{
  "release": "h33-attestation",
  "version": "v0.1.0",
  "released_at": "2026-06-04T07:30:00Z",
  "category": "Trustless Decision Attestation infrastructure",
  "closes_loop_from": "h33-verifier v0.1.0",
  "anti_drift_invariants": {
    "Q0_who_bears_risk": "Never H33. H33 bears attestation accuracy + verifier correctness (issuer determinism in this release).",
    "Q0_5_who_owns_the_decision": "The decision owner always remains the decision owner. H33 never judges the decisions.",
    "determinism_constraint": "Identical bundle + decision set + verifier version + signing key \u2192 byte-identical canonical attestation payload (excluding issued_at_ms + pq_signatures). Locked by Eric June 4 2026 verbatim.",
    "money_quote": "Attestation \u2260 Underwriting."
  },
  "artifacts": [
    {
      "kind": "binary",
      "filename": "h33-issue-attestation-v0.1.0-aarch64-apple-darwin",
      "target_triple": "aarch64-apple-darwin",
      "size_bytes": 903424,
      "sha3_256": "132eb65f9193a7ba6e86f01badea68501ec0bf4c16262b4e7c1e312e19c3e254",
      "executable": true,
      "purpose": "Issue a Trustless Decision Attestation (tda_v1) from an enterprise bundle. Deterministic by design when the same signing-key directory is reused across runs."
    },
    {
      "kind": "binary",
      "filename": "h33-verify-attestation-v0.1.0-aarch64-apple-darwin",
      "target_triple": "aarch64-apple-darwin",
      "size_bytes": 804448,
      "sha3_256": "bc45c6b83d16fd29e2f08f95fb25ad8391f45e3ca1a1c696db660e29ccd0bc77",
      "executable": true,
      "purpose": "Verify a Trustless Decision Attestation end-to-end against a bundle and the canonical-replay verifier binary. Closes Eric's locked success criterion: third party downloads bundle + attestation + verifier, proves all three agree without contacting H33."
    },
    {
      "kind": "sample-attestation",
      "filename": "sample-attestation-claim-84711.tda_v1.json",
      "size_bytes": 51151,
      "sha3_256": "2f733cdc2b6921111a038214361279799a7b6eaed6d57606154c65519a0dc3d5",
      "purpose": "A real signed TDA v1 attestation against the canonical-continuity-tenant bundle, covering two decisions on claim-84711. Third party verifies this with h33-verify-attestation + the v0.1 bundle + the v0.1 canonical-replay verifier \u2014 no H33 contact required."
    },
    {
      "kind": "sample-output",
      "filename": "sample-verify-output.txt",
      "size_bytes": 955,
      "sha3_256": "c300e9efd99bca233b52dcdd96c186edc02fb8600d29760275c3a7a1c12e1915",
      "purpose": "Captured output of running h33-verify-attestation against the sample attestation. Shows the six green check-marks a third party should expect. Reproducible from the other artifacts in this release."
    }
  ],
  "build_environment": {
    "rustc": "rustc 1.93.1 (01f6ddf75 2026-02-11)",
    "cargo": "cargo 1.93.1 (083ac5135 2025-12-15)",
    "build_command": "cargo build --release --bin h33-issue-attestation --bin h33-verify-attestation",
    "build_target": "aarch64-apple-darwin",
    "deterministic_build": false,
    "deterministic_build_note": "v0.1 documents the build environment; v0.2 will use a deterministic containerized toolchain."
  },
  "what_v0_1_proves": [
    "An attestation can be deterministically issued from an enterprise bundle",
    "The attestation carries embedded issuer public keys so verification is self-contained",
    "Three PQ signatures (ML-DSA-65 + FALCON-512 + SLH-DSA-128f) are produced and verified",
    "Bundle hash anchor + verifier binary hash anchor are pinned and re-checked",
    "Per-decision SACRED state_ids reproduce when the canonical-replay verifier is run against the bundle",
    "Tampered bundles fail verification with structurally observable errors",
    "The full three-artifact loop closes without contacting H33"
  ],
  "deferred_to_v0_2": [
    "Multi-platform releases (linux x86_64 + aarch64, darwin x86_64)",
    "PQ-signed RELEASE artifacts (release-signing key separate from attestation-signing key; ceremony required)",
    "Byte-deterministic builds across machines (containerized toolchain)",
    "Production attestation-signing key ceremony (v0.1 uses a dev keypair regenerated per run unless --signing-key-dir is reused)",
    "Attestation revocation registry",
    "Subscription/cadence infrastructure for periodic re-attestation",
    "CI/CD release automation"
  ],
  "constitutional_constraints": {
    "applies_per": "Trustless Decision Attestation v1 Product Design Memo (Q0 + Q0.5 + determinism constraint)",
    "Q0": "This release bears attestation accuracy + issuance determinism + verifier correctness. Nothing else.",
    "Q0_5": "This release makes no judgment about any decision. It surfaces structural readings and verification verdicts only."
  }
}