CodeTeam.Crypto 1.0.3

.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher. 
dotnet add package CodeTeam.Crypto --version 1.0.3
                    


                    

                
NuGet\Install-Package CodeTeam.Crypto -Version 1.0.3
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="CodeTeam.Crypto" Version="1.0.3" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="CodeTeam.Crypto" Version="1.0.3" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="CodeTeam.Crypto" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add CodeTeam.Crypto --version 1.0.3
                    


                    

                
#r "nuget: CodeTeam.Crypto, 1.0.3"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package CodeTeam.Crypto@1.0.3
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=CodeTeam.Crypto&version=1.0.3
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=CodeTeam.Crypto&version=1.0.3
                    


                            Install as a Cake Tool

<p align="center"> <a href="README.ja.md">日本語</a> | <a href="README.zh.md">中文</a> | <a href="README.es.md">Español</a> | <a href="README.fr.md">Français</a> | <a href="README.hi.md">हिन्दी</a> | <a href="README.it.md">Italiano</a> | <a href="README.pt-BR.md">Português (BR)</a> </p>

<p align="center"> <img src="https://raw.githubusercontent.com/mcp-tool-shop-org/brand/main/logos/codeteam-suite/readme.png" alt="CodeTeam Suite" width="400" /> </p>

<p align="center"> <a href="https://github.com/mcp-tool-shop-org/codeteam-suite/actions/workflows/ci.yml"><img src="https://github.com/mcp-tool-shop-org/codeteam-suite/actions/workflows/ci.yml/badge.svg" alt="CI"></a> <a href="LICENSE"><img src="https://img.shields.io/badge/license-MIT-blue" alt="License: MIT"></a> <a href="https://mcp-tool-shop-org.github.io/codeteam-suite/"><img src="https://img.shields.io/badge/Landing_Page-live-blue" alt="Landing Page"></a> </p>

The authoritative CodeTeam implementation — a .NET-based CLI and library for package verification, approval, and signing.

Status

v1.0.2 Released — Cryptographic trust loop complete. Interop contract locked.

What's Stable

The following are frozen and CI-protected:

Artifact Location Guarantee
JSON schemas /schemas/*.v0.1.json Additive changes only
CLI verify --json output codeteam.cli.verify.schema.v0.1.json Backward compatible
Error codes ErrorCode.cs No removals or renames
Severity mapping severity-map.v0.1.json New codes require mapping

Interop smoke tests enforce these guarantees. Breaking changes fail CI.

NuGet Packages

Package Description
CodeTeam .NET global tool for package verification, approval, and signing. Install with dotnet tool install -g CodeTeam.
CodeTeam.Core Domain models, verification logic, canonical JSON, and quorum-based policy evaluation.
CodeTeam.Crypto Ed25519 signature verification and SHA-256 digest computation via NSec.Cryptography.
CodeTeam.Packaging Package reading and verification with path-traversal protection and JSON schema validation.

Overview

CodeTeam Suite is the "one truth" implementation that all editor extensions (VS Code, Visual Studio) delegate to. Extensions invoke the CLI and render results; they do NOT implement verification logic.

Architecture

CodeTeam.Core       → Domain models, status codes, error types
CodeTeam.Crypto     → Ed25519 signatures, SHA-256 hashing
CodeTeam.Packaging  → Package loading and verification
CodeTeam.Cli        → CLI entry point (codeteam verify/approve/sign)

CLI Usage

# Verify a package
codeteam verify <package-path> --json

# Approve a package
codeteam approve <package-path> --key <key-id> --json

# Sign a package
codeteam sign <package-path> --key <key-id> --json

Exit Codes

Code Status Meaning
0 OK_VERIFIED Package verified with valid signature
1 OK_UNSIGNED Package valid but unsigned
2 FAIL_INTEGRITY Missing file, size/digest mismatch
3 FAIL_SCHEMA Schema validation failed
4 FAIL_SIGNATURE Signature verification failed
5 FAIL_THRESHOLD Approval threshold not met
6 FAIL_UNAUTHORIZED Actor not authorized

Documentation

Golden Fixtures

Test fixtures define expected verification outcomes:

Fixture Expected Status
fixtures/minimal_unsigned/ OK_UNSIGNED
fixtures/approved_threshold_met/ OK_UNSIGNED
fixtures/signed_verified/ OK_VERIFIED
fixtures/tampered_artifact/ FAIL_INTEGRITY
fixtures/invalid_manifest/ FAIL_SCHEMA
fixtures/signed_verified_real/ OK_VERIFIED
fixtures/signed_invalid_sig/ FAIL_SIGNATURE

Building

dotnet build
dotnet test

Security & Data Scope

CodeTeam Suite is a local-first CLI and library for cryptographic package verification.

  • Data accessed: Reads package manifests, approvals, and signatures for cryptographic verification (Ed25519 + SHA-256). Writes approval/signature records to package directories.
  • Data NOT accessed: No network requests (except optional XRPL anchoring). No telemetry. No cloud services.
  • Permissions: File system read/write for package directories. No elevated permissions.

Full policy: SECURITY.md

Scorecard

Category Score
A. Security 10/10
B. Error Handling 10/10
C. Operator Docs 10/10
D. Shipping Hygiene 10/10
E. Identity (soft) 10/10
Overall 50/50

License

MIT

Built by <a href="https://mcp-tool-shop.github.io/">MCP Tool Shop</a>

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages (1)

Showing the top 1 NuGet packages that depend on CodeTeam.Crypto:

Package Downloads
CodeTeam.Packaging

Package reading, loading, and verification with path-traversal protection and JSON schema validation. Provides IPackageReader abstraction for directory and archive formats.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
1.0.3 101 4/7/2026
1.0.2 117 2/28/2026