Context
auths-monitor and the CLI (log, namespace) are clients of {registry_url}/v1/log/* endpoints — checkpoint, entries, entry/{seq}, entry/{seq}/proof, consistency. Only the archived registry-server ever served these, so the OSS monitor currently fails against any open-source deployment.
Task
Build a minimal open-source transparency-log server that serves these endpoints with real Merkle inclusion and consistency proofs. This is a real, crypto-sensitive build (the proofs are load-bearing) — must authenticate, not merely serve (meta_prompt §V), and needs human crypto review.
Acceptance
- Serves
/v1/log/checkpoint, /entries, /entry/{seq}, /entry/{seq}/proof, /consistency.
- Inclusion + consistency proofs verify under the monitor's existing checks; adversarial tests (forged proof rejected, inconsistent checkpoint rejected).
- Reviewed by a human before release.
(Deferred for now; the hosted-server path is the interim.)
Context
auths-monitorand the CLI (log,namespace) are clients of{registry_url}/v1/log/*endpoints —checkpoint,entries,entry/{seq},entry/{seq}/proof,consistency. Only the archived registry-server ever served these, so the OSS monitor currently fails against any open-source deployment.Task
Build a minimal open-source transparency-log server that serves these endpoints with real Merkle inclusion and consistency proofs. This is a real, crypto-sensitive build (the proofs are load-bearing) — must authenticate, not merely serve (meta_prompt §V), and needs human crypto review.
Acceptance
/v1/log/checkpoint,/entries,/entry/{seq},/entry/{seq}/proof,/consistency.(Deferred for now; the hosted-server path is the interim.)