Open-core layer

Capabilities for scoped local GitCaster actions

GitCaster now publishes its contribution-safe capability layer as a public-alpha developer surface. Builders can inspect scoped local delegations, deterministic capability hashes, signature checks, expiry checks, resource-prefix checks, redaction helpers, and abuse cases without receiving managed authorization, custody, billing, public node mutation, domain, storage, or production runtime claims.

Capabilities source Local fixture Evidence JSON Public smoke JSON Capability notes

Public artifacts

These files are safe contribution surfaces for local capability review.

public-alpha

Scope catalog

Contribution-safe scope names for local access planning.

packages/capabilities/src/scopes.ts

Capability builder

Unsigned capability construction, deterministic hashes, local signing, expiry checks, and redaction helpers.

packages/capabilities/src/capability.ts

Verifier

Signature, scope, resource-prefix, expiry, nonce, and blocked-status checks.

packages/capabilities/src/verify.ts

Local tests

Deterministic local coverage for accepted and rejected capability paths.

packages/capabilities/src/capability.test.ts

Delegation fixture

Placeholder-only public-alpha delegation fixture for local inspection.

examples/capabilities/local-capability-delegation.example.json

Abuse proof

Generated proof that wrong scope, wrong resource, expired, missing signature, and wrong key cases block.

launch/evidence/capabilities-public-alpha.json

Blocked claims

These require deterministic receipts before any stronger label.

blocked_external

Managed authorization service

Operator custody or private keys

Public runtime enforcement

Public node mutation

Storage publication

Native domain routing

Billing or production policy controls

Production runtime operation

Verification command

The checker generates local proof material and writes public JSON.

deterministic

pnpm run capabilities:check
pnpm run capabilities:public-smoke