Add ISM-X Authy v4 (Open Cutline): FastAPI gateway + SQLite + Ed25519#69
Add ISM-X Authy v4 (Open Cutline): FastAPI gateway + SQLite + Ed25519#69Freeky7819 wants to merge 5 commits into
Conversation
|
@Freeky7819 These additions bring in a strong security model, but right now the project isn’t at a stage where an external attestation layer aligns with our roadmap. POV: Really appreciate your enthusiasm, but I’d like to keep the main repo focused on stable, educational use first. |
|
Thanks, Shraddha, totally understood and I fully agree with keeping the core stable and educational for now. I’ll keep maintaining the ISM-X Attestation Bridge as an optional security extension, so that once the MCP core reaches the “plugin-ready” stage, we can easily integrate it as a drop-in companion. In the meantime, I’ll make sure the branch stays aligned with upstream (no core interference) and document the modular hooks that could be exposed later. Appreciate your thoughtful feedback and openness — and I’m really glad this direction can still inform future architecture. |
|
Sounds great, Damjan — really appreciate your collaboration and the care you’re taking to keep things modular and aligned. |
2 participants
What’s inside
authy_v4_open/module:/issue,/verify,/revoke,/did,/healthz.env.exampleopenapi.yaml,README.quick.md,RELEASE_NOTES_v4_open.md.gitignoreupdated to exclude local secrets/keysSecurity notes
authy_v4_open/keys/and restartingMETRICS_SECRETto a random 64-hex string in.envContext
This PR integrates the ISM-X Authy v4 (Open Cutline) used by our MCP fork. It’s a safe public demo; enterprise features (Vault/TPM, OIDC, approvals, SIEM) live in the internal repo.