Skip to content

Releases: agentrust-io/trace-spec

TRACE v0.1.1

15 Jun 23:46
@imran-siddique imran-siddique
v0.1.1
ae152e8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
TRACE v0.1.1 Latest
Latest

Patch release. Required by cmcp-runtime 0.2.0.

Changes since v0.1.0

  • [schema] Add software-only platform value for non-attested dev-mode records (#23) — dev records now carry platform: software-only instead of tpm2, keeping hardware assertions honest
  • [spec] Make signature and freshness binding mandatory for Trust Records (#24)
  • [models] Enforce exact hex length and reject uppercase in DigestStr (CRYPTO-008, CRYPTO-009) (#11)
  • Workflow and infra fixes
Assets 2
Loading

TRACE v0.1.0

15 Jun 23:45
@imran-siddique imran-siddique
v0.1.0
ec6d4ec
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
TRACE v0.1.0

Initial public draft of the TRACE specification. Announced at Confidential Computing Summit, San Francisco, June 23 2026.

Highlights

  • Trust Record schema (§3.1): subject, model, runtime, policy, data_class, tool_transcript, build_provenance, appraisal, transparency, cnf
  • Wire format (§3.2): EAT/JWT and CBOR-COSE envelopes; profile URI tag:agentrust.io,2026:trace-v0.1
  • Five-step offline verification protocol with no issuer callback (§3.3)
  • Standards composition (§4): RATS/EAT, SLSA, SPIFFE, SCITT, EAR, MCP, A2A, AIBOM, C2PA
  • Hardware roots: NVIDIA H100/Blackwell, Intel TDX, AMD SEV-SNP, Azure MAA, GCP Confidential Space, AWS Nitro
  • JSON Schema for Trust Record validation (schema/trace-claim.json)
  • Reference examples: AMD SEV-SNP, Intel TDX, NVIDIA H100
Loading