PHPackages fissible/attest - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. fissible/attest ActiveLibrary[Security](/categories/security) fissible/attest =============== Tamper-evident signed evidence chains for application events, with optional public anchoring via OpenTimestamps. v1.1.1(yesterday)033↑2809.1%1MITPHPPHP ^8.2 Since May 26Pushed yesterdayCompare [ Source](https://github.com/fissible/attest)[ Packagist](https://packagist.org/packages/fissible/attest)[ RSS](/packages/fissible-attest/feed)WikiDiscussions main Synced today READMEChangelog (7)Dependencies (10)Versions (9)Used By (1) fissible/attest =============== [](#fissibleattest) > Tamper-evident signed evidence chains for application events, with optional public anchoring via OpenTimestamps. **Status:** Stable — v1.0+. The public API (classes marked `@api`) follows semantic versioning; see [`STABILITY.md`](STABILITY.md). Anchoring ships `@experimental` in 1.x. --- What is this, in plain terms? ----------------------------- [](#what-is-this-in-plain-terms) `fissible/attest` is a **tamper-evident logbook for the important things your software does.** Most applications already log events — "invoice approved," "document published," "permission granted." But ordinary logs and database rows can be quietly edited or deleted afterward, and nobody can tell. If a row says a contract was approved at 3pm Tuesday, you're trusting that *nobody changed it since.* attest removes that "just trust us." Every event you record is: - **Signed** — stamped with your application's cryptographic key, so a forged entry can be told apart from a real one. - **Chained** — each entry is linked to the one before it by a fingerprint (hash). Change, insert, or delete any entry and the chain visibly breaks. - **Optionally anchored in time** — a batch of entries can be "notarized" against the Bitcoin blockchain, so you can later prove the entries existed *before* a certain point in time, even to someone who has no reason to trust you. The result is a history you can hand to an auditor, a court, a customer, or your future self and *prove* it hasn't been tampered with. Why is that valuable? --------------------- [](#why-is-that-valuable) Picture a dispute months from now: > A customer insists they never approved a $50,000 contract. Your database has a row saying they did — but that row could have been inserted or edited at any time by anyone with database access, so on its own it proves nothing. With attest, that approval was signed and chained the instant it happened. If anyone altered it, back-dated it, or slipped in a fake one, verification fails and points at the broken entry. If you also anchored it, you can show it existed *before* a specific Bitcoin block — so it couldn't have been fabricated after the fact. Typical uses: audit trails, compliance evidence, security investigations, financial and approval workflows, and anywhere "prove this log wasn't edited" actually matters. > **What this is not:** this is not artifact/build provenance (Sigstore, SLSA). Those prove where a binary came from. attest proves **what your application did, and when.** The 30-second example --------------------- [](#the-30-second-example) Record something important when it happens: ``` use Fissible\Attest\Chain\EvidenceChain; use Fissible\Attest\Chain\FileChainStore; use Fissible\Attest\Signing\KeyPair; use Fissible\Attest\Signing\SodiumSigner; // Your app's signing identity ("this entry really came from us"). $keys = KeyPair::generate(); // save these; the public key is needed to verify later $signer = new SodiumSigner($keys, keyId: 'station-prod-2026-01'); // Where the chain is stored, and which chain we're writing to. $store = new FileChainStore(__DIR__ . '/storage/attest'); $chain = EvidenceChain::open($store, 'contracts', $signer); // Record an event. $chain->record('contract.approved', [ 'contract_id' => 'C-2026-014', 'approved_by' => 'user:7', 'amount' => 50_000, ]); ``` Later — maybe months later — prove the whole history is intact and authentic: ``` use Fissible\Attest\Verification\SignatureVerifier; use Fissible\Attest\Verification\TrustedKey; use Fissible\Attest\Verification\Verifier; $verifier = new Verifier( store: $store, signatures: new SignatureVerifier([ new TrustedKey($keys->publicKey, keyId: 'station-prod-2026-01'), ]), ); $result = $verifier->verifyChain('contracts'); $result->isVerified(); // true only if every entry is signed by a trusted key // and nothing was altered, inserted, or deleted. ``` If someone tampers with any stored entry, `isVerified()` returns `false` and `$result->brokenAtSeq` tells you exactly which entry broke. That's the whole idea. Everything below is detail you can read when you need it. --- Install ------- [](#install) ``` composer require fissible/attest ``` Requires PHP `^8.2` with the bundled `sodium` extension (used for Ed25519 signing). Using Laravel? See [`fissible/attest-laravel`](https://github.com/fissible/attest-laravel) for Eloquent storage, Artisan commands, queue-ready anchoring, and a JSONL importer. Storage adapter contract tests ------------------------------ [](#storage-adapter-contract-tests) Packages that provide their own storage backends should run the same contract tests as core. The traits are shipped in `src/Testing` so adapters can depend on one canonical definition: ``` use Fissible\Attest\Chain\ChainStore; use Fissible\Attest\Testing\ChainStoreContractTests; use PHPUnit\Framework\TestCase; final class MyChainStoreTest extends TestCase { use ChainStoreContractTests; protected function makeStore(): ChainStore { return new MyChainStore(); } } ``` Anchoring adapters can likewise use `Fissible\Attest\Testing\AnchorClaimStoreContractTests`; that trait follows the anchoring subsystem's experimental stability in the 1.x line. How it works (a layer deeper) ----------------------------- [](#how-it-works-a-layer-deeper) `fissible/attest` always starts with **local integrity**, and lets you optionally add a **public time anchor** on top. ### Local integrity (always on) [](#local-integrity-always-on) Each event becomes an **envelope**: it is Ed25519-signed, stored in canonical JSON form, and linked to the previous envelope by hash. That proves whether a local chain is internally consistent and signed by the keys you expect — no network and no third party required. ### Public anchoring (optional) [](#public-anchoring-optional) Anchoring adds an external **time and publication** signal. Chain ranges are batched into RFC 6962-style Merkle roots, submitted to OpenTimestamps calendars, and later *upgraded* when a Bitcoin block-header attestation is available. Anchoring is **experimental** in the 1.x line: the subsystem is usable and tested, but its PHP API may change in a minor release. It graduates to stable after live-network validation against real OpenTimestamps calendars and Bitcoin confirmations. See [`STABILITY.md`](STABILITY.md). ### Verification levels [](#verification-levels) Verification can require anything from a local-only receipt up to a full Bitcoin-confirmed attestation. The meaningful levels, weakest to strongest: Level (`AnchorOutcome`)Meaning`local_only`Signed and chained; no external time proof.`pending`Submitted to a calendar; not yet confirmed.`upgraded_no_headers`Calendar attestation present; block headers not checked.`remote_header_confirmed`Confirmed via a remote explorer — the explorer is part of the trust path.`bitcoin_verified`Confirmed against a Bitcoin block header you trust (e.g. your own node).Full verifier example (anchored) -------------------------------- [](#full-verifier-example-anchored) The complete shape, requiring a Bitcoin-confirmed anchor and a trusted Ed25519 key: ``` use Fissible\Attest\Anchor\AnchorOutcome; use Fissible\Attest\Anchor\OpenTimestamps\OpenTimestampsCalendarClient; use Fissible\Attest\Anchor\OpenTimestampsDriver; use Fissible\Attest\Chain\FileChainStore; use Fissible\Attest\Headers\BitcoinCoreRpcHeaderProvider; use Fissible\Attest\Headers\HeaderProviderSet; use Fissible\Attest\Verification\SignatureVerifier; use Fissible\Attest\Verification\TrustedKey; use Fissible\Attest\Verification\VerificationPolicy; use Fissible\Attest\Verification\Verifier; use GuzzleHttp\Client; use GuzzleHttp\Psr7\HttpFactory; $store = new FileChainStore(__DIR__ . '/storage/attest'); $http = new Client(); $factory = new HttpFactory(); $verifier = new Verifier( store: $store, signatures: new SignatureVerifier([ new TrustedKey($rawEd25519PublicKey, keyId: 'station-prod-2026-01'), ]), policy: new VerificationPolicy( minAnchorOutcome: AnchorOutcome::BITCOIN_VERIFIED, ), anchorDrivers: [ new OpenTimestampsDriver(OpenTimestampsCalendarClient::withGuzzle()), ], headers: new HeaderProviderSet( new BitcoinCoreRpcHeaderProvider( http: $http, requests: $factory, streams: $factory, rpcUrl: 'http://127.0.0.1:8332', cookieFile: '/var/lib/bitcoin/.bitcoin/.cookie', ), ), ); $result = $verifier->verifyChain('tenant:5', fromSeq: 1, toSeq: 1000); ``` Use `AnchorOutcome::REMOTE_HEADER_CONFIRMED` with `EsploraHeaderProvider` when a remote explorer is acceptable. It is convenient, but weaker than a local Bitcoin Core node because the remote service is part of the trust path. OpenTimestamps calendars receive nonced commitments rather than raw chain roots. That protects the committed content, but submission timing and IP metadata can still link activity. Payload Types ------------- [](#payload-types) Payloads passed to `record()` accept JSON-native scalars (string, int, bool, null), arrays, objects, plus opaque binary blobs via `Fissible\Attest\Envelope\Binary`. Example: ``` use Fissible\Attest\Envelope\Binary; $chain->record('cms.attachment.added', [ 'name' => 'spec.pdf', 'sha256' => 'abc...', 'blob' => Binary::ofRaw(file_get_contents('/tmp/spec.pdf')), ]); ``` Binary blobs are stored in canonical form as `{"$binary": ""}` and round-trip stably. The `$binary` key is reserved — a payload that uses it directly is rejected, so your data can never be mistaken for the binary sentinel. Each blob is capped at 64KB raw; larger artifacts must be stored externally and referenced by URL and sha256 hash. The total signed canonical envelope size is capped at 64KB; payloads approaching that size will be rejected at `record()` time. CLI --- [](#cli) `bin/attest` is a Symfony Console application. Install globally or invoke via Composer: ``` vendor/bin/attest [options] ``` ### Commands [](#commands) CommandDescription`verify`Verify a single chain segment (integrity + signatures + anchor coverage).`bundle:export`Export one or more chain segments into a portable `.attest.zip` bundle.`bundle:verify`Verify every chain segment inside an exported bundle.`anchor`Submit a chain range to an OpenTimestamps calendar and record the receipt.`upgrade`Upgrade pending OTS receipts that now have a Bitcoin block-header attestation.### Exit codes [](#exit-codes) CodeOutcomeNotes0VERIFIED, or non-verification command success`INTEGRITY_VERIFIED_UNTRUSTED` with `--allow-untrusted` also exits 01CLI / configuration / runtime error before a `VerificationOutcome`Bad options, missing files, invalid arguments2`INTEGRITY_VERIFIED_UNTRUSTED``--allow-untrusted` downgrades to 03`ANCHOR_BELOW_MIN`Anchor exists but is below `--min-anchor` threshold4`INVALID_CHAIN` / `INVALID_SIGNATURE` / `INVALID_ANCHOR`Also: bundle export failure, calendar unavailable5`PROVIDER_DISAGREEMENT``--allow-provider-disagreement` downgrades to the strongest passing outcome### Examples [](#examples) ``` # Verify chain "tenant:5" sequences 1–1000 against a trusted Ed25519 key vendor/bin/attest verify \ --chain tenant:5 \ --from 1 --to 1000 \ --trusted-key /etc/attest/keys/station-prod-2026-01.pub \ --min-anchor bitcoin_verified \ --json # Export two chains into a portable bundle vendor/bin/attest bundle:export \ --chain tenant:5 --from 1 --to 1000 \ --chain tenant:7 --from 1 --to 500 \ --out /tmp/export-$(date +%Y%m%d).attest.zip # Verify all chains in a bundle vendor/bin/attest bundle:verify \ --bundle /tmp/export-20260605.attest.zip \ --trusted-key /etc/attest/keys/station-prod-2026-01.pub \ --min-anchor remote_header_confirmed \ --json # Submit chain range to OpenTimestamps vendor/bin/attest anchor \ --chain tenant:5 --from 1 --to 1000 \ --calendar https://alice.btc.calendar.opentimestamps.org \ --json # Upgrade pending receipts to Bitcoin block-header attestations vendor/bin/attest upgrade \ --chain tenant:5 \ --rpc-url http://127.0.0.1:8332 \ --rpc-cookie /var/lib/bitcoin/.bitcoin/.cookie \ --json ``` ### JSON output schema [](#json-output-schema) All commands emit a stable JSON envelope on stdout when `--json` is passed. The four schema identifiers are pinned within the 1.x line; future additions will be additive (no removals or renames within the same schema identifier): - `attest.cli.result.v1` — emitted by `verify` and `bundle:verify` - `attest.cli.export.v1` — emitted by `bundle:export` - `attest.cli.anchor.v1` — emitted by `anchor` - `attest.cli.upgrade.v1` — emitted by `upgrade` ### Bundles [](#bundles) Bundles are ZIP containers (extension `.attest.zip`) with the following layout: ``` manifest.json chains/{hash}.jsonl proof_envelopes/{hash}.jsonl receipts/{anchor_id}.ots (optional) keys/{fingerprint}.pub (optional) ``` Members are stored uncompressed for byte-accounting symmetry; the reader enforces per-member size caps, a total size cap, and a compression-ratio guard against bundles produced by other writers. **Trust model:** keys claimed inside the bundle are NOT trusted by themselves. Operators must supply trusted public keys via `--trusted-key ` or `--trusted-key-file ` at verification time. Stability & Versioning -------------------------- [](#stability--versioning) From v1.0.0, `fissible/attest` follows semantic versioning. The supported public API is the set of classes marked `@api`; anything marked `@internal` (or unmarked) is implementation detail and may change in any release. The on-disk and interchange **formats** — canonical envelope JSON, the `{"$binary": …}` sentinel, the `fissible.attest.bundle/v1` bundle, and the `attest.cli.*.v1` JSON schemas — are frozen within 1.x (additions are additive; removals or renames require a format-version bump). The **CLI contract** (commands, options, exit codes, `--json` schemas) is stable even though the PHP classes under `src/Cli/` are internal. **Anchoring is experimental in 1.x.** The OpenTimestamps/Bitcoin anchoring subsystem (`src/Anchor`, `src/Headers`, `src/Merkle`) is usable and tested, but its PHP API may change in a minor release; it graduates to stable after live-network validation. See [`STABILITY.md`](STABILITY.md) for the full surface list and policy. Documentation ------------- [](#documentation) The supported surface is the set of `@api`-annotated classes in `src/` — see [`STABILITY.md`](STABILITY.md) for the full list and the wire/format stability guarantees. License ------- [](#license) MIT ### Health Score 44 — FairBetter than 90% of packages Maintenance100 Actively maintained with recent releases Popularity11 Limited adoption so far Community5 Small or concentrated contributor base Maturity51 Maturing project, gaining track record How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~2 days Total 8 Last Release 1d ago Major Versions v0.4.2-alpha → v1.0.02026-06-10 ### Community Maintainers ![](https://www.gravatar.com/avatar/ef298fbffac2225e36ab3a6e089af020f76885bc65d5f6afda831c64939e1e4b?d=identicon)[fissible](/maintainers/fissible) --- Tags Ed25519Auditaudit-logmerkletamper-evidentevidenceopentimestamps ### Code Quality TestsPHPUnit Static AnalysisPHPStan Type Coverage Yes ### Embed Badge ![Health badge](/badges/fissible-attest/health.svg) ``` [![Health](https://phpackages.com/badges/fissible-attest/health.svg)](https://phpackages.com/packages/fissible-attest) ``` ### Alternatives [tempest/framework The PHP framework that gets out of your way. 2.2k31.1k12](/packages/tempest-framework)[flow-php/flow PHP ETL - Extract Transform Load - Data processing framework 84735.1k](/packages/flow-php-flow)[cakephp/cakephp The CakePHP framework 8.8k19.1M1.7k](/packages/cakephp-cakephp)[typo3/cms TYPO3 CMS is a free open source Content Management Framework initially created by Kasper Skaarhoj and licensed under GNU/GPL. 1.2k1.9M122](/packages/typo3-cms)[sylius/sylius E-Commerce platform for PHP, based on Symfony framework. 8.5k5.8M711](/packages/sylius-sylius)[typo3/cms-core TYPO3 CMS Core 3312.9M4.8k](/packages/typo3-cms-core) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)