Name: Quantum-Safe File Attestation
Brand: Apoth3osis
SKU: 69c99cefc3ba2714db75e12a
Price: 0.05 USD
Availability: InStock

Quantum-Safe File Attestation

Available Actions

attest_artifactverify_attestationget_public_key

Details

Create tamper-proof, quantum-resistant certificates for any file. Upload a document, codebase, binary, or archive and receive a cryptographic attestation package that proves exactly what the file contained at the moment it was signed. Anyone can independently verify the certificate without needing access to this tool. Built on ML-DSA-65 (Dilithium3) — a NIST-standardized post-quantum signature algorithm that remains secure even against future quantum computers. Perfect for software release signing, audit trail creation, compliance evidence, intellectual property timestamping, and supply chain integrity verification. For independent offline verification, the open-source standalone verifier is available at https://github.com/Abraxas1010/verified-pqc-verifier — it includes the ML-DSA-65 verification binary, the trust anchor with the signing public key, and a step-by-step guide. No account or API access required.

Use Cases

Sign software releases with quantum-resistant cryptography, Create tamper-proof attestation certificates for documents, Verify file integrity with post-quantum digital signatures, Generate compliance evidence for audits and regulatory requirements, Timestamp and attest intellectual property artifacts, Verify supply chain integrity for software artifacts, Issue verifiable certificates for code repositories or archives, Provide independent verification keys for third-party auditors

Actions(3)

attest_artifact3 params(1 required)

Create a post-quantum cryptographic attestation for a file in storage. Signs with ML-DSA-65 via hardware security module and returns a verifiable attestation package. The package is also saved to file storage.

file_idrequiredstring

File ID from file storage (from upload or GitHub download).

artifact_namestring

Human-readable name for the artifact being attested. Defaults to the stored filename.

metadataobject

Optional freeform metadata to include in the attestation manifest. Any key-value pairs such as version numbers, build info, environment tags, or custom context.

verify_attestation3 params(2 required)

Verify a previously issued attestation package. Checks the ML-DSA-65 signature, manifest integrity, artifact SHA-256 match, and optionally validates the CAB verifier bundle. Returns accept/reject with a list of any failed checks.

attestation_packagerequiredobject

The full attestation package JSON object to verify.

artifact_sha256requiredstring

Expected SHA-256 hex digest of the original artifact (exactly 64 hex characters). Must match the hash in the attestation manifest.

check_bundleboolean

Whether to also verify the CAB verifier bundle material. Defaults to true.

get_public_key0 params

Return the signer's public key, algorithm, and fingerprint so independent verifiers can confirm attestation signatures without calling this tool.

No parameters for this action.

curl -X POST "https://api.agentpmt.com/products/purchase" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer ********" \
  -d '{
    "product_id": "69c99cefc3ba2714db75e12a",
    "parameters": {
      "action": "attest_artifact",
      "file_id": "example_file_id"
    }
  }'

import requests
import json

url = "https://api.agentpmt.com/products/purchase"

headers = {
    "Content-Type": "application/json",
    "Authorization": "Bearer ********"
}

data = {
    "product_id": "69c99cefc3ba2714db75e12a",
    "parameters": {
        "action": "attest_artifact",
        "file_id": "example_file_id"
    }
}

response = requests.post(url, headers=headers, json=data)
print(response.status_code)
print(response.json())

const url = "https://api.agentpmt.com/products/purchase";

const headers = {
  "Content-Type": "application/json",
  "Authorization": "Bearer ********"
};

const data = {
  product_id: "69c99cefc3ba2714db75e12a",
  parameters: {
    "action": "attest_artifact",
    "file_id": "example_file_id"
  }
};

fetch(url, {
  method: "POST",
  headers: headers,
  body: JSON.stringify(data)
})
  .then(response => response.json())
  .then(data => console.log(data))
  .catch(error => console.error("Error:", error));

const axios = require('axios');

const url = "https://api.agentpmt.com/products/purchase";

const headers = {
  "Content-Type": "application/json",
  "Authorization": "Bearer ********"
};

const data = {
  product_id: "69c99cefc3ba2714db75e12a",
  parameters: {
    "action": "attest_artifact",
    "file_id": "example_file_id"
  }
};

axios.post(url, data, { headers })
  .then(response => {
    console.log(response.status);
    console.log(response.data);
  })
  .catch(error => {
    console.error("Error:", error.message);
  });

Login to view your API and budget keys. The example above uses placeholder values. Sign in to see personalized code with your bearer token.

This tool supports credit-based access for external agents using AgentAddress identities or standard crypto wallets. External agents should use the External Agent API to buy credits with x402 and invoke this tool.

1. Buy Credits

Purchase credits via x402 payment (500 credit minimum, 100 credits = $1).

# Request payment requirements (returns 402 + PAYMENT-REQUIRED header)
curl -i -s -X POST "https://www.agentpmt.com/api/external/credits/purchase" \
  -H "Content-Type: application/json" \
  -d '{ "wallet_address":"0xYOUR_WALLET", "credits": 500, "payment_method":"x402" }'

# Sign the EIP-3009 authorization, then retry with signature header
curl -s -X POST "https://www.agentpmt.com/api/external/credits/purchase" \
  -H "Content-Type: application/json" \
  -H "PAYMENT-SIGNATURE: <base64-json>" \
  -d '{ "wallet_address":"0xYOUR_WALLET", "credits": 500, "payment_method":"x402" }'

2. Create a Session Nonce (nonce used in signed balance/invoke)

curl -s -X POST "https://www.agentpmt.com/api/external/auth/session" \
  -H "Content-Type: application/json" \
  -d '{ "wallet_address":"0xYOUR_WALLET" }'

3. Invoke This Tool

Sign the message with your wallet (EIP-191 personal-sign), then POST to the invoke endpoint.

# Sign this message (wallet MUST be lowercased):
# agentpmt-external
# wallet:0xyourwallet...
# session:<session_nonce>
# request:<request_id>
# action:invoke
# product:69c99cefc3ba2714db75e12a
# payload:<sha256(canonical_json(parameters))>

curl -s -X POST "https://www.agentpmt.com/api/external/tools/69c99cefc3ba2714db75e12a/invoke" \
  -H "Content-Type: application/json" \
  -d '{
    "wallet_address": "0xYOUR_WALLET",
    "session_nonce": "<session_nonce>",
    "request_id": "invoke-uuid",
    "signature": "0x<signature>",
    "parameters": {
      "action": "your_action",
      "your_param": "value"
    }
  }'

About The Developer

Apoth3osis

★15 stars

Joined Agent Payment: August 14, 2025

We build tools that enable AI agents to excel in the mathematical realm.

Our small team develops experimental and unique solutions in the AI arena, with a strong focus on modular computing for agentic applications and custom model deployment. We have handled projects for a variety of applications across many sectors, from algorithmic trading and financial analysis, to molecular simulations and predictions, to habitat and biodiversity monitoring and wildlife conservation.

Quantum-Safe File Attestation

Description