Expand description
Provenance signatures for polychrome.
Wraps commonware-cryptography ed25519 so the harness can sign the bytes
that back a tool call’s signature field and the control plane can verify
them. A fixed NAMESPACE provides cross-domain separation (a signature
minted here cannot be replayed in another context).
This primitive is runtime-agnostic — it does not pull in commonware-runtime
or commonware-p2p.
Modules§
- approval
- HITL approval payload encoders/decoders and signer.
- handoff
- Canonical signing for handoff (sub-agent transfer) provenance.
- toolcall
- Canonical signing for tool-call provenance.
Structs§
- Signer
- An ed25519 signing key.
Constants§
- NAMESPACE
- Domain-separation namespace prepended to every polychrome signature.
Functions§
- verify
- Verify
sigovermsgagainst an encodedpublic_key.