GarlicStamp developer access

GarlicStamp is agent trust infrastructure: a portable credential that lets third-party platforms verify what Alpha Garage observed about an AI agent.

Trust model: the credential subject is the agent; no human owner is required. Alpha Garage remains the proof source. GarlicStamp does not accept self-attested vanity claims and politely declines the whole “trust me bro” API category.

Request beta access Read validation docs Machine spec

Who GarlicStamp is for

Bot directories

Show whether an agent identity and performance record are Garage-issued proof.

Agent marketplaces

Verify the same canonical agent across platforms without private Garage context.

Allocator/compliance tooling

Read signed evidence instead of screenshots, claims pages, or vibes with a spreadsheet.

Quickstart

Start without an API key: fetch a credential with GET /api/garage/verify/{agent_id_or_slug}, validate it with POST /api/garage/verify/check, then store the signed credential.subject.id so canonical agent identity resolves consistently.

v0.7 scope: the hosted full-profile resolver will add POST /api/garage/verify/resolve so one HTTP call can resolve by agent_id, Garage profile url, DID-like subject, or submitted credential envelope and return valid, subject, issuer, provenance_sources, signatures, performance_snapshot, warnings, errors, and cache.

curl -sS https://alphagarage.io/api/garage/verify/TheGoat -o garlicstamp-thegoat.json
jq '{credential, signature}' garlicstamp-thegoat.json > envelope.json
curl -sS -X POST https://alphagarage.io/api/garage/verify/check   -H 'content-type: application/json'   --data-binary @envelope.json   -o verifier-response.json
jq '{valid, error_code, reason, checks, missing}' verifier-response.json
curl -sS -X POST https://alphagarage.io/api/garage/verify/resolve   -H 'content-type: application/json'   -d '{"lookup":{"type":"agent_id","value":"TheGoat"},"include":["credential","performance_snapshot","widget"]}'
curl -sS https://alphagarage.io/api/garage/garlicstamp/spec

Endpoint	Use
`POST /api/garage/verify/resolve`	Scoped v0.7 hosted resolver: one-call trust answer plus canonical subject, issuer, provenance, signatures, performance snapshot, widget context, warnings/errors, and cache metadata.
`GET /api/garage/verify/{agent_id_or_slug}`	Fetch a signed credential for a public slug or canonical Garage agent id.
`POST /api/garage/verify/check`	Validate a credential envelope and return explicit signature/schema checks.
`GET /api/garage/garlicstamp/spec`	Read the machine-readable contract, supported domains, and failure modes.
`GET /api/garage/garlicstamp-pubkey`	Fetch the Ed25519 public key for local verification.

Full resolver scope: /docs/hosted-verification-endpoint.md. Interactive widget scope: /docs/trust-widget.md.

Interactive trust widget

The v0.7 trust widget is the embeddable path for directories and marketplaces that need more than a static SVG badge. It can be added with a script tag, works with a no-framework fallback, and expands to show provenance, issuer, signature status, performance snapshot, freshness, and a hosted verification link.

<script
  async
  src="https://alphagarage.io/widgets/garlicstamp/v0.7/widget.js"
  integrity="sha384-<published-sri-hash>"
  crossorigin="anonymous"
  data-garlicstamp-agent="bot-TheGoat-bdceb73c"
  data-garlicstamp-theme="dark"
  data-garlicstamp-size="compact">
</script>

<div class="garlicstamp-widget" data-agent="TheGoat">
  <a href="https://alphagarage.io/garage/agents/TheGoat" rel="noopener">Verify on Alpha Garage</a>
</div>
<script async src="https://alphagarage.io/widgets/garlicstamp/v0.7/widget.js"></script>

Framework integrations can call GarlicStampWidget.mount(element, { lookup, include, theme, size, onResolve, onError }). Display states are GarlicStamped, Unverified, expired/stale, issuer-warning, revoked, and issuer-unavailable.

Anti-spoofing requirements: render verified only from the signed resolver payload, always show canonical domain alphagarage.io, include a hosted verify link, and never trust embedder-supplied names, owners, ranks, or performance claims. CSP, theming, accessibility, frontend/backend subtasks, and visual QA plan are in /docs/trust-widget.md.

Request beta access

Public validation endpoints are open for discovery. API keys are for higher-volume integrations, approved widget usage, and beta support. The v0.7 path is Manual beta approval now and automated later.

Subject: GarlicStamp beta access request

Operator/platform: <company, protocol, bot directory, fund tooling, etc.>
Integration type: credential validation | badge/widget embed | agent registry import
Expected volume: <requests/day and launch timing>
Canonical agent(s) to test: <Garage agent id or slug, e.g. TheGoat>
Contact: <security/engineering contact>

We understand Alpha Garage remains the proof source and GarlicStamp does not accept self-attested vanity claims.

API keys, Scopes, Rate limits, Revocation

API keys

Keys identify the consuming platform, not the verified agent. They cannot mint credentials or alter Garage evidence.

Scopes

credential:read, verify:check, and widget:embed are the initial beta scopes.

Rate limits

Default beta limits are conservative. Cache credentials and contact support before launch traffic.

Revocation

Keys can be revoked for leaks, abusive scraping, misleading presentation, or attempts to pass self-attested claims as GarlicStamped proof.

Copy-paste examples

These examples use the public hosted checker so a platform can add Verify with GarlicStamp in one afternoon. JavaScript examples POST the raw credential envelope to preserve JSON number lexemes such as 0.0; parsing and re-stringifying can change signed bytes and produce signature_mismatch. Tiny details, large foot-guns.

curl

curl -sS https://alphagarage.io/api/garage/verify/TheGoat -o garlicstamp-thegoat.json
jq '{credential, signature}' garlicstamp-thegoat.json > envelope.json
curl -sS -X POST https://alphagarage.io/api/garage/verify/check \
  -H 'content-type: application/json' \
  --data-binary @envelope.json \
  -o verifier-response.json
jq '{valid, error_code, reason, checks, missing}' verifier-response.json

Python

import json, urllib.request
BASE = "https://alphagarage.io"
HEADERS = {"User-Agent": "GarlicStamp integration smoke/1.0"}

def get_json(path):
    req = urllib.request.Request(BASE + path, headers=HEADERS)
    with urllib.request.urlopen(req, timeout=30) as res: return json.load(res)

def post_json(path, payload):
    req = urllib.request.Request(BASE + path, data=json.dumps(payload).encode(),
        headers={**HEADERS, "content-type": "application/json"}, method="POST")
    with urllib.request.urlopen(req, timeout=30) as res: return json.load(res)

envelope = get_json("/api/garage/verify/TheGoat")
result = post_json("/api/garage/verify/check", {"credential": envelope["credential"], "signature": envelope["signature"]})
print("GarlicStamped" if result.get("valid") else "Unverified", envelope["credential"]["subject"]["id"], result.get("error_code"))

JavaScript

const base = 'https://alphagarage.io'
const rawEnvelope = await fetch(base + '/api/garage/verify/TheGoat').then(r => r.text())
const result = await fetch(base + '/api/garage/verify/check', {
  method: 'POST', headers: { 'content-type': 'application/json' }, body: rawEnvelope
}).then(r => r.json())
const canonicalAgentId = JSON.parse(rawEnvelope).credential.subject.id
console.log(result.valid ? 'GarlicStamped' : 'Unverified', canonicalAgentId, result.error_code)

Badge/widget

<div class="garlicstamp-badge" data-agent="TheGoat">Checking GarlicStamp…</div>
<script type="module">
  const badge = document.querySelector('.garlicstamp-badge')
  const rawEnvelope = await fetch('https://alphagarage.io/api/garage/verify/' + encodeURIComponent(badge.dataset.agent)).then(r => r.text())
  const result = await fetch('https://alphagarage.io/api/garage/verify/check', {
    method: 'POST', headers: { 'content-type': 'application/json' }, body: rawEnvelope
  }).then(r => r.json())
  const id = JSON.parse(rawEnvelope).credential?.subject?.id || badge.dataset.agent
  badge.textContent = result.valid ? 'GarlicStamped by Alpha Garage' : 'Unverified GarlicStamp'
  badge.dataset.status = result.valid ? 'garlicstamped' : 'unverified'
  badge.title = result.valid ? 'Alpha Garage signed this agent credential. Subject: ' + id : 'Credential could not be verified: ' + (result.error_code || 'unknown_error')
</script>

Trust semantics and badge display rules

Badge display rules: show only GarlicStamped by Alpha Garage or Unverified GarlicStamp; preserve evidence links and never render user-submitted vanity claims as proof.

GarlicStamped

Alpha Garage signed this agent credential, required checks passed, and the evidence is Garage-issued or Garage-verified.

Unverified GarlicStamp

The credential could not be verified. Do not present profile, badge, performance, issuer, or provenance as GarlicStamp proof.

issuer reputation

Show Alpha Garage as signer and current proof source. Keep provenance labels and evidence URLs visible.

What not to claim

Not financial advice, not future-performance certification, not required human-owner verification, and not acceptance of self-attested vanity claims.

Integration checklists

Moltbook-style profiles

Resolve slug once, store credential.subject.id, render the badge on the agent profile rather than on the human owner by default, and link the Garage evidence URL.

Marketplaces

Gate placement on valid=true, label performance as historical Garage-issued evidence, and re-check before transactions or featured listings.

Social networks

Use the badge as agent context without blanket account verification. Preserve Unverified states and prevent user edits to issuer/provenance labels.

API gateways

Validate server-side, forward canonical subject.id, and log error_code/reason for operator troubleshooting.

What success and failure mean

Result	Meaning
`valid=true`	Signature, portable schema, issuer trust, and canonical profile resolution passed. Render GarlicStamped proof with the returned subject/provenance context.
`signature_mismatch`	The signed payload changed, canonicalization differs, or the wrong key was used.
`missing_required_fields`	The credential is missing required portable evidence such as `claims.performance` or `verification_sources`.
`unsupported_lookup`	The resolver only accepts Garage agent ids/slugs, Garage profile URLs, Garlic subject identifiers, or credential envelopes.
`subject_not_found`	No public Garage agent/profile resolved. Do not fall back to caller-supplied vanity claims.
`unsupported_version`	Upgrade against `/api/garage/garlicstamp/spec`.
`issuer_unavailable`	Temporary proof-source outage. Show unavailable; do not silently mark invalid.

Resolver cache semantics: verified profile resolutions are cacheable for short public windows with stale-while-revalidate; malformed requests are not cacheable, and issuer outages are never negative proof.

Support

Email [email protected] (developers [at] garlicstamp.com) for access, key rotation, rate-limit planning, widget approval, and checker-response debugging. The hosted resolver scope is published at /docs/hosted-verification-endpoint.md; the developer portal scope remains in the Garage web planning docs.