for the Chio protocol. This crate defines the fundamental types that flow between all Chio components: capability tokens, tool grants, scopes, receipts, and canonical JSON serialization helpers.
Nothing in this crate performs I/O or depends on a runtime. It is a pure data-and-crypto crate suitable for use in WASM, embedded, and no-std (with alloc) environments.
The shared substrate now lives in chio-core-types, and the heavier domain
implementations now live in dedicated crates. This crate preserves the
historical chio_core::* surface by re-exporting those extracted crates.
Re-exports§
pub use extension::negotiate_extension;pub use extension::validate_extension_inventory;pub use extension::validate_extension_manifest;pub use extension::validate_official_stack_package;pub use extension::validate_qualification_matrix;pub use extension::CanonicalContractKind;pub use extension::CanonicalTruthSurface;pub use extension::ChioExtensionInventory;pub use extension::ChioExtensionManifest;pub use extension::ChioExtensionPoint;pub use extension::ExtensionCompatibility;pub use extension::ExtensionContractError;pub use extension::ExtensionDistribution;pub use extension::ExtensionEvidenceMode;pub use extension::ExtensionIsolation;pub use extension::ExtensionNegotiationOutcome;pub use extension::ExtensionNegotiationRejection;pub use extension::ExtensionNegotiationRejectionCode;pub use extension::ExtensionNegotiationReport;pub use extension::ExtensionPointKind;pub use extension::ExtensionPrivilege;pub use extension::ExtensionQualificationCase;pub use extension::ExtensionQualificationMatrix;pub use extension::ExtensionRuntimeEnvelope;pub use extension::ExtensionStability;pub use extension::OfficialImplementationSource;pub use extension::OfficialStackComponent;pub use extension::OfficialStackPackage;pub use extension::OfficialStackProfile;pub use extension::QualificationInvariant;pub use extension::QualificationMode;pub use extension::QualificationOutcome;pub use extension::CHIO_EXTENSION_INVENTORY_SCHEMA;pub use extension::CHIO_EXTENSION_MANIFEST_SCHEMA;pub use extension::CHIO_EXTENSION_NEGOTIATION_SCHEMA;pub use extension::CHIO_EXTENSION_QUALIFICATION_MATRIX_SCHEMA;pub use extension::CHIO_OFFICIAL_STACK_SCHEMA;pub use identity_network::validate_identity_interop_qualification_matrix;pub use identity_network::validate_public_identity_profile;pub use identity_network::validate_public_wallet_directory_entry;pub use identity_network::validate_public_wallet_routing_manifest;pub use identity_network::IdentityArtifactKind;pub use identity_network::IdentityArtifactReference;pub use identity_network::IdentityBindingPolicy;pub use identity_network::IdentityCredentialFamily;pub use identity_network::IdentityDidMethod;pub use identity_network::IdentityInteropQualificationCase;pub use identity_network::IdentityInteropQualificationMatrix;pub use identity_network::IdentityInteropScenarioKind;pub use identity_network::IdentityNetworkContractError;pub use identity_network::IdentityProofFamily;pub use identity_network::IdentityQualificationOutcome;pub use identity_network::PublicIdentityProfileArtifact;pub use identity_network::PublicWalletDirectoryEntryArtifact;pub use identity_network::PublicWalletRoutingManifestArtifact;pub use identity_network::SignedIdentityInteropQualificationMatrix;pub use identity_network::SignedPublicIdentityProfile;pub use identity_network::SignedPublicWalletDirectoryEntry;pub use identity_network::SignedPublicWalletRoutingManifest;pub use identity_network::WalletDirectoryLookupGuardrails;pub use identity_network::WalletRoutingGuardrails;pub use identity_network::WalletTransportMode;pub use identity_network::CHIO_IDENTITY_INTEROP_QUALIFICATION_MATRIX_SCHEMA;pub use identity_network::CHIO_PUBLIC_IDENTITY_PROFILE_SCHEMA;pub use identity_network::CHIO_PUBLIC_WALLET_DIRECTORY_ENTRY_SCHEMA;pub use identity_network::CHIO_PUBLIC_WALLET_ROUTING_MANIFEST_SCHEMA;pub use standards::ChioGovernedAuthorizationBinding;pub use standards::ChioPortableClaimCatalog;pub use standards::ChioPortableIdentityBinding;pub use standards::CHIO_GOVERNED_AUTH_AUTHORITATIVE_SOURCE;pub use standards::CHIO_GOVERNED_AUTH_BINDING_SCHEMA;pub use standards::CHIO_PORTABLE_CLAIM_CATALOG_SCHEMA;pub use standards::CHIO_PORTABLE_IDENTITY_BINDING_SCHEMA;pub use standards::CHIO_PORTABLE_ISSUER_IDENTITY_HTTPS_JWKS;pub use standards::CHIO_PORTABLE_SUBJECT_BINDING_DID_CHIO_SUBJECT_KEY_THUMBPRINT;pub use standards::CHIO_PROVENANCE_ANCHOR_DID_CHIO;pub use chio_appraisal as appraisal;pub use chio_autonomy as autonomy;pub use chio_credit as credit;pub use chio_federation as federation;pub use chio_governance as governance;pub use chio_listing as listing;pub use chio_market as market;pub use chio_open_market as open_market;pub use chio_underwriting as underwriting;pub use chio_web3 as web3;
Modules§
- canonical
- Canonical JSON serialization (RFC 8785 / JCS).
- capability
- Capability tokens: Ed25519-signed, scoped, time-bounded authorizations.
- crypto
- Signing and verification primitives for Chio artifacts.
- error
- Error types for chio-core.
- extension
- Chio extension and official-stack contract types.
- hashing
- Cryptographic hashing (SHA-256).
- identity_
network - Chio public identity and wallet network contracts.
- manifest
- Tool server manifests: signed declarations of available tools.
- merkle
- RFC 6962-compatible Merkle tree (Certificate Transparency style).
- message
- Protocol messages between Agent and Kernel.
- receipt
- Chio receipts: signed proof that a tool call was evaluated.
- session
- Session-scoped identifiers and normalized operations.
- standards
Structs§
- Anchor
Inclusion Proof - Attestation
Trust Policy - Attestation
Trust Rule - Autonomous
Comparison Delta - Autonomous
Comparison Report - Autonomous
Drift Report - Autonomous
Drift Signal - Autonomous
Evidence Reference - Autonomous
Execution Decision Artifact - Autonomous
Execution Rollback Control - Autonomous
Execution Safety Gate - Autonomous
Model Provenance - Autonomous
Pricing Authority Envelope Artifact - Autonomous
Pricing Decision Artifact - Autonomous
Pricing Explanation Factor - Autonomous
Pricing Input Artifact - Autonomous
Pricing Support Boundary - Autonomous
Qualification Case - Autonomous
Qualification Matrix - Autonomous
Rollback Plan Artifact - Capability
Token - A Chio capability token. Scoped, time-bounded, cryptographically signed.
- Capability
Token Body - The body of a capability token, containing every field except the signature. Used as the signing input.
- Capital
Allocation Decision Artifact - Capital
Allocation Decision Finding - Capital
Allocation Decision Support Boundary - Capital
Allocation Instruction Draft - Capital
Book Event - Capital
Book Evidence Reference - Capital
Book Query - Capital
Book Report - Capital
Book Source - Capital
Book Summary - Capital
Book Support Boundary - Capital
Execution Authority Step - Capital
Execution Instruction Artifact - Capital
Execution Instruction Support Boundary - Capital
Execution Observation - Capital
Execution Rail - Capital
Execution Window - Capital
Pool Optimization Artifact - Capital
Pool Optimization Support Boundary - Capital
Pool Recommendation - Capital
Pool Simulation Delta - Capital
Pool Simulation Report - Child
Request Receipt - Signed audit record for a nested child request handled under a parent tool call.
- Child
Request Receipt Body - The body of a child-request receipt (everything except the signature).
- Chio
Identity Assertion - Optional continuity or login assertion carried across verifier-facing flows.
- Chio
Receipt - A Chio receipt. Signed proof that a tool call was evaluated by the Kernel.
- Chio
Receipt Body - The body of a receipt (everything except the signature), used for signing.
- Chio
Scope - What a capability token authorizes.
- Complete
Operation - Completion payload for prompt arguments or resource templates.
- Completion
Argument - In-progress argument being completed.
- Completion
Result - Completion result payload.
- Create
Elicitation Result - Result payload returned by a client-side elicitation request.
- Create
Message Operation - Normalized payload for an MCP
sampling/createMessagechild request. - Create
Message Result - Result payload returned by a client-side sampling request.
- Credit
Backtest Query - Credit
Backtest Report - Credit
Backtest Summary - Credit
Backtest Window - Credit
Bond Artifact - Credit
Bond Finding - Credit
Bond List Query - Credit
Bond List Report - Credit
Bond List Summary - Credit
Bond Prerequisites - Credit
Bond Report - Credit
Bond Row - Credit
Bond Support Boundary - Credit
Bond Terms - Credit
Bonded Execution Control Policy - Credit
Bonded Execution Evaluation - Credit
Bonded Execution Finding - Credit
Bonded Execution Simulation Delta - Credit
Bonded Execution Simulation Query - Credit
Bonded Execution Simulation Report - Credit
Bonded Execution Simulation Request - Credit
Bonded Execution Support Boundary - Credit
Certification State - Credit
Facility Artifact - Credit
Facility Finding - Credit
Facility List Query - Credit
Facility List Report - Credit
Facility List Summary - Credit
Facility Prerequisites - Credit
Facility Report - Credit
Facility Row - Credit
Facility Support Boundary - Credit
Facility Terms - Credit
Loss Lifecycle Artifact - Credit
Loss Lifecycle Finding - Credit
Loss Lifecycle List Query - Credit
Loss Lifecycle List Report - Credit
Loss Lifecycle List Summary - Credit
Loss Lifecycle Query - Credit
Loss Lifecycle Report - Credit
Loss Lifecycle Row - Credit
Loss Lifecycle Summary - Credit
Loss Lifecycle Support Boundary - Credit
Provider Facility Snapshot - Credit
Provider Risk Package - Credit
Provider Risk Package Query - Credit
Provider Risk Package Support Boundary - Credit
Recent Loss Entry - Credit
Recent Loss History - Credit
Recent Loss Summary - Credit
Runtime Assurance State - Credit
Scorecard Anomaly - Credit
Scorecard Dimension - Credit
Scorecard Evidence Reference - Credit
Scorecard Probation Status - Credit
Scorecard Report - Credit
Scorecard Reputation Context - Credit
Scorecard Summary - Credit
Scorecard Support Boundary - Delegation
Link - A link in the delegation chain, recording that
delegatorgranted a narrowed capability todelegatee. - Delegation
Link Body - The body of a delegation link, used as the signing input.
- Enterprise
Identity Context - Exposure
Ledger Currency Position - Exposure
Ledger Decision Entry - Exposure
Ledger Evidence Reference - Exposure
Ledger Query - Exposure
Ledger Receipt Entry - Exposure
Ledger Report - Exposure
Ledger Summary - Exposure
Ledger Support Boundary - Federated
Open Admission Policy Artifact - Federated
Reputation Clearing Artifact - Federated
Reputation Input Reference - Federated
Stake Requirement - Federated
Sybil Control - Federation
Activation Exchange Artifact - Federation
Anti Eclipse Policy - Federation
Artifact Reference - Federation
Conflict Evidence - Federation
Delegation Control - Federation
Import Control - Federation
Publisher Observation - Federation
Qualification Case - Federation
Qualification Matrix - Federation
Quorum Report - Federation
Trust Scope - Financial
Receipt Metadata - Financial metadata attached to receipts for monetary grant invocations.
- Generic
Governance Authority Scope - Generic
Governance Case Artifact - Generic
Governance Case Evaluation - Generic
Governance Case Evaluation Request - Generic
Governance Case Issue Request - Generic
Governance Charter Artifact - Generic
Governance Charter Issue Request - Generic
Governance Evidence Reference - Generic
Governance Finding - Generic
Listing Artifact - Generic
Listing Boundary - Generic
Listing Compatibility Reference - Generic
Listing Divergence - Generic
Listing Freshness Window - Generic
Listing Query - Generic
Listing Replica Freshness - Generic
Listing Report - Generic
Listing Search Error - Generic
Listing Search Policy - Generic
Listing Search Response - Generic
Listing Search Result - Generic
Listing Subject - Generic
Listing Summary - Generic
Namespace Artifact - Generic
Namespace Ownership - Generic
Registry Publisher - Generic
Trust Activation Artifact - Generic
Trust Activation Eligibility - Generic
Trust Activation Evaluation - Generic
Trust Activation Evaluation Request - Generic
Trust Activation Finding - Generic
Trust Activation Issue Request - Generic
Trust Activation Review Context - GetPrompt
Operation - Prompt retrieval payload.
- Governed
Approval Receipt Metadata - Approval evidence attached to a governed-transaction receipt block.
- Governed
Approval Token - Signed approval artifact bound to one governed intent and one request.
- Governed
Approval Token Body - Signable body of a governed approval token.
- Governed
Call Chain Context - Delegated call-chain context bound into a governed request.
- Governed
Commerce Context - Seller-scoped commerce approval context attached to a governed request.
- Governed
Commerce Receipt Metadata - Commerce approval evidence attached to a governed-transaction receipt block.
- Governed
Transaction Intent - Canonical intent attached to a governed transaction request.
- Governed
Transaction Receipt Metadata - Governed transaction metadata attached to receipts.
- Guard
Evidence - Evidence from a single guard’s evaluation.
- Hash
- A 32-byte hash value.
- Keypair
- Ed25519 keypair for signing.
- Liability
Auto Bind Decision Artifact - Liability
Auto Bind Finding - Liability
Bound Coverage Artifact - Liability
Claim Adjudication Artifact - Liability
Claim Dispute Artifact - Liability
Claim Evidence Reference - Liability
Claim Package Artifact - Liability
Claim Payout Instruction Artifact - Liability
Claim Payout Receipt Artifact - Liability
Claim Response Artifact - Liability
Claim Settlement Instruction Artifact - Liability
Claim Settlement Receipt Artifact - Liability
Claim Settlement Role Binding - Liability
Claim Settlement Role Topology - Liability
Claim Workflow Query - Liability
Claim Workflow Report - Liability
Claim Workflow Row - Liability
Claim Workflow Summary - Liability
Jurisdiction Policy - Liability
Market Workflow Query - Liability
Market Workflow Report - Liability
Market Workflow Row - Liability
Market Workflow Summary - Liability
Placement Artifact - Liability
Pricing Authority Artifact - Liability
Pricing Authority Envelope - Liability
Provider Artifact - Liability
Provider List Query - Liability
Provider List Report - Liability
Provider List Summary - Liability
Provider Policy Reference - Liability
Provider Provenance - Liability
Provider Report - Liability
Provider Resolution Query - Liability
Provider Resolution Report - Liability
Provider Row - Liability
Provider Support Boundary - Liability
Quote Request Artifact - Liability
Quote Response Artifact - Liability
Quote Terms - Merkle
Proof - Merkle inclusion proof.
- Merkle
Tree - RFC 6962-compatible Merkle tree.
- Metered
Billing Context - Generic metered-billing context attached to a governed request.
- Metered
Billing Quote - Stable quote describing pre-execution metered billing expectations.
- Metered
Billing Receipt Metadata - Metered-billing quote and evidence context preserved on governed receipts.
- Metered
Usage Evidence Receipt Metadata - Optional post-execution usage evidence attached to metered-billing receipts.
- Monetary
Amount - A monetary amount with currency denomination.
- Open
Market Bond Requirement - Open
Market Economics Scope - Open
Market Evidence Reference - Open
Market FeeSchedule Artifact - Open
Market FeeSchedule Issue Request - Open
Market Finding - Open
Market Penalty Artifact - Open
Market Penalty Evaluation - Open
Market Penalty Evaluation Request - Open
Market Penalty Issue Request - Operation
Context - Session-scoped metadata attached to every normalized operation.
- Oracle
Conversion Evidence - Prompt
Argument - Prompt argument metadata.
- Prompt
Definition - Prompt metadata exposed through the session layer.
- Prompt
Grant - Authorization for retrieving a prompt by name.
- Prompt
Message - Message inside a prompt response.
- Prompt
Result - Prompt retrieval result.
- Public
Key - Public key for verifying Chio signatures.
- Read
Resource Operation - Resource read payload.
- Request
Id - Opaque identifier for a request scoped to a session.
- Resolved
Runtime Assurance - Resource
Content - Resource content payload returned by a read request.
- Resource
Definition - Resource metadata exposed through the session layer.
- Resource
Grant - Authorization for reading or subscribing to a resource.
- Resource
Template Definition - Parameterized resource template metadata.
- Root
Definition - Root metadata exposed by the client to bound filesystem access.
- Runtime
Attestation Appraisal - Runtime
Attestation Appraisal Artifact - Runtime
Attestation Appraisal Artifact Inventory - Runtime
Attestation Appraisal Artifact Inventory Entry - Runtime
Attestation Appraisal Import Outcome - Runtime
Attestation Appraisal Import Report - Runtime
Attestation Appraisal Import Request - Runtime
Attestation Appraisal Reason - Runtime
Attestation Appraisal Report - Runtime
Attestation Appraisal Request - Runtime
Attestation Appraisal Result - Runtime
Attestation Appraisal Result Export Request - Runtime
Attestation Appraisal Result Subject - Runtime
Attestation Claim Sets - Runtime
Attestation Evidence - Normalized runtime attestation evidence carried with governed requests.
- Runtime
Attestation Evidence Descriptor - Runtime
Attestation Import Reason - Runtime
Attestation Imported Appraisal Policy - Runtime
Attestation Normalized Claim - Runtime
Attestation Normalized Claim Vocabulary - Runtime
Attestation Normalized Claim Vocabulary Entry - Runtime
Attestation Policy Outcome - Runtime
Attestation Policy Projection - Runtime
Attestation Reason Taxonomy - Runtime
Attestation Verifier Descriptor - Sampling
Message - Message content submitted for client-side sampling.
- Sampling
Tool - Tool schema advertised to a client during a sampling request.
- Sampling
Tool Choice - Controls whether tool use is allowed during client-side sampling.
- Session
Auth Context - Normalized transport-authentication context bound to a logical session.
- Session
Id - Opaque identifier for a logical runtime session.
- Signature
- Signature produced by an Chio
SigningBackend. - Signed
Web3 Identity Binding - Tool
Annotations - Behavioral annotations that help the Kernel make policy and scheduling decisions without inspecting the tool implementation.
- Tool
Call Action - Describes the tool call that was evaluated.
- Tool
Call Operation - Normalized tool call payload. This is transport-agnostic and suitable for direct kernel evaluation.
- Tool
Definition - A single tool offered by a server.
- Tool
Grant - Authorization for a single tool on a single server.
- Tool
Manifest - A Chio tool server manifest. Signed by the server’s Ed25519 key.
- Tool
Manifest Body - The body of a manifest (everything except the signature), used for signing.
- Underwriting
Appeal Create Request - Underwriting
Appeal Record - Underwriting
Appeal Resolve Request - Underwriting
Budget Recommendation - Underwriting
Certification Evidence - Underwriting
Decision Artifact - Underwriting
Decision Finding - Underwriting
Decision List Report - Underwriting
Decision Policy - Underwriting
Decision Query - Underwriting
Decision Report - Underwriting
Decision Row - Underwriting
Decision Summary - Underwriting
Evidence Reference - Underwriting
Policy Input - Underwriting
Policy Input Query - Underwriting
Premium Quote - Underwriting
Receipt Evidence - Underwriting
Reputation Evidence - Underwriting
Risk Taxonomy - Underwriting
Runtime Assurance Evidence - Underwriting
Signal - Underwriting
Simulation Delta - Underwriting
Simulation Report - Underwriting
Simulation Request - Web3
Binding Target - Web3
Bitcoin Anchor - Web3
Chain Anchor Record - Web3
Chain Configuration - Web3
Chain Deployment - Web3
Chain Finality Rule - Web3
Chain GasProfile - Web3
Checkpoint Statement - Web3
Contract Interface - Web3
Contract Package - Web3
Dispute Window - Web3
Identity Binding Certificate - Web3
Qualification Case - Web3
Qualification Matrix - Web3
Receipt Inclusion - Web3
Regulated Role Assumption - Web3
Settlement Dispatch Artifact - Web3
Settlement Execution Receipt Artifact - Web3
Settlement Support Boundary - Web3
Super Root Inclusion - Web3
Trust Profile - Workload
Identity - Normalized workload identity derived from runtime attestation evidence.
Enums§
- Agent
Message - Messages sent from the Agent to the Kernel.
- Attenuation
- Describes how a scope was narrowed during delegation.
- Attestation
Trust Error - Attestation
Verifier Family - Autonomous
Authority Envelope Kind - Autonomous
Automation Mode - Autonomous
Comparison Disposition - Autonomous
Decision Review State - Autonomous
Drift Kind - Autonomous
Drift Severity - Autonomous
Evidence Kind - Autonomous
Execution Action - Autonomous
Execution Lifecycle State - Autonomous
Pricing Action - Autonomous
Pricing Disposition - Autonomous
Pricing Explanation Direction - Autonomous
Qualification Outcome - Autonomous
Rollback Action - Autonomous
Safe State - Autonomy
Contract Error - Capital
Allocation Decision Outcome - Capital
Allocation Decision Reason Code - Capital
Book Event Kind - Capital
Book Evidence Kind - Capital
Book Role - Capital
Book Source Kind - Capital
Execution Instruction Action - Capital
Execution Intended State - Capital
Execution Rail Kind - Capital
Execution Reconciled State - Capital
Execution Role - Capital
Optimization Action - Capital
Pool Simulation Mode - Completion
Reference - Reference target for an MCP-style completion request.
- Constraint
- A constraint on tool parameters.
- Create
Elicitation Operation - Normalized payload for an MCP
elicitation/createchild request. - Credit
Backtest Reason Code - Credit
Bond Disposition - Credit
Bond Lifecycle State - Credit
Bond Reason Code - Credit
Bonded Execution Decision - Credit
Bonded Execution Finding Code - Credit
Facility Capital Source - Credit
Facility Disposition - Credit
Facility Lifecycle State - Credit
Facility Reason Code - Credit
Loss Lifecycle Event Kind - Credit
Loss Lifecycle Reason Code - Credit
Reserve Control Appeal State - Credit
Reserve Control Execution State - Credit
Scorecard Anomaly Severity - Credit
Scorecard Band - Credit
Scorecard Confidence - Credit
Scorecard Dimension Kind - Credit
Scorecard Evidence Kind - Credit
Scorecard Reason Code - Decision
- The Kernel’s verdict on a tool call.
- Elicitation
Action - Action selected by the client during an elicitation flow.
- Enterprise
Federation Method - Error
- All errors produced by chio-core.
- Exposure
Ledger Evidence Kind - Federated
Reputation Input Kind - Federation
Artifact Kind - Federation
Contract Error - Federation
Qualification Outcome - Federation
Quorum State - Federation
Scenario Kind - Generic
Governance Case Kind - Generic
Governance Case State - Generic
Governance Effective State - Generic
Governance Evidence Kind - Generic
Governance Finding Code - Generic
Listing Actor Kind - Generic
Listing Freshness State - Generic
Listing Status - Generic
Namespace Lifecycle State - Generic
Registry Publisher Role - Generic
Trust Activation Disposition - Generic
Trust Activation Finding Code - Generic
Trust Admission Class - Governed
Approval Decision - Decision encoded by a governed approval token.
- Kernel
Message - Messages sent from the Kernel to the Agent.
- Liability
Auto Bind Disposition - Liability
Auto Bind Reason Code - Liability
Claim Adjudication Outcome - Liability
Claim Evidence Kind - Liability
Claim Payout Reconciliation State - Liability
Claim Response Disposition - Liability
Claim Settlement Kind - Liability
Claim Settlement Reconciliation State - Liability
Coverage Class - Liability
Evidence Requirement - Liability
Pricing Authority Envelope Kind - Liability
Provider Lifecycle State - Liability
Provider Type - Liability
Quote Disposition - Metered
Settlement Mode - Policy-visible settlement posture for quoted metered billing.
- Open
Market Abuse Class - Open
Market Bond Class - Open
Market Collateral Reference Kind - Open
Market Evidence Kind - Open
Market Finding Code - Open
Market Penalty Action - Open
Market Penalty Effective State - Open
Market Penalty State - Operation
- An operation that can be performed under a grant.
- Operation
Kind - Normalized operation kind, independent of edge framing.
- Operation
Terminal State - Terminal runtime state for a session-scoped request.
- Progress
Token - Token used to correlate progress updates to a request.
- Runtime
Assurance Tier - Explicit operator-visible runtime assurance tier derived from attestation.
- Runtime
Attestation Appraisal Error - Runtime
Attestation Appraisal Reason Code - Runtime
Attestation Appraisal Reason Disposition - Runtime
Attestation Appraisal Reason Group - Runtime
Attestation Appraisal Verdict - Runtime
Attestation Claim Provenance - Runtime
Attestation Import Disposition - Runtime
Attestation Import Reason Code - Runtime
Attestation Normalized Claim Category - Runtime
Attestation Normalized Claim Code - Runtime
Attestation Normalized Claim Confidence - Runtime
Attestation Normalized Claim Freshness - Session
Auth Method - Authentication method used to admit a session at the transport layer.
- Session
Operation - Higher-level operations the runtime can evaluate within a session.
- Session
Transport - Transport family that owns a logical runtime session.
- Tool
Call Error - Errors that can occur during tool call processing.
- Tool
Call Result - The outcome of a tool call: either a successful result value or an error.
- Trust
Level - Trust level of a receipt’s authorization, recording HOW the Kernel participated in the evaluation. Captured per-receipt so downstream consumers (audit, regulatory, dashboards) can reason about the strength of mediation that produced each authorization.
- Underwriting
Appeal Resolution - Underwriting
Appeal Status - Underwriting
Budget Action - Underwriting
Certification State - Underwriting
Decision Lifecycle State - Underwriting
Decision Outcome - Underwriting
Decision Reason Code - Underwriting
Evidence Kind - Underwriting
Premium State - Underwriting
Reason Code - Underwriting
Remediation - Underwriting
Review State - Underwriting
Risk Class - Web3
Binding Language - Web3
Chain Role - Web3
Contract Error - Web3
Contract Kind - Web3
Dispute Policy - Web3
Finality Mode - Web3
KeyBinding Purpose - Web3
Qualification Outcome - Web3
Regulated Role - Web3
Settlement Lifecycle State - Web3
Settlement Path - Workload
Credential Kind - Upstream credential family that bound the workload identity to attestation.
- Workload
Identity Error - Workload
Identity Scheme - Normalized workload-identity scheme accepted by Chio runtime attestation.
Constants§
- AWS_
NITRO_ ATTESTATION_ SCHEMA - AWS_
NITRO_ VERIFIER_ ADAPTER - AZURE_
MAA_ ATTESTATION_ SCHEMA - AZURE_
MAA_ VERIFIER_ ADAPTER - CAPITAL_
ALLOCATION_ DECISION_ ARTIFACT_ SCHEMA - CAPITAL_
BOOK_ REPORT_ SCHEMA - CAPITAL_
EXECUTION_ INSTRUCTION_ ARTIFACT_ SCHEMA - CHIO_
ANCHOR_ INCLUSION_ PROOF_ SCHEMA - CHIO_
AUTONOMOUS_ COMPARISON_ REPORT_ SCHEMA - CHIO_
AUTONOMOUS_ DRIFT_ REPORT_ SCHEMA - CHIO_
AUTONOMOUS_ EXECUTION_ DECISION_ SCHEMA - CHIO_
AUTONOMOUS_ PRICING_ AUTHORITY_ ENVELOPE_ SCHEMA - CHIO_
AUTONOMOUS_ PRICING_ DECISION_ SCHEMA - CHIO_
AUTONOMOUS_ PRICING_ INPUT_ SCHEMA - CHIO_
AUTONOMOUS_ QUALIFICATION_ MATRIX_ SCHEMA - CHIO_
AUTONOMOUS_ ROLLBACK_ PLAN_ SCHEMA - CHIO_
CAPITAL_ POOL_ OPTIMIZATION_ SCHEMA - CHIO_
CAPITAL_ POOL_ SIMULATION_ REPORT_ SCHEMA - CHIO_
CHECKPOINT_ STATEMENT_ SCHEMA - CHIO_
FEDERATION_ ACTIVATION_ EXCHANGE_ SCHEMA - CHIO_
FEDERATION_ OPEN_ ADMISSION_ POLICY_ SCHEMA - CHIO_
FEDERATION_ QUALIFICATION_ MATRIX_ SCHEMA - CHIO_
FEDERATION_ QUORUM_ REPORT_ SCHEMA - CHIO_
FEDERATION_ REPUTATION_ CLEARING_ SCHEMA - CHIO_
KEY_ BINDING_ CERTIFICATE_ SCHEMA - CHIO_
ORACLE_ CONVERSION_ EVIDENCE_ SCHEMA - CHIO_
WEB3_ CHAIN_ CONFIGURATION_ SCHEMA - CHIO_
WEB3_ CONTRACT_ PACKAGE_ SCHEMA - CHIO_
WEB3_ QUALIFICATION_ MATRIX_ SCHEMA - CHIO_
WEB3_ SETTLEMENT_ DISPATCH_ SCHEMA - CHIO_
WEB3_ SETTLEMENT_ RECEIPT_ SCHEMA - CHIO_
WEB3_ TRUST_ PROFILE_ SCHEMA - CREDIT_
BACKTEST_ REPORT_ SCHEMA - CREDIT_
BONDED_ EXECUTION_ SIMULATION_ REPORT_ SCHEMA - CREDIT_
BOND_ ARTIFACT_ SCHEMA - CREDIT_
BOND_ LIST_ REPORT_ SCHEMA - CREDIT_
BOND_ REPORT_ SCHEMA - CREDIT_
FACILITY_ ARTIFACT_ SCHEMA - CREDIT_
FACILITY_ LIST_ REPORT_ SCHEMA - CREDIT_
FACILITY_ REPORT_ SCHEMA - CREDIT_
LOSS_ LIFECYCLE_ ARTIFACT_ SCHEMA - CREDIT_
LOSS_ LIFECYCLE_ LIST_ REPORT_ SCHEMA - CREDIT_
LOSS_ LIFECYCLE_ REPORT_ SCHEMA - CREDIT_
PROVIDER_ RISK_ PACKAGE_ SCHEMA - CREDIT_
SCORECARD_ SCHEMA - DEFAULT_
GENERIC_ LISTING_ REPORT_ MAX_ AGE_ SECS - EXPOSURE_
LEDGER_ SCHEMA - GENERIC_
GOVERNANCE_ CASE_ ARTIFACT_ SCHEMA - GENERIC_
GOVERNANCE_ CHARTER_ ARTIFACT_ SCHEMA - GENERIC_
LISTING_ ARTIFACT_ SCHEMA - GENERIC_
LISTING_ NETWORK_ SEARCH_ SCHEMA - GENERIC_
LISTING_ REPORT_ SCHEMA - GENERIC_
LISTING_ SEARCH_ ALGORITHM_ V1 - GENERIC_
NAMESPACE_ ARTIFACT_ SCHEMA - GENERIC_
TRUST_ ACTIVATION_ ARTIFACT_ SCHEMA - GOOGLE_
CONFIDENTIAL_ VM_ ATTESTATION_ SCHEMA - GOOGLE_
CONFIDENTIAL_ VM_ VERIFIER_ ADAPTER - LIABILITY_
AUTO_ BIND_ DECISION_ ARTIFACT_ SCHEMA - LIABILITY_
BOUND_ COVERAGE_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ ADJUDICATION_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ DISPUTE_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ PACKAGE_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ PAYOUT_ INSTRUCTION_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ PAYOUT_ RECEIPT_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ RESPONSE_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ SETTLEMENT_ INSTRUCTION_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ SETTLEMENT_ RECEIPT_ ARTIFACT_ SCHEMA - LIABILITY_
CLAIM_ WORKFLOW_ REPORT_ SCHEMA - LIABILITY_
MARKET_ WORKFLOW_ REPORT_ SCHEMA - LIABILITY_
PLACEMENT_ ARTIFACT_ SCHEMA - LIABILITY_
PRICING_ AUTHORITY_ ARTIFACT_ SCHEMA - LIABILITY_
PROVIDER_ ARTIFACT_ SCHEMA - LIABILITY_
PROVIDER_ LIST_ REPORT_ SCHEMA - LIABILITY_
PROVIDER_ RESOLUTION_ REPORT_ SCHEMA - LIABILITY_
QUOTE_ REQUEST_ ARTIFACT_ SCHEMA - LIABILITY_
QUOTE_ RESPONSE_ ARTIFACT_ SCHEMA - MAX_
CREDIT_ BACKTEST_ WINDOW_ LIMIT - MAX_
CREDIT_ BOND_ LIST_ LIMIT - MAX_
CREDIT_ FACILITY_ LIST_ LIMIT - MAX_
CREDIT_ LOSS_ LIFECYCLE_ LIST_ LIMIT - MAX_
CREDIT_ PROVIDER_ LOSS_ LIMIT - MAX_
EXPOSURE_ LEDGER_ DECISION_ LIMIT - MAX_
EXPOSURE_ LEDGER_ RECEIPT_ LIMIT - MAX_
GENERIC_ LISTING_ LIMIT - MAX_
LIABILITY_ CLAIM_ WORKFLOW_ LIMIT - MAX_
LIABILITY_ MARKET_ WORKFLOW_ LIMIT - MAX_
LIABILITY_ PROVIDER_ LIST_ LIMIT - MAX_
UNDERWRITING_ DECISION_ LIMIT - MAX_
UNDERWRITING_ RECEIPT_ LIMIT - OPEN_
MARKET_ FEE_ SCHEDULE_ ARTIFACT_ SCHEMA - OPEN_
MARKET_ PENALTY_ ARTIFACT_ SCHEMA - RUNTIME_
ATTESTATION_ APPRAISAL_ ARTIFACT_ INVENTORY_ SCHEMA - RUNTIME_
ATTESTATION_ APPRAISAL_ ARTIFACT_ SCHEMA - RUNTIME_
ATTESTATION_ APPRAISAL_ IMPORT_ REPORT_ SCHEMA - RUNTIME_
ATTESTATION_ APPRAISAL_ REPORT_ SCHEMA - RUNTIME_
ATTESTATION_ APPRAISAL_ RESULT_ SCHEMA - RUNTIME_
ATTESTATION_ APPRAISAL_ SCHEMA - RUNTIME_
ATTESTATION_ NORMALIZED_ CLAIM_ VOCABULARY_ SCHEMA - RUNTIME_
ATTESTATION_ REASON_ TAXONOMY_ SCHEMA - UNDERWRITING_
APPEAL_ SCHEMA - UNDERWRITING_
DECISION_ ARTIFACT_ SCHEMA - UNDERWRITING_
DECISION_ POLICY_ SCHEMA - UNDERWRITING_
DECISION_ POLICY_ VERSION - UNDERWRITING_
DECISION_ REPORT_ SCHEMA - UNDERWRITING_
POLICY_ INPUT_ SCHEMA - UNDERWRITING_
RISK_ TAXONOMY_ VERSION - UNDERWRITING_
SIMULATION_ REPORT_ SCHEMA
Functions§
- aggregate_
generic_ listing_ reports - build_
generic_ governance_ case_ artifact - build_
generic_ governance_ charter_ artifact - build_
generic_ trust_ activation_ artifact - build_
open_ market_ fee_ schedule_ artifact - build_
open_ market_ penalty_ artifact - build_
underwriting_ decision_ artifact - canonical_
json_ bytes - Serialize a value to canonical JSON bytes (RFC 8785).
- canonical_
json_ string - Serialize a value to a canonical JSON string (RFC 8785).
- canonicalize
- Canonicalize a
serde_json::Valueto an RFC 8785 string. - derive_
runtime_ attestation_ appraisal - ensure_
generic_ listing_ namespace_ consistency - evaluate_
generic_ governance_ case - evaluate_
generic_ trust_ activation - evaluate_
imported_ runtime_ attestation_ appraisal - evaluate_
open_ market_ penalty - evaluate_
underwriting_ policy_ input - normalize_
namespace - runtime_
attestation_ appraisal_ artifact_ inventory - runtime_
attestation_ normalized_ claim_ vocabulary - runtime_
attestation_ reason_ taxonomy - sha256
- Compute SHA-256 hash of data.
- sha256_
hex - Compute SHA-256 of the given bytes, returning the hash as lowercase hex.
- validate_
anchor_ inclusion_ proof - validate_
attenuation - Validate that a child scope is a valid attenuation of a parent scope.
- validate_
autonomous_ comparison_ report - validate_
autonomous_ drift_ report - validate_
autonomous_ execution_ decision - validate_
autonomous_ pricing_ authority_ envelope - validate_
autonomous_ pricing_ decision - validate_
autonomous_ pricing_ input - validate_
autonomous_ qualification_ matrix - validate_
autonomous_ rollback_ plan - validate_
capital_ pool_ optimization - validate_
capital_ pool_ simulation_ report - validate_
delegation_ chain - Validate an entire delegation chain.
- validate_
federated_ open_ admission_ policy - validate_
federated_ reputation_ clearing - validate_
federation_ activation_ exchange - validate_
federation_ qualification_ matrix - validate_
federation_ quorum_ report - validate_
oracle_ conversion_ evidence - validate_
web3_ chain_ configuration - validate_
web3_ contract_ package - validate_
web3_ identity_ binding - validate_
web3_ qualification_ matrix - validate_
web3_ settlement_ dispatch - validate_
web3_ settlement_ execution_ receipt - validate_
web3_ trust_ profile - verifier_
family_ for_ attestation_ schema - verify_
anchor_ inclusion_ proof - verify_
checkpoint_ statement - verify_
web3_ identity_ binding
Type Aliases§
- AgentId
- Opaque agent identifier. In practice this is a hex-encoded Ed25519 public key or a SPIFFE URI, but the core treats it as an opaque string.
- Capability
Id - UUIDv7 capability identifier (time-ordered).
- Server
Id - Opaque tool server identifier.
- Signed
Autonomous Comparison Report - Signed
Autonomous Drift Report - Signed
Autonomous Execution Decision - Signed
Autonomous Pricing Authority Envelope - Signed
Autonomous Pricing Decision - Signed
Autonomous Pricing Input - Signed
Autonomous Rollback Plan - Signed
Capital Allocation Decision - Signed
Capital Book Report - Signed
Capital Execution Instruction - Signed
Capital Pool Optimization - Signed
Capital Pool Simulation Report - Signed
Credit Bond - Signed
Credit Facility - Signed
Credit Loss Lifecycle - Signed
Credit Provider Risk Package - Signed
Credit Scorecard Report - Signed
Exposure Ledger Report - Signed
Federated Open Admission Policy - Signed
Federated Reputation Clearing - Signed
Federation Activation Exchange - Signed
Federation Qualification Matrix - Signed
Federation Quorum Report - Signed
Generic Governance Case - Signed
Generic Governance Charter - Signed
Generic Listing - Signed
Generic Namespace - Signed
Generic Trust Activation - Signed
Liability Auto Bind Decision - Signed
Liability Bound Coverage - Signed
Liability Claim Adjudication - Signed
Liability Claim Dispute - Signed
Liability Claim Package - Signed
Liability Claim Payout Instruction - Signed
Liability Claim Payout Receipt - Signed
Liability Claim Response - Signed
Liability Claim Settlement Instruction - Signed
Liability Claim Settlement Receipt - Signed
Liability Placement - Signed
Liability Pricing Authority - Signed
Liability Provider - Signed
Liability Quote Request - Signed
Liability Quote Response - Signed
Open Market FeeSchedule - Signed
Open Market Penalty - Signed
Runtime Attestation Appraisal Report - Signed
Runtime Attestation Appraisal Result - Signed
Underwriting Decision - Signed
Underwriting Policy Input - Signed
Web3 Settlement Dispatch - Signed
Web3 Settlement Execution Receipt