feat: signing and verification of memory transaction #433

Gozala · 2025-02-21T16:44:04Z

Changes here implements operation signing and verification. All operations are represented (roughly) as UCAN invocations and signed by a memory consumer key. Provider currently only verifies that:

Invoked operations is included in signed authorization.
That signature is from the invocation issuer.

Also please note that:

This implementation does not check whether issuer has authority over space (this will be built in the future on top).
This implementation does net yet integrate common-identity and simply uses web native ed25519 keys. Integration with common-identity will be add as followup.

typescript/packages/clipper-extension/src/background.ts

sentry · 2025-03-06T22:17:31Z

Suspect Issues

This pull request was deployed and Sentry observed the following issues:

‼️ TypeError: Cannot read properties of undefined (reading 'pipeThrough') ?(/Users/jakedahn/common/labs/typescript/packag... View Issue

_{Did you find this useful? React with a 👍 or 👎}

chore: save current draft

c46846c

Gozala temporarily deployed to production February 21, 2025 16:44 — with GitHub Actions Inactive

Gozala added 2 commits February 24, 2025 08:17

chore: save changes for pull

aa68638

Merge remote-tracking branch 'origin/main' into feat/signed-transactions

55b892a

Gozala temporarily deployed to production February 24, 2025 16:17 — with GitHub Actions Inactive

feat: implement signing & verification

abebdab

Gozala had a problem deploying to production February 25, 2025 20:27 — with GitHub Actions Failure

Gozala changed the title ~~chore: save current draft~~ feat: signing and verification of memory transaction Feb 25, 2025

chore: enable CI tests

3614559

Gozala had a problem deploying to production February 25, 2025 21:15 — with GitHub Actions Failure

chore: add multiformats to deps

a9eeb93

Gozala had a problem deploying to production February 25, 2025 21:21 — with GitHub Actions Failure

ellyxir had a problem deploying to production February 26, 2025 22:06 — with GitHub Actions Failure

This was referenced Feb 27, 2025

Signed transactions #333

Closed

Verifying transactions #334

Closed

Gozala and others added 3 commits February 27, 2025 12:03

Merge remote-tracking branch 'origin/main' into feat/signed-transactions

2736a26

fix: problems introduced by merge

891628e

setting nodeModulesDir to none to avoid npm compatiblity mode

126b374

Gozala force-pushed the feat/signed-transactions branch from 8bba6c7 to 126b374 Compare February 27, 2025 20:11

Gozala had a problem deploying to production February 27, 2025 20:11 — with GitHub Actions Failure

fix: update toolshed with signing api

a2ed4bd

Gozala had a problem deploying to production February 28, 2025 17:38 — with GitHub Actions Failure

chore: format code

3748456

Gozala had a problem deploying to production February 28, 2025 17:48 — with GitHub Actions Failure

chore: update lockfile

6776bcb

Gozala had a problem deploying to production February 28, 2025 17:51 — with GitHub Actions Failure

chore: update remote storage

63a7351

Gozala had a problem deploying to production February 28, 2025 17:57 — with GitHub Actions Failure

fix: workaround deps across deno/node

2043660

Gozala had a problem deploying to production February 28, 2025 18:04 — with GitHub Actions Failure

Gozala temporarily deployed to production March 4, 2025 01:35 — with GitHub Actions Inactive

chore: remove unrelated file

dad5957

Gozala temporarily deployed to production March 4, 2025 01:36 — with GitHub Actions Inactive

Gozala temporarily deployed to production March 4, 2025 01:37 — with GitHub Actions Inactive

Gozala force-pushed the feat/signed-transactions branch from 5e4b104 to dad5957 Compare March 4, 2025 01:37

Gozala temporarily deployed to production March 4, 2025 01:37 — with GitHub Actions Inactive