@superinstance/plato-provenance

Cryptographic provenance for agent knowledge tiles: signing, hash chains, trust scoring, and audit logging.

Zero dependencies. Works in Node.js (uses Node crypto). Browser support requires a crypto polyfill.

Install

npm install @superinstance/plato-provenance

Quick Start

const { TileSigner, ProvenanceChain, TrustManager, AuditLog, AuditEventType } = require('@superinstance/plato-provenance');

// Sign tiles
const signer = new TileSigner('agent-1');
const tile = signer.createTile('physics', 'What is gravity?', 'A fundamental force', 0.9);

// Build provenance chain
const chain = new ProvenanceChain();
chain.addTile(tile);
console.log(chain.verifyChain(tile.tileId, { [tile.tileId]: tile })); // true

// Trust scoring
const trust = new TrustManager();
trust.recordSubmission('agent-1', true, 0.9);
console.log(trust.getScore('agent-1').toDict());

// Audit logging
const audit = new AuditLog();
audit.log(AuditEventType.TILE_SUBMITTED, 'agent-1', { domain: 'physics' });
console.log(audit.exportJsonl());

API

SignedTile — a tile with cryptographic provenance

TileSigner — HMAC-SHA256 signing and verification

ProvenanceChain — hash chain for tile ancestry and tamper detection

TrustScore / TrustManager — trust scoring with decay and quarantine

AuditLog / AuditEvent — append-only security event logging

License

MIT © Cocapn