v0.6.2 — Identity Registry (E2E verified)

Latest

Latest

stainlu released this 02 Apr 19:13

· 50 commits to main since this release

aa5359a

Patch release with server-side fixes and E2E verification against live production.

Fixes since v0.6.0

Server: Fixed Ed25519 attestation signing (PKCS8 format for Cloudflare Workers)
Server: Graceful fallback if attestation signing fails (verify endpoint no longer 500s)
E2E tests: Fixed login payload parsing (separate stdout/stderr capture)

Verified

32/32 E2E tests passing against live api.newtype-ai.org:

init, push (TOFU), public card fetch, branch workflow
Ownership verification with admitted, identity metadata, attestation
Cross-app replay protection (403)
Expired timestamp rejection (401)
Login payload includes public_key

Identity Registry features (from v0.6.0)

Machine fingerprint collection at init
public_key in login payload
Policy-based verification (policy parameter on /agent-card/verify)
Identity metadata (registration_timestamp, machine_identity_count, ip_identity_count, total_logins, etc.)
Server attestation (Ed25519 signed verification results)
min_age_seconds defaults to 5 seconds

Assets 2