Skip to content

feat: trust anchoring, in-browser x402 checkout, funnel + positioning#7

Open
vinaybhosle wants to merge 3 commits into
mainfrom
codex/agentstamp-audit-fix
Open

feat: trust anchoring, in-browser x402 checkout, funnel + positioning#7
vinaybhosle wants to merge 3 commits into
mainfrom
codex/agentstamp-audit-fix

Conversation

@vinaybhosle

Copy link
Copy Markdown
Owner

Closes the four gaps surfaced in the 2026-06-23 strategic review (trust intelligence: feature-complete but pre-revenue and self-referential).

Lag 1 β€” Externally-anchored trust signals (answers the core "self-report" critique)

  • src/livenessProbe.js β€” independent 30-min probe of each agent's declared endpoint. SSRF-hardened: connect-time IP pinning (defeats DNS-rebinding) via https + pinned lookup, no redirect-follow, status-only, 30-day retention.
  • reputation.js / trust.js β€” additive provenance {self_reported, independently_verified, independent_pct} + independent_signals on /trust/check. Numeric score formula unchanged (backward compatible).
  • stamp.js /event β€” counterparty attestations: a relying party can co-sign an outcome about another agent (attestation_type: counterparty_confirmed, attester_wallet, monotonic sequence), with 10-min anti-spam dedupe + atomic transaction. Self-report path unchanged.

Lag 2 β€” Revenue funnel

  • web/lib/payment.ts β€” in-browser x402 paid mint (viem + x402-fetch): Base chain auto-switch, per-tier USDC cap, never shows success without a backend 201, and blocks double-charge on retry.
  • register/page.tsx β€” fixed the pricing bug (all tiers showed $0.01 β†’ now $0.001 / $0.005 / $0.01), clickable tier badges.
  • src/routes/funnel.js + web/lib/analytics.ts β€” cookieless, PII-stripped funnel instrumentation (POST /funnel/event, GET /funnel/summary).

Lag 3 β€” Distribution

  • "Partner / integrate" CTA (mailto:vinay@agentstamp.org) on the footer + every registry profile.

Lag 4 β€” Positioning

  • Hero β†’ "Decide whether to trust an AI agent you've never met"; enterprise contrast band (vs CrowdStrike/Ceros/SailPoint); "is / is-not runtime security" boundary; ERC-8004 reframe; meta description.

Verification

  • Backend unit tests: 273/273 (incl. 23 new trust + 30 funnel). Web build clean (35/35 pages).
  • Two independent code reviews flagged 3 critical issues (double-charge retry, wrong per-tier payment cap, SSRF DNS-rebind) β€” all fixed and re-verified.
  • e2e flows hit the live PM2 server on :4005 (old code) and are gated by its rate limiter, so they reflect old behavior until pm2 reload. The in-process unit suite is the authoritative signal.

Test plan

  • pm2 reload agentstamp-backend (idempotent DB migrations auto-run on boot; liveness cron starts)
  • Rebuild + pm2 reload agentstamp-web
  • Before real money: one manual Bronze ($0.001) end-to-end wallet test on Base (x402-fetch signer compatibility can't be verified without a funded wallet + live facilitator)
  • Spot-check /trust/check/:wallet returns provenance + independent_signals

Notes

  • Also refreshes CLAUDE.md (stale "in progress" security notes β†’ resolved) and adds .gitignore rules for operational artifacts.
  • The branch also carries prior codex/agentstamp-audit-fix commits (dependency/security audit fixes) and bundles some pending branch doc/SEO edits.

πŸ€– Generated with Claude Code

Implements the four gaps from the 2026-06-23 strategic review.

Lag 1 β€” externally-anchored trust signals (answers the self-report critique):
- src/livenessProbe.js: independent endpoint liveness probe (30-min sweep),
  SSRF-hardened with connect-time IP pinning + no redirect-follow
- reputation.js / trust.js: additive provenance + independent_signals on
  /trust/check (numeric score unchanged; backward compatible)
- stamp.js /event: counterparty attestations (attestation_type, attester_wallet,
  monotonic sequence) with anti-spam dedupe + atomic transaction
- DB migrations: agents.liveness_*, stamp_events attestation cols, liveness_checks

Lag 2 β€” revenue funnel:
- web/lib/payment.ts: in-browser x402 paid mint (viem + x402-fetch), Base
  auto-switch, per-tier USDC cap, never-fake-success, double-charge-on-retry guard
- register/page.tsx: fixed pricing display ($0.001/$0.005/$0.01), clickable tiers
- src/routes/funnel.js + web/lib/analytics.ts: cookieless funnel instrumentation

Lag 3 β€” distribution: Partner/integrate CTA on footer + registry profiles
Lag 4 β€” positioning: open-web wedge hero, enterprise contrast band, is/is-not band

Also refreshes CLAUDE.md (security notes resolved), gitignores operational
artifacts, and bundles pending branch doc/SEO edits.

Backend unit tests 273/273; web build clean (35/35 pages).
…rop stale v2.3.0

- Hero pill: stale "v2.3.0 β€” ..." β†’ durable highlights (ERC-8004 reputation
  layer, Ed25519 forensic audit, 3-line SDK)
- Repurpose the "What's New in v2.3.0" block into a "Trust you can't fake"
  section surfacing the externally-anchored trust signals (self-reported vs
  verified, independent liveness, cryptographic wallet proof, counterparty
  attestation) β€” model-level copy, no "live API" claim (provenance API ships
  with the backend reload)
- Remove now-unused Fingerprint import

Deployed to agentstamp.org (build + pm2 restart agentstamp-web).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant