One pack for reviewers to inspect.
This is the operational handoff for the Ergo Agent Economy testnet proof. It lists the scope, evidence, commands, claims, and mainnet gate rules an external reviewer needs before any stronger public language can be considered.
This is a reviewer handoff pack for the testnet live proof. It is not an external audit report and does not open mainnet readiness.
Allowed language
- testnet live proof
- signed Sage L1 conformance evidence
- full post-Blob receipt bundle
- audit-gated mainnet path
Forbidden language
- Sage is mainnet ready
- Accord is production certified
- ChainCash/Basis contracts are audited
- the current Sage payment scripts are safe for real funds
Mainnet gate rule
- external_audit_report is a completed non-template artifact
- mainnet_script_identity is a completed audit-bound non-template artifact
Review boundary
What is included and what is not.
The point is to keep the review target exact. The current pack covers the hosted testnet proof and the public evidence surface, not a real-funds mainnet deployment.
Included in review
Excluded until separate review
Evidence
Every artifact the reviewer should open.
These links point at the same receipt, conformance, signer, identity, npm, and gate artifacts surfaced by the Live Hub and Trust Gate.
Repositories
Source locations to pin.
A completed external review should record exact commits, lockfile hashes, deployment ids, package versions, and workflow runs.
Reviewer checklist
Questions the report must answer.
The final report should be attributable and should state whether each finding blocks mainnet language.
Record reviewer identity, date, public key or durable attribution method.
Pin reviewed repository commits and deployment identifiers.
Record package versions, lockfile hash, and relevant workflow runs.
Verify that the full receipt bundle contains Agreement JSON, Verification Receipt JSON, and Settlement Receipt JSON.
Verify that signed conformance evidence covers the same receipt id.
Verify that stale, unrelated, wrong-recipient, wrong-value, wrong-reserve, or replayed Notes cannot satisfy a premium Sage request.
Verify that receipt completeness distinguishes full_receipt_bundle from chain_proof_only.
Verify that wallet-agent policy-check rejects malformed decimals, negative spend, invalid task hashes, unknown profile/action fields, unknown allowed actions, invalid receipt-retention modes, and mainnet-disabled actions.
Review signer policy limits, failure logging, failover posture, and redaction guarantees.
Verify that the wallet-agent policy-check API denies wrong-recipient, wrong-reserve, over-cap, stale-expiry, and missing-receipt actions before any signing request.
Verify that the wallet-agent policy playground demonstrates both allowed and blocked verdicts without touching wallet authority.
Verify that the wallet-agent reference flow keeps signing inside the host-owned wallet layer and stops after a denied policy verdict.
Verify that release watch targets, security headers, and mainnet gate invariants stay green after every production deploy.
Verify that the current release API reports the served commit and keeps mainnet_ready false.
Verify that the release attestation pins the reviewed commit, Vercel deployment id, package-lock hash, and check results.
Confirm that public site wording remains testnet-only until both pending mainnet gates are closed.
Publish findings with severity, status, remediation reference, and residual risk.
Acceptance workflow
How a review becomes gate evidence.
The next external artifact should be strict enough to pin code, deployments, script identities, findings, and residual risk without changing the public mainnet posture prematurely.
The external reviewer pins reviewed commits, deployment id, lockfile hash, package versions, and evidence URLs.
The reviewer publishes a completed external-audit-review.manifest.v0.json that satisfies the public schema.
A completed mainnet-script-identity.manifest.v0.json binds every mainnet script to source artifact hash, compiled ErgoTree hash, address, and test vectors.
Every finding states severity, status, remediation reference, residual risk, and whether it blocks mainnet language.
The mainnet gate remains closed until both completed non-template artifacts are linked from /api/agent-economy/mainnet-gate.
Local verification
Commands to run before accepting the pack.
These commands do not replace external review. They keep the website, content claims, and public gate mechanics honest while the review is pending.