Harden Agent Registry grant request scope by mdheller · Pull Request #12 · SourceOS-Linux/agent-machine

mdheller · 2026-05-04T17:53:21Z

Summary

Hardens AgentRegistryGrant so grant requests carry explicit requested provider/model/tool/cache/memory/storage/evidence scope and requested expiration.
Adds grant response revocation status, revocation hook, and optional non-authoritative external trust signals.
Updates active, render-only, missing, and revoked grant examples to match the stricter request/response shape.
Strengthens governance semantic validation so allowed grant scope must be requested, active grants require revocation hooks, and external trust signals remain non-authoritative verifier inputs.
Adds docs/architecture/agent-registry-grants.md to document the SourceOS trust boundary and the PCH/ERC-8004-style adapter stance.

Locally checked the revised JSON Schema with jsonschema draft 2020-12 validation in the assistant sandbox.
Locally checked the updated active, render-only, missing, and revoked example payloads against the revised schema in the assistant sandbox.
Locally syntax-checked the revised governance.py content in the assistant sandbox.

Full repository make validate still needs GitHub Actions or a live checkout run before production promotion.

Closes #5

mdheller added 7 commits May 4, 2026 13:10

Harden Agent Registry grant schema

689fa53

Add explicit activation grant request scope

866a1e8

Add explicit missing grant request scope

49ee196

Add explicit render grant request scope

9a19f43

Add explicit revoked grant request scope

68af2dc

Enforce Agent Registry grant semantics

0c86356

Document Agent Registry grant boundary

3293200

mdheller merged commit 21957fb into main May 4, 2026
1 check passed

mdheller mentioned this pull request May 4, 2026

Add ExternalTrustSignalProvider adapter contract #13

Open