Sign and verify W3C Verifiable Credentials so AI agents can cryptographically authorize actions.
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Sign and verify W3C Verifiable Credentials so AI agents can cryptographically authorize actions.