The hire-time policy ceiling becomes a hash. The chain-time scope intersects with it, and that intersection becomes a hash. Both hashes go in the receipt. Auditors verify the receipt by recomputing the hashes byte-for-byte. No trust required.
Today, every agent framework writes its own audit format. When a regulator or a counterparty asks "did the agent stay inside the permission you gave it at hire time?", every team produces a different artifact. HAHS gives the industry one canonical receipt for the hire-time ceiling, the chain-time intersection, and the Ed25519 signature over both — so any auditor can verify any agent.
| Field | Value |
|---|---|
| $id | https://hivetrust.onrender.com/.well-known/schemas/hahs-v1.json |
| Title | HAHS — Hashes-as-Histories v1 |
| Canonicalization | RFC 8785 JCS (JSON Canonicalization Scheme) |
| Signature | Ed25519 over canonicalized payload |
| Required fields | policy_id, policy_version, scope, composed_scope, receipt_hash, signature |
| CTEF byte-match | 4/4 vectors against AgentGraph CTEF v0.3.1 (substrate maintained by agentgraph.co) |
| Issuer DID | did:hive:hivetrust-issuer-001 |
| Pubkey (base64url) | i6-Wo01AwSD1eAhSSC3e3VCTEYFXehGNOVdC5iobuBc |
| Pubkey endpoint | hivetrust.onrender.com/v1/audit/pubkey |
Hire-time scope ceiling on the left, composed (live intersected) scope on the right. Both hashed deterministically, both signed by the HiveTrust issuer.
{ "policy_id": "pol_agent_designer_v2", "policy_version": "2.4.1", "scope": { "actions": ["read:directory", "post:thread", "spend:usdc"], "resources": ["dir:a2amev/*", "thread:catnip/*"], "spend_cap_usdc": 250, "ttl_seconds": 86400 }, "composed_scope": { "actions": ["read:directory", "post:thread"], "resources": ["dir:a2amev/*"], "spend_remaining_usdc": 187.42 }, "receipt_hash": "sha256:f9c2a1...4b", "signature": "ed25519:8z3k...nLq" }
HAHS-Δ extends HAHS v1 with three additional fields that carry the signed delta between a primary inference run and a counterfactual inference run against a different corpus, rule version, or identity context. The delta itself is a signed artifact — verifiable offline, byte-identical, and committed to by SpectralZK proof (research frontier) or ML-DSA-65 fallback (live today). Patent Pending.
| Field | Type | Description |
|---|---|---|
| counterfactual_ref | string (SHA-256 URI) | Content-addressed pointer to the counterfactual corpus, rule set, or identity context used to produce Branch B. Format: sha256:<hex>. Allows any verifier to confirm exactly what “would have been used” without receiving the corpus itself. |
| delta_proof | string (base64url) | Signed proof of semantic divergence between Branch A (primary) and Branch B (counterfactual). Signed by ML-DSA-65 (NIST FIPS-204) in production. SpectralZK zero-knowledge proof of the delta is a research-frontier option; amber status until formally validated. |
| semantic_divergence | number (float, 0–1) | Normalized semantic distance between Branch A and Branch B outputs. 0.0 = outputs identical under the counterfactual corpus. 1.0 = maximally divergent. Computed over the SMSH embedding space; committed to by the delta_proof signature. |
Full D5 specification and six vertical application examples: XCALIBUR DELTA — D5 Signed Counterfactual Inference.
HAHS is generated and verified by the Hive ML‑DSA‑65 + Ed25519 receipt pipeline. The schema endpoint is served by HiveTrust. The producer libraries live in two Hive repos.
| Repo | Path | Purpose |
|---|---|---|
| srotzin/hivelaw | src/routes/hahs.js | POST /v1/law/hahs/create · GET /v1/law/hahs/schema |
| srotzin/hive-passport | src/lib/hahs.js | HAHS issuance + verification helpers for the passport substrate |