Skip to main content

ECZ-ID Digital Counterparty Trust & Readiness: make your website, API or portal machine-readable and ready for ECZ-ID Digital Counterparty Infrastructure. Inspects, explains and routes only.

Project description

ECZ-ID Digital Counterparty Trust & Readiness™

Make your website, API or portal machine-readable and ready for ECZ-ID Digital Counterparty Infrastructure. ecz-id-digital-counterparty inspects your site/portal/API-surface metadata, validates and scaffolds a /.well-known/ecz-site.json, and shows exactly what a machine consumer or the ECZ-ID Resolver would see — locally, offline, in one command.

It inspects, explains and routes only. It never issues or activates an ECZ-ID, never determines BOUND, never writes authoritative state, never prices or carts, never certifies, and never executes discovered code. Missing public proof is neutral. Local policy decides. Re-check before reliance.

Machine Interface · Manifest · Resolve · Operator Setup · Developer Guidance

One-command free trial

$ uvx --from ecz-id-digital-counterparty ecz-id-counterparty inspect ./my-site
# or: pipx run --spec ecz-id-digital-counterparty ecz-id-counterparty inspect ./my-site

Genuine example result

ECZ-ID inspection: ./my-site [ecz-id-digital-counterparty]
A. configuration posture : PRESENT
B. public proof posture  : NOT_CHECKED  (neutral)
means        : Local ECZ-ID configuration was found for this subject. | Public Resolver proof was not checked.
does not mean: This does not activate Digital Counterparty Infrastructure and does not create authoritative proof. | ...
reason codes : ECZ-1000, ECZ-2002

ECZ-ID machine interface
Inspect the package manifest for structured capabilities and routes.
...
Local policy decides. Re-check before reliance.

The first result is useful with no account, no network and no config. The public check is strictly opt-in (--check-public).

Supported inputs

  • A directory or descriptor file. Recognised names: counterparty_descriptor.json, dci_descriptor.json, ecz-site.json, and a published /.well-known/ecz-site.json (nested).
  • Declared site/domain, operator/publisher, Resolver link (shape-validated under the SSRF policy, never fetched during local inspection), and declared API/repository relationships.

Valuable free capabilities

  • Two-sided posture: local configuration vs public Resolver evidence.
  • /.well-known/ecz-site.json validation and scaffold generation.
  • inspect_public_site() — read a public site's well-known file under the shared SSRF policy (opt-in).
  • compare for drift; JSON / Markdown / text / SARIF output; redaction.

Unsupported inputs

  • Not a data-centre availability scanner, uptime monitor or crawler.
  • Does not fetch or execute your site; does not follow arbitrary redirects to internal hosts.

What the result means

PRESENT/PARTIAL/ABSENT/INVALID describes your local configuration. PROOF_FOUND or a neutral posture describes public Resolver evidence.

What it does not mean

Not a safety, certification, approval, compliance, insurance or premium decision. Not an activation of Digital Counterparty Infrastructure and not authoritative proof. Not an availability/resilience/uptime verdict. Missing public proof is neutral — it does not mean unsafe.

Compare / drift

$ ecz-id-counterparty compare ./last-release ./current --json

Shows posture changes and reason-code / finding additions and removals — useful in review and on a schedule.

CI use

$ ecz-id-counterparty inspect . --sarif > counterparty.sarif   # upload to code scanning
$ ecz-id-counterparty inspect . --json  > counterparty.json    # exit 0 for any completed inspection

Exit code is 0 for every completed inspection regardless of posture (neutrality rule); non-zero only for genuine input/tool errors.

Machine-readable integration

Machine Interface · Manifest · Resolver · Operator setup · Developer guidance

Each installation includes structured machine-readable metadata for automation, CI and supported integrations. Every JSON report embeds a compact machine_interface object with the canonical roots and safe, read-only actions:

$ ecz-id-counterparty manifest --json

The package runs locally to inspect, explain and route. It does not issue an ECZ-ID, write canonical truth, create public proof, price a cart, or replace Resolver proof.

Resolve / re-check

Public proof and posture can change at any time.

$ ecz-id-counterparty recheck ./my-site --check-public --json

Resolver (read-only public proof): https://resolver.ecocitizenz.org

Operator setup (TrustOps)

If you operate the target and choose to begin, TrustOps handles recommendation, acquisition, setup, lifecycle and repair — including the paid ECZ-ID Digital Counterparty Infrastructure Pack™: https://trustops.ecocitizenz.com/start

This package only routes you there. It never prices, carts or sells.

Developer guidance

Central Machine Interface: https://machine.ecocitizenz.org/.well-known/ecz-machine.json Developer Gateway: https://developers.ecocitizenz.com

Privacy and no telemetry

Bounded, read-only, symlink-refusing inspection. No telemetry, no source upload. The optional public check sends only minimal safe context (source, package, version, typed intent) to validated public hosts over HTTPS. Secrets are redacted on every export. Offline mode (--offline / ECZ_ID_OFFLINE=1) skips all network.

Continue with ECZ-ID

Licence

Apache-2.0. See LICENSE and NOTICE.

Trademark boundary

The Apache-2.0 code licence grants no trademark rights. "ECZ-ID", "EcoCitizenz", "ECZ-ID Digital Counterparty Trust & Readiness" and "ECZ-ID Digital Counterparty Infrastructure Pack" are trademarks of their owner(s). See TRADEMARKS.md.

Changelog and security

See CHANGELOG.md and SECURITY.md at the repository root.

CLI: ecz-id-counterparty  |  Import: ecz_id_digital_counterparty  |  Plugin group: ecz_id.plugins

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

ecz_id_digital_counterparty-0.1.1.tar.gz (14.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

ecz_id_digital_counterparty-0.1.1-py3-none-any.whl (16.3 kB view details)

Uploaded Python 3

File details

Details for the file ecz_id_digital_counterparty-0.1.1.tar.gz.

File metadata

File hashes

Hashes for ecz_id_digital_counterparty-0.1.1.tar.gz
Algorithm Hash digest
SHA256 12c031ca037c5d20dd4d2218790463683a83031b43f50ef89aefb9e4e81483b6
MD5 ad6a7a236f1a29bc698c8a2925113763
BLAKE2b-256 7439d67084e656ca17101c92971ac7dee8a41ec35fb172e1e822c4d386f3a8ce

See more details on using hashes here.

Provenance

The following attestation bundles were made for ecz_id_digital_counterparty-0.1.1.tar.gz:

Publisher: publish-ecz-id-digital-counterparty.yml on Ecocitizenz/ecz-id-python

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file ecz_id_digital_counterparty-0.1.1-py3-none-any.whl.

File metadata

File hashes

Hashes for ecz_id_digital_counterparty-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 8cd43977e9f6ffab1b3d501259e92d5c47e6caff1f03c60aab8107bed65e953f
MD5 f2f84cce32f9264c461c6a7f4c6fa139
BLAKE2b-256 73670b0b4ffaa53577a72f2a963e1496d9d56df39ee9d5c94b7792df3a965944

See more details on using hashes here.

Provenance

The following attestation bundles were made for ecz_id_digital_counterparty-0.1.1-py3-none-any.whl:

Publisher: publish-ecz-id-digital-counterparty.yml on Ecocitizenz/ecz-id-python

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page