Module capability 

Capability tokens: Ed25519-signed, scoped, time-bounded authorizations.

A Chio capability token is the sole authority to invoke a tool. There is no ambient authority. The Kernel validates the token on every request and denies access if any check fails.

Structs

AttestationTrustPolicy

AttestationTrustRule

CallChainContinuationAudience

Audience binding for a continuation token.

CallChainContinuationToken

Signed continuation token used to move governed provenance across kernels.

CallChainContinuationTokenBody

Stronger cross-kernel continuation artifact for governed provenance transfer.

CapabilityToken

A Chio capability token. Scoped, time-bounded, cryptographically signed.

CapabilityTokenBody

The body of a capability token, containing every field except the signature. Used as the signing input.

ChioScope

What a capability token authorizes.

DelegationLink

A link in the delegation chain, recording that delegator granted a narrowed capability to delegatee.

DelegationLinkBody

The body of a delegation link, used as the signing input.

GovernedApprovalToken

Signed approval artifact bound to one governed intent and one request.

GovernedApprovalTokenBody

Signable body of a governed approval token.

GovernedAutonomyContext

Explicit autonomy and delegation-bond context attached to a governed request.

GovernedCallChainContext

Delegated call-chain context bound into a governed request.

GovernedCallChainProvenance

Typed provenance envelope for delegated governed call-chain metadata.

GovernedCommerceContext

Seller-scoped commerce approval context attached to a governed request.

GovernedTransactionIntent

Canonical intent attached to a governed transaction request.

GovernedUpstreamCallChainProof

Signed upstream proof Chio can validate and promote to verified provenance.

GovernedUpstreamCallChainProofBody

Signable upstream proof for delegated governed call-chain provenance.

MeteredBillingContext

Generic metered-billing context attached to a governed request.

MeteredBillingQuote

Stable quote describing pre-execution metered billing expectations.

ModelMetadata

Metadata describing the model executing a tool-bearing agent.

MonetaryAmount

A monetary amount with currency denomination.

PromptGrant

Authorization for retrieving a prompt by name.

ResolvedRuntimeAssurance

ResourceGrant

Authorization for reading or subscribing to a resource.

RuntimeAttestationEvidence

Normalized runtime attestation evidence carried with governed requests.

ToolGrant

Authorization for a single tool on a single server.

WorkloadIdentity

Normalized workload identity derived from runtime attestation evidence.

Enums

Attenuation

Describes how a scope was narrowed during delegation.

AttestationTrustError

Constraint

A constraint on tool parameters.

ContentReviewTier

Content review tier for outbound communication constraints.

GovernedApprovalDecision

Decision encoded by a governed approval token.

GovernedAutonomyTier

Explicit governed autonomy tier requested for one economically sensitive action.

GovernedCallChainEvidenceSource

Authoritative local evidence Chio used to corroborate governed call-chain metadata.

GovernedProvenanceEvidenceClass

Evidence class describing how Chio learned or validated provenance.

MeteredSettlementMode

Policy-visible settlement posture for quoted metered billing.

ModelSafetyTier

Safety tier for model-routing constraints.

Operation

An operation that can be performed under a grant.

RuntimeAssuranceTier

Explicit operator-visible runtime assurance tier derived from attestation.

SqlOperationClass

Operation class for data-layer tool calls (SQL, document DB, etc.).

WorkloadCredentialKind

Upstream credential family that bound the workload identity to attestation.

WorkloadIdentityError

WorkloadIdentityScheme

Normalized workload-identity scheme accepted by Chio runtime attestation.

Constants

CHIO_CALL_CHAIN_CONTINUATION_SCHEMA

Versioned schema identifier for continuation tokens.

GOVERNED_CALL_CHAIN_CONTINUATION_CONTEXT_KEY

Reserved key inside GovernedTransactionIntent.context for continuation tokens.

GOVERNED_CALL_CHAIN_UPSTREAM_PROOF_CONTEXT_KEY

Reserved key inside GovernedTransactionIntent.context for legacy upstream call-chain proofs.

Functions

canonicalize_attestation_verifier

validate_attenuation

Validate that a child scope is a valid attenuation of a parent scope.

validate_delegation_chain

Validate an entire delegation chain.

Type Aliases

ProvenanceEvidenceClass

Generic evidence class used across Chio provenance artifacts.