Module agent 

Agent Identity Certificate schema.

An Agent Identity Certificate is a signed credential that proves who an agent is and what it is authorized to do. Produced once when an agent registers, lives permanently with the agent. The TLS certificate equivalent for AI agents.

Structs

AgentCapabilities

Agent capabilities: what tools and services the agent is authorized to use.

AgentCertificate

The complete Agent Certificate – identity + capabilities + declaration with a signature over the canonical JSON of all three.

AgentDeclaration

Agent declaration: scope constraints.

AgentIdentity

Agent identity: who the agent is.

CertificateSignature

Signature over the certificate content.

ToolCapability

A single authorized tool with optional description.

Enums

CertificateVerifyError

Errors verifying an AgentCertificate signature.

Constants

CERTIFICATE_SCHEMA_VERSION

Current certificate schema version. Certificates without this field are treated as schema “0” and verified under legacy rules (pre-v0.9.0 shape).

CERTIFICATE_TYPE

Functions

effective_schema_version

Resolve a schema_version Option to its effective string, defaulting to “0” when absent. Centralizing this avoids the legacy default leaking out across call sites.

verify_certificate

Verify the Ed25519 signature on an AgentCertificate against the public key embedded in signature.public_key. Reconstructs the same canonical JSON the issuer signed and checks the bytes match.