AVP v1.0 · public signature verifier
Verify any AVP signature.
Paste any SHA-256 signature emitted by Avena Agent (visible on emails, mission timelines, and AVP offer JSON files). The verifier re-canonicalizes the payload, re-hashes it under the production secret, and confirms whether the signature is valid.
How verification works.
- Avena Agent issues every signed event a SHA-256 hash of the canonical JSON payload + previous chain signature + production secret.
- The signature is published in three places: the email header (X-Avena-AVP-Signature), the attached JSON file, and the public mission_events ledger.
- This verifier reads the signature → looks up the row in the public ledger → re-canonicalizes the AVP document → re-hashes it → returns ✅ if the hashes match.
- Tampering with any single field of any event in the chain breaks every subsequent signature. The chain is mathematically immutable as long as the production secret remains uncompromised.
Spec: AVP v1.0 · Reference impl: src/lib/avp-offer.ts · CC BY 4.0