okami 0.2.0

Post-quantum cryptographic identity for AI agents
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98

{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "$id": "https://github.com/im40percentgit/okami/schema/audit-event.json",
  "title": "OkamiAuditEvent",
  "description": "A signed okami audit event. Produced by AuditEvent::sign(). Events form a tamper-evident chain via SHA-256 hashing of previous SignedAuditEvent bincode bytes.",
  "type": "object",
  "required": ["event", "signature"],
  "properties": {
    "event": {
      "description": "The unsigned audit event payload.",
      "type": "object",
      "required": ["version", "timestamp", "agent_id", "action", "details", "chain_hash"],
      "properties": {
        "version": {
          "description": "Format version byte. Currently 1.",
          "type": "integer",
          "minimum": 1,
          "maximum": 255
        },
        "timestamp": {
          "description": "UTC timestamp when this event occurred (RFC 3339).",
          "type": "string",
          "format": "date-time"
        },
        "agent_id": {
          "description": "SPIFFE ID of the agent that generated this event.",
          "type": "object",
          "required": ["uri", "trust_domain_end"],
          "properties": {
            "uri": {
              "description": "Full SPIFFE URI (e.g. spiffe://example.com/agent/worker-1).",
              "type": "string",
              "pattern": "^spiffe://[a-zA-Z0-9.-]+/.+"
            },
            "trust_domain_end": {
              "description": "Byte index into uri where trust domain ends (internal field).",
              "type": "integer",
              "minimum": 9
            }
          }
        },
        "action": {
          "description": "Human-readable action label (e.g. delegation.issued, key.rotated).",
          "type": "string",
          "minLength": 1,
          "examples": [
            "delegation.issued",
            "delegation.received",
            "key.rotated",
            "key.revoked",
            "db.query.executed",
            "llm.invoked"
          ]
        },
        "details": {
          "description": "Structured details specific to this action. Schema is action-defined.",
          "type": ["object", "array", "string", "number", "boolean", "null"]
        },
        "chain_hash": {
          "description": "Hex SHA-256 of the previous SignedAuditEvent bincode bytes. Empty string for the first event in a chain.",
          "type": "string",
          "pattern": "^([0-9a-f]{64}|)$"
        }
      },
      "additionalProperties": false
    },
    "signature": {
      "description": "PQC signature bytes (hybrid Ed25519+ML-DSA-65, length-prefixed composite format) over the bincode-serialized event.",
      "type": "array",
      "items": {
        "type": "integer",
        "minimum": 0,
        "maximum": 255
      },
      "minItems": 1
    }
  },
  "additionalProperties": false,
  "examples": [
    {
      "event": {
        "version": 1,
        "timestamp": "2026-03-25T20:44:37Z",
        "agent_id": {
          "uri": "spiffe://example.com/worker/1",
          "trust_domain_end": 20
        },
        "action": "delegation.received",
        "details": {
          "issuer": "spiffe://example.com/orchestrator",
          "scopes": ["read:db", "invoke:llm"]
        },
        "chain_hash": ""
      },
      "signature": [64, 0, 0, 0]
    }
  ]
}