transaction_data: If used, construct and validate per Final rules; for SD-JWT VC, require require_cryptographic_holder_binding: true and validate KB-JWT transaction_data_hashes against the wire transaction_data bytes and negotiated hash algorithm (default sha-256).
verifier_info: If attestations are part of the flow, add request construction and any validation the plugin performs.
Non–holder-bound credentials: If any credential query sets require_cryptographic_holder_binding: false, issue and verify state per Final (high entropy, fresh per request, verified on return).
EST: 2days
transaction_data: If used, construct and validate per Final rules; for SD-JWT VC, require require_cryptographic_holder_binding: true and validate KB-JWT transaction_data_hashes against the wire transaction_data bytes and negotiated hash algorithm (default sha-256).
verifier_info: If attestations are part of the flow, add request construction and any validation the plugin performs.
Non–holder-bound credentials: If any credential query sets require_cryptographic_holder_binding: false, issue and verify state per Final (high entropy, fresh per request, verified on return).
EST: 2days