bcx 0.4.0

# BCX Version Plan

Status: active planning document

BCX is a security-sensitive protocol family. The roadmap intentionally uses
small tags. Add more patch or milestone tags whenever a release would otherwise
mix too many semantics, dependencies, or security surfaces.

Tags use:

```text
v0.N.0      small milestone release
v0.N.P      patch/fix release for milestone N
v1.0.0      first production-ready BCX protocol foundation
```

Protocol versions and crate versions are separate. For example, `bcx-http`
crate `0.12.3` may still implement `BCX-HTTP/1`.

Crate package versions are tracked in
[`CRATE_VERSION_MATRIX.md`](CRATE_VERSION_MATRIX.md). The matrix exists so BCX
can grow into many crates without republishing every crate for every milestone.
The release gate checks that the matrix matches Cargo metadata, that local path
dependency version requirements match the referenced local packages, and that
crate source or manifest changes since the latest tag are accompanied by a
package-version bump.

## Release Principles

Every release must have:

- a clear definition of done,
- local verification commands,
- release notes,
- security review notes,
- known limitations,
- a completed pentest report for the release,
- no hidden dependency on one developer machine.

Every release should prefer:

- small protocol increments,
- no-std core tests before transport integration,
- deterministic behavior before provider-specific behavior,
- bounded parsing and graph traversal before federation,
- explicit capability-aware APIs even when enforcement is still simple.

No production claim is allowed before `1.0.0`.

## Crate Package Versioning

Milestone tags such as `v0.3.0` describe the repository release. Individual
crate package versions describe publishable crate artifacts.

Rules:

- publish only crates whose package contents changed or whose dependency pins
  need to move,
- do not bump a leaf crate just because another unrelated crate changed,
- bump the root `bcx` facade when its exports, embedded docs, or local
  dependency pins change,
- when a local crate version changes, update and version-bump every dependent
  crate that needs the new local dependency pin, repeating transitively through
  the workspace dependency graph,
- update `docs/CRATE_VERSION_MATRIX.md` whenever any package version changes,
- keep local path dependency `version = "..."`
  requirements synchronized with the referenced local package version,
- run `scripts/validate-crate-version-matrix.py` before release handoff.

This avoids unnecessary crates.io uploads while keeping compatibility metadata
reviewable.

## Pentest Before Tags

Every version must pass security review and pentest before it is tagged. This
applies to tiny `v0.N.P` patch tags as well as milestone tags.

A version is not tag-ready until:

- `scripts/checks.sh` passes,
- the version-specific release gate passes,
- the release gate has checked latest pinned security and GitHub tooling,
- `cargo deny check` passes,
- `cargo audit` passes,
- release notes exist at `release-notes/RELEASE_NOTES_<version>.md`,
- a pentest report exists at `security/pentest/<tag>.md`,
- the pentest report records `Tag: <tag>`,
- the pentest report records `Commit: <40-character git commit>`,
- the pentest report has `Status: PASS`,
- the pentest report has non-blank `Tester:` and `Scope:` fields,
- the pentest report has a `Date: YYYY-MM-DD` field,
- the report commit matches current `HEAD` or `HEAD^` when the current commit
  only adds the permanent pentest report,
- root `PENTEST.md` does not exist,
- the tag does not already exist locally,
- `scripts/validate-release-readiness.sh <tag>` passes.

When a version's implementation criteria are done, stop before tagging and say:

```text
vX.Y.Z implementation stop reached. Run pentest for this release.
```

### Pentest Handoff Flow

1. The implementation owner finishes the criteria and reports the release is
   ready for review.
2. The maintainer runs pentest and writes temporary findings to root
   `PENTEST.md`.
3. The implementation owner reviews root `PENTEST.md`, fixes release-scope
   findings, updates release notes or tracking docs, and records the scratch
   report into `security/pentest/<tag>.md`:

```bash
scripts/record_pentest_report.py \
  --version X.Y.Z \
  --tester "<tester>" \
  --scope "<scope>" \
  --date YYYY-MM-DD
```

4. Root `PENTEST.md` is deleted after the permanent digest report has been
   reviewed.
5. The maintainer decides whether another pentest pass is needed. If yes,
   repeat from step 2. If no, commit the implementation and permanent pentest
   report, then wait for GitHub CI and CodeQL default setup.
6. When the maintainer reports that GitHub is green, the tag-only finalizer is:

```bash
scripts/finalize_release.py \
  --version X.Y.Z
```

The finalizer refuses to run while root `PENTEST.md` exists, refuses dirty
tracked worktrees, runs the version release gate, creates the annotated tag,
and optionally pushes `main` or the tag when explicitly requested.

The permanent report follows the Aesynx-style release evidence model. It names
the exact implementation commit that was reviewed. The release gate accepts a
report for current `HEAD`, or for `HEAD^` when current `HEAD` is only the
permanent pentest report commit. This keeps traceability without requiring a new
pentest for the evidence commit itself.

Never commit root `PENTEST.md`; it is scratch input and is ignored by git.

## Phase 0: Published Foundation And Direction Pivot

### v0.1.0 - Repository Foundation

Status: published.

Goal: initialize the serious Rust workspace and policy baseline.

Delivered:

- root `bcx` crate,
- focused no-std subcrates,
- EUPL-1.2 license,
- CI and local check script,
- dependency policy,
- security policy,
- implementation, version, threat-model, toolchain, and modularity docs.

### v0.2.0 - Protocol Family Pivot

Goal: change BCX from a narrow Fluxheim/HTTP-oriented protocol foundation into
a broader causal exchange protocol family without breaking the published crate
names.

Deliverables:

- preserve the original idea as `docs/original-idea.md`,
- update README and planning docs for the semantic overlay model,
- document core, profile, integration, proof, domain, and service families,
- create repository placeholders for future families,
- state that `bcx-core`, `bcx-model`, `bcx-crypto`, `bcx-policy`, and
  `bcx-wire` remain valid foundation crates,
- keep release hardening from the earlier `0.2.0` work,
- document that blockchain profiles are optional settlement or binding layers,
  not the BCX core.

Verification:

- `scripts/checks.sh`
- `scripts/release_0_2_gate.sh` after pentest report exists

Exit criteria:

- contributors can understand BCX as one invariant causal core with many
  native bindings,
- no future-profile crate is added before it has a written security contract,
- `v0.2.0` can be tagged as the architectural pivot.

## Phase 1: Core Statement Foundation

### v0.3.0 - Statement Identity Vocabulary

Goal: define no-std identifiers for statements, subjects, realms, profiles,
proof suites, policies, checkpoints, and native bindings.

Deliverables:

- `StatementId`,
- `SubjectId`,
- `RealmId`,
- `ProfileId`,
- `ProofSuiteId`,
- `PolicyId`,
- `CheckpointId`,
- `NativeBindingId`,
- zero-value and length validation tests.

Verification:

- `cargo test -p bcx-core`
- `cargo test --workspace --no-default-features`

Exit criteria:

- every public identifier constructor rejects invalid zero or malformed values.

### v0.4.0 - Statement Body Skeleton

Goal: add the first BCX/1 statement body vocabulary without encoding or
signatures.

Deliverables:

- `Intent`,
- `Admission`,
- `Effect`,
- `Delegation`,
- `Revocation`,
- `Checkpoint`,
- `Contradiction`,
- common `StatementKind`,
- minimum required-field validation.

Verification:

- `cargo test -p bcx-model`

Exit criteria:

- BCX can name the lifecycle without relying on HTTP or blockchain types.

### v0.5.0 - Causal Edge Model

Goal: model causal parentage and relationship kinds.

Deliverables:

- causal edge type,
- parent-count bounds,
- relationship kinds,
- cycle-prevention hooks,
- missing-parent representation.

Verification:

- `cargo test -p bcx-model`
- multi-parent fixture tests

Exit criteria:

- a statement can point to bounded parents with explicit edge meaning.

### v0.6.0 - Claim Status And Assurance

Goal: prevent signed claims from being treated as proven reality.

Deliverables:

- claim status enum,
- assurance level enum,
- contradiction marker,
- unknown and redacted evidence markers,
- tests showing declared purpose is not verified truth.

Verification:

- `cargo test -p bcx-model`
- docs with warnings denied

Exit criteria:

- public APIs cannot collapse declared, observed, verified, enforced, and
  finalized claims into one truth state.

### v0.7.0 - Statement Envelope

Goal: define the transport-independent statement container.

Deliverables:

- protocol version,
- realm,
- subject,
- optional audience type and signed audience binding,
- parents,
- policy references,
- validity window field shape,
- replay policy reference,
- disclosure policy reference,
- payload/body.

Verification:

- constructor tests,
- invalid audience and expiry shape tests.

Exit criteria:

- one statement shape can later be encoded and bound to any profile.

### v0.8.0 - Attestation Envelope

Goal: separate statements from signatures, witnesses, and proofs.

Deliverables:

- attestation type,
- issuer,
- key identifier,
- proof-suite identifier,
- proof bytes bounds,
- multi-attestation support.

Verification:

- `cargo test -p bcx-crypto`
- malformed proof metadata tests

Exit criteria:

- multiple issuers can attest to the same statement without changing its
  logical identity.

### v0.9.0 - Native Binding Envelope

Goal: model the binding from a BCX statement to a native operation without any
profile-specific dependency.

Deliverables:

- native binding type,
- profile identifier,
- native commitment digest,
- evidence commitment,
- binding status,
- profile extension slot.

Verification:

- binding validation tests,
- mutation tests for statement/profile mismatch.

Exit criteria:

- HTTP, Ethereum, Cardano, Bitcoin, XRP, and offline profiles can all share
  the same binding concept.

### v0.10.0 - Checkpoint Vocabulary

Goal: define checkpoint commitments before settlement profiles exist.

Deliverables:

- statement root,
- attestation root,
- binding root,
- policy root,
- revocation root,
- previous checkpoint reference,
- checkpoint sequence.

Verification:

- checkpoint validation tests,
- missing-root tests.

Exit criteria:

- one checkpoint can later have many settlement receipts.

## Phase 2: Canonical Codec And Test Vectors

### v0.11.0 - Canonical Codec Decision

Goal: formally choose the first canonical binary representation.

Deliverables:

- encoding decision record,
- deterministic CBOR admission review if selected,
- JSON inspection boundary,
- no-std and alloc impact analysis,
- dependency admission notes.

Verification:

- docs checks,
- dependency policy review if a crate is admitted.

Exit criteria:

- no signed or hashed object can use ad hoc JSON or Rust memory layout.

### v0.12.0 - Codec Crate Skeleton

Goal: add `bcx-codec` as a no-std crate with errors and limits only.

Deliverables:

- crate scaffold,
- encode/decode error model,
- maximum depth,
- maximum item counts,
- maximum byte lengths,
- malformed-input fail-fast tests.

Verification:

- `cargo test -p bcx-codec`
- `cargo test --workspace --no-default-features`

Exit criteria:

- decoder bounds exist before full decoding exists.

### v0.13.0 - Canonical Identifier Encoding

Goal: produce stable bytes for core identifiers and digests.

Deliverables:

- canonical bytes for IDs,
- canonical bytes for digests,
- cross-platform fixtures,
- fixture regeneration guard.

Verification:

- `cargo test -p bcx-codec`
- fixture diff check

Exit criteria:

- all supported platforms produce the same bytes for identifier fixtures.

### v0.14.0 - Canonical Statement Encoding

Goal: encode the statement envelope and body skeleton deterministically.

Deliverables:

- statement encoder,
- statement decoder,
- unknown-extension behavior,
- mutation fixtures,
- statement ID derivation.

Verification:

- canonical test vectors,
- malformed fixture tests,
- no-default-features pass.

Exit criteria:

- the same logical statement produces the same `StatementId` everywhere.

### v0.15.0 - Canonical Attestation And Binding Encoding

Goal: encode attestations and native bindings deterministically.

Deliverables:

- attestation encoding,
- binding encoding,
- proof byte limits,
- native evidence limits,
- mutation fixtures.

Verification:

- `cargo test -p bcx-codec`
- tamper fixture tests

Exit criteria:

- attestation and binding hashes are stable and mutation-sensitive.

### v0.16.0 - Canonical Checkpoint Encoding

Goal: encode checkpoints and roots deterministically.

Deliverables:

- checkpoint encoding,
- root ordering rules,
- empty-root rejection where required,
- previous-checkpoint validation.

Verification:

- checkpoint vector tests,
- cross-platform fixture tests.

Exit criteria:

- settlement profiles can rely on stable checkpoint IDs.

## Phase 3: Policy, Replay, And Delegation

### v0.17.0 - Validity And Replay Policy

Goal: make replay resistance explicit before any carrier profile exists.

Deliverables:

- validity window,
- expiry/freshness type with overflow-safe remaining-time checks,
- nonce policy,
- issuer sequence policy,
- idempotency policy,
- replay cache trait.

Verification:

- expired statement tests,
- duplicate nonce and sequence tests.

Exit criteria:

- consequential statements cannot be accepted without a replay policy.

### v0.18.0 - Delegation Narrowing

Goal: permit authority delegation that narrows but never silently broadens.

Deliverables:

- delegation body validation,
- child scope checks,
- purpose narrowing,
- time-window narrowing,
- maximum delegation depth.

Verification:

- valid narrowing tests,
- broadening rejection tests.

Exit criteria:

- a child delegation cannot remove parent restrictions.

### v0.19.0 - Disclosure Policy

Goal: encode what can be revealed, redacted, committed, or withheld.

Deliverables:

- disclosure policy vocabulary,
- redaction marker,
- private evidence commitment,
- public evidence marker,
- unknown evidence marker.

Verification:

- redaction validation tests,
- missing evidence tests.

Exit criteria:

- explanations can preserve privacy without pretending to be complete.

### v0.20.0 - Settlement Policy

Goal: describe how checkpoints may be witnessed or settled.

Deliverables:

- primary backend policy,
- primary-with-witnesses policy,
- require-all policy,
- threshold settlement policy,
- normalized finality status.

Verification:

- threshold validation tests,
- finality transition tests.

Exit criteria:

- one checkpoint can express several settlement receipts without requiring a
  blockchain.

## Phase 4: Verification Core

### v0.21.0 - Verifier Provider Boundary

Goal: define crypto verification without choosing production providers.

Deliverables:

- verifier trait,
- proof-suite policy hook,
- provider error model,
- deterministic test verifier.

Verification:

- `cargo test -p bcx-crypto`
- provider failure tests.

Exit criteria:

- provider crates can be added later without changing statement semantics.

### v0.22.0 - Statement Verification

Goal: verify canonical statement identity and structural validity.

Deliverables:

- statement ID verification,
- required field checks,
- audience binding checks,
- expiry/freshness checks,
- policy reference checks.

Verification:

- tamper tests,
- wrong-audience tests.

Exit criteria:

- changing any security-relevant statement field invalidates verification.

### v0.23.0 - Attestation Verification

Goal: verify attestations over canonical statement IDs.

Deliverables:

- proof-suite dispatch,
- issuer/key checks,
- multi-attestation validation,
- unknown proof-suite handling.

Verification:

- valid and invalid proof fixtures,
- unknown-suite tests.

Exit criteria:

- attestations are verifiable without native profile dependencies.

### v0.24.0 - Binding Verification

Goal: verify that native binding evidence commits to the intended statement.

Deliverables:

- binding verifier trait,
- profile ID checks,
- native commitment checks,
- mutated evidence tests.

Verification:

- `cargo test --workspace`
- binding mutation fixtures.

Exit criteria:

- profiles can plug in native verification without changing core logic.

### v0.25.0 - Checkpoint Verification

Goal: verify checkpoint membership and continuity.

Deliverables:

- membership proof model,
- previous-checkpoint check,
- root consistency checks,
- missing-root behavior.

Verification:

- checkpoint fixture tests,
- continuity tests.

Exit criteria:

- a checkpoint can be verified independently of where it is settled.

## Phase 5: Explanation And Offline Use

### v0.26.0 - Explain Crate Skeleton

Goal: add `bcx-explain` for bounded WHY semantics.

Deliverables:

- crate scaffold,
- query type,
- query direction,
- maximum depth,
- maximum nodes,
- maximum response bytes.

Verification:

- `cargo test -p bcx-explain`
- oversized query tests.

Exit criteria:

- no WHY query can request unbounded work.

### v0.27.0 - Explanation Bundle

Goal: return bounded proof bundles for local/offline verification.

Deliverables:

- explanation bundle type,
- statement references,
- attestation references,
- binding references,
- missing and redacted markers.

Verification:

- bundle validation tests,
- missing-parent fixture tests.

Exit criteria:

- an offline verifier can see what is proven, missing, redacted, or unknown.

### v0.28.0 - Contradiction Handling

Goal: preserve conflicting claims without overwriting them.

Deliverables:

- contradiction statement checks,
- conflicting claim relation,
- assurance summary,
- explanation output for conflicts.

Verification:

- conflicting fixture tests,
- no-overwrite tests.

Exit criteria:

- BCX can represent "A says sent" and "B says not received" at the same time.

### v0.29.0 - Offline Profile

Goal: add `bcx-offline` for air-gapped bundles.

Deliverables:

- offline bundle profile,
- bundle manifest,
- evidence file commitments,
- detached private evidence references.

Verification:

- `cargo test -p bcx-offline`
- tampered bundle tests.

Exit criteria:

- BCX can work without HTTP, Fluxheim, or any blockchain.

### v0.30.0 - CLI Skeleton

Goal: add `bcx-cli` for inspection without making it a root dependency.

Deliverables:

- `bcx verify`,
- `bcx why`,
- `bcx inspect`,
- fixture-driven command tests.

Verification:

- CLI smoke tests,
- no root dependency regression.

Exit criteria:

- developers can inspect offline BCX objects locally.

## Phase 6: HTTP And Fluxheim

### v0.31.0 - HTTP Profile Security Contract

Goal: define `BCX-HTTP/1` before implementation.

Deliverables:

- attached mode contract,
- encapsulated mode contract,
- committed HTTP components,
- intermediary mutation rules,
- replay rules,
- limits.

Verification:

- docs checks,
- threat-model update.

Exit criteria:

- implementation cannot start without a precise HTTP security contract.

### v0.32.0 - HTTP Profile Crate

Goal: add dependency-light `bcx-http`.

Deliverables:

- profile identifiers,
- header names,
- attached-mode commitment builder,
- encapsulated-mode envelope model.

Verification:

- `cargo test -p bcx-http`
- mutation tests for committed components.

Exit criteria:

- HTTP commitments can be verified without Hyper or Axum dependencies.

### v0.33.0 - HTTP Hyper Integration

Goal: add `bcx-http-hyper` as the first concrete HTTP integration.

Deliverables:

- request extraction,
- response receipt extraction,
- header validation,
- body digest integration.

Verification:

- integration tests,
- malformed request tests.

Exit criteria:

- one real Rust HTTP stack can carry BCX objects.

### v0.34.0 - Fluxheim Profile Contract

Goal: document exactly what Fluxheim can observe and enforce.

Deliverables:

- Fluxheim ingress effect scope,
- route decision scope,
- upstream response scope,
- cache decision scope,
- non-claims about upstream database commits.

Verification:

- docs checks,
- threat-model update.

Exit criteria:

- Fluxheim integration cannot overclaim application effects.

### v0.35.0 - Fluxheim Integration Skeleton

Goal: add `bcx-fluxheim` as an optional integration crate.

Deliverables:

- policy adapter traits,
- receipt builder,
- route decision binding,
- local WHY fixture.

Verification:

- integration fixture tests,
- no root dependency regression.

Exit criteria:

- Fluxheim can emit local BCX causal receipts.

### v0.36.0 - Two-Fluxheim Demonstration

Goal: trace one signed operation across two Fluxheim nodes.

Deliverables:

- local smoke script,
- signed intent,
- admission,
- effect,
- explanation bundle.

Verification:

- smoke test,
- tamper test.

Exit criteria:

- BCX proves useful over HTTP before any blockchain integration exists.

## Phase 7: First Settlement Profiles

### v0.37.0 - Ethereum Profile Security Contract

Goal: define what `BCX-ETHEREUM/1` commits and can prove.

Deliverables:

- chain ID commitment,
- contract address commitment,
- calldata digest commitment,
- value commitment,
- sender or authorization commitment,
- expiry and nullifier rules,
- finality policy.

Verification:

- docs checks,
- threat-model update.

Exit criteria:

- Ethereum implementation cannot start without a precise security contract.

### v0.38.0 - Ethereum Profile Crate

Goal: add dependency-light `bcx-ethereum`.

Deliverables:

- Ethereum binding vocabulary,
- checkpoint anchoring model,
- finality status mapping,
- mock receipt verification.

Verification:

- `cargo test -p bcx-ethereum`
- mutation tests.

Exit criteria:

- Ethereum can bind and settle checkpoints conceptually without Alloy yet.

### v0.39.0 - Ethereum Alloy Integration

Goal: add `bcx-ethereum-alloy` for concrete RPC and primitive integration.

Deliverables:

- RPC receipt adapter,
- chain ID fetch adapter,
- transaction evidence builder,
- testnet-ready fixtures.

Verification:

- mocked RPC tests,
- optional live smoke script.

Exit criteria:

- Ethereum integration is useful without entering rollup scope.

### v0.40.0 - Cardano Profile Security Contract

Goal: define `BCX-CARDANO/1` around EUTXO semantics.

Deliverables:

- state UTXO commitment,
- consumed-output rule,
- created-output rule,
- validator version commitment,
- finality policy.

Verification:

- docs checks,
- threat-model update.

Exit criteria:

- Cardano is modeled natively rather than imitating Ethereum.

### v0.41.0 - Cardano Profile Crate

Goal: add dependency-light `bcx-cardano`.

Deliverables:

- Cardano binding vocabulary,
- checkpoint-in-UTXO model,
- finality status mapping,
- mock receipt verification.

Verification:

- `cargo test -p bcx-cardano`
- mutation tests.

Exit criteria:

- a BCX checkpoint can have both Ethereum and Cardano receipt models.

### v0.42.0 - Cardano Pallas Integration

Goal: add `bcx-cardano-pallas` for offchain Rust integration.

Deliverables:

- transaction evidence builder,
- UTXO evidence parser,
- mock indexer adapter,
- fixture tests.

Verification:

- mocked indexer tests,
- optional local smoke script.

Exit criteria:

- a second deep settlement family proves BCX is not Ethereum-specific.

## Phase 8: Additional Bindings And Standards

### v0.43.0 - SCITT Profile Contract

Goal: define how BCX checkpoints can use a transparency service.

Deliverables:

- signed statement mapping,
- transparency receipt model,
- witness finality status,
- privacy notes.

Verification:

- docs checks.

Exit criteria:

- BCX can use transparency infrastructure without becoming SCITT.

### v0.44.0 - OpenTelemetry Profile Contract

Goal: define observability correlation without turning telemetry into proof.

Deliverables:

- statement ID to trace/span mapping,
- non-proof warning,
- export boundary.

Verification:

- docs checks.

Exit criteria:

- telemetry remains operational context, not cryptographic evidence.

### v0.45.0 - Bitcoin Profile Decision

Goal: decide whether and how Bitcoin fits as anchoring, settlement, or payment
evidence.

Deliverables:

- security contract draft,
- finality model,
- transaction commitment model,
- privacy review,
- dependency plan.

Verification:

- docs checks,
- security review notes.

Exit criteria:

- Bitcoin is either scoped clearly or deferred with reasons.

### v0.46.0 - XRP Profile Decision

Goal: decide whether and how XRP Ledger fits as payment or settlement evidence.

Deliverables:

- security contract draft,
- ledger finality model,
- transaction evidence model,
- account and memo privacy review,
- dependency plan.

Verification:

- docs checks,
- security review notes.

Exit criteria:

- XRP is either scoped clearly or deferred with reasons.

## Phase 9: Conformance And Registry

### v0.47.0 - Registry Crate

Goal: add `bcx-registry` for profile, type, algorithm, and extension IDs.

Deliverables:

- registry ID model,
- reserved ranges,
- experimental ranges,
- unknown-extension rules.

Verification:

- registry validation tests.

Exit criteria:

- ecosystem crates can avoid ID collisions.

### v0.48.0 - Conformance Crate

Goal: add `bcx-conformance` for mandatory interoperability vectors.

Deliverables:

- canonical encoding vectors,
- signature vectors,
- replay cases,
- unknown extension cases,
- binding mutation cases,
- checkpoint cases.

Verification:

- conformance test suite.

Exit criteria:

- independent implementations can validate compatibility.

### v0.49.0 - Testkit Crate

Goal: add `bcx-testkit` for deterministic builders and adversarial fixtures.

Deliverables:

- statement builders,
- attestation builders,
- binding builders,
- tamper helpers,
- deterministic keys for tests only.

Verification:

- `cargo test -p bcx-testkit`

Exit criteria:

- future releases can add tests faster without weakening production crates.

## Phase 10: Domain Profiles

### v0.50.0 - Banking Domain Contract

Goal: define banking semantics separate from transport and settlement.

Deliverables:

- mandate model,
- approval model,
- transfer intent vocabulary,
- settlement effect vocabulary,
- compliance evidence hooks.

Verification:

- docs checks,
- threat-model update.

Exit criteria:

- banking meaning is not hard-coded into core BCX.

### v0.51.0 - AI Agent Domain Contract

Goal: define delegated machine-action semantics.

Deliverables:

- agent identity vocabulary,
- model/tool authority,
- human approval markers,
- tool-call effect markers,
- revocation hooks.

Verification:

- docs checks,
- threat-model update.

Exit criteria:

- agent workflows can use BCX without weakening the core.

## Phase 11: Hardening Toward 1.0

### v0.52.0 - Fuzzing And Negative Corpus

Goal: expand malformed input and mutation testing.

Deliverables:

- fuzz harness plan,
- malformed corpus,
- decode and verification negative corpus,
- CI integration if tooling is stable.

Verification:

- local fuzz smoke,
- corpus regression tests.

Exit criteria:

- known malformed cases fail closed.

### v0.53.0 - MSRV Matrix Evidence

Goal: prove Rust `1.90.0` through `1.96.0` compatibility.

Deliverables:

- README evidence table update,
- scripted matrix check,
- CI or local reproducibility notes.

Verification:

- documented matrix run.

Exit criteria:

- MSRV support is evidence-based, not aspirational.

### v0.54.0 - no_std And Dependency Audit

Goal: verify the core remains no-std and dependency-light.

Deliverables:

- no-std audit,
- dependency tree audit,
- feature leakage tests,
- alloc/std feature documentation.

Verification:

- `cargo test --workspace --no-default-features`
- feature checks.

Exit criteria:

- root/core crates do not accidentally pull transport or runtime dependencies.

### v0.55.0 - Security Specification Draft

Goal: turn implementation docs into normative specs.

Deliverables:

- `BCX-CORE/1` draft,
- `BCX-CODEC-CBOR/1` draft,
- `BCX-PROOF-COSE/1` draft if COSE is admitted,
- profile spec template.

Verification:

- docs checks,
- security review.

Exit criteria:

- crate behavior is traceable to written protocol requirements.

### v0.56.0 - Interop Demonstration

Goal: show one logical causal graph across multiple profiles.

Deliverables:

- offline bundle,
- HTTP/Fluxheim evidence,
- Ethereum or Cardano checkpoint receipt,
- explanation bundle.

Verification:

- end-to-end smoke script,
- tamper test.

Exit criteria:

- BCX is visibly one causal protocol with several bindings.

### v0.57.0 - API Freeze Candidate

Goal: identify APIs intended to survive into `1.0.0`.

Deliverables:

- public API audit,
- deprecation list,
- naming cleanup,
- migration notes.

Verification:

- docs build,
- examples build.

Exit criteria:

- no unstable experimental API is accidentally presented as stable.

### v0.58.0 - Release Candidate 1

Goal: cut the first `1.0.0` candidate.

Deliverables:

- release candidate notes,
- full conformance run,
- pentest scope,
- residual risk register.

Verification:

- full local and CI gates,
- pentest after implementation stop.

Exit criteria:

- only release-candidate fixes remain before `1.0.0`.

### v0.59.0 - Release Candidate 2

Goal: resolve RC1 findings and repeat the release audit.

Deliverables:

- fixed RC1 findings,
- updated conformance results,
- updated threat model,
- updated release notes.

Verification:

- full local and CI gates,
- pentest after implementation stop.

Exit criteria:

- no known blocker remains for `1.0.0`.

## v1.0.0 - Production-Ready Foundation

Goal: publish the first serious production-ready BCX protocol foundation.

Required scope:

- stable root `bcx` facade,
- stable core statement, attestation, binding, checkpoint, and explanation
  vocabulary,
- canonical encoding and conformance vectors,
- standard proof-suite boundary,
- replay, delegation, disclosure, and settlement policy checks,
- local/offline WHY proof bundles,
- at least one carrier profile,
- at least one live integration,
- at least two checkpoint witness or settlement receipt models,
- complete threat model, security controls, release notes, and supply-chain
  documentation,
- final pentest PASS for the exact reviewed commit.

Non-goals for `1.0.0`:

- replacing HTTP,
- becoming an Ethereum-only or Cardano-only protocol,
- supporting every blockchain,
- proving internal human motive,
- claiming production readiness for every future integration crate.