Initial: Capsule Protocol Specification v1.0.0

Author: bradleygauthier

.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,43 @@
+---
+name: Bug Report
+about: Report a bug in Capsule or the CPS reference implementation
+title: "[Bug] "
+labels: bug
+assignees: ''
+---
+
+## Describe the Bug
+
+A clear description of what the bug is.
+
+## To Reproduce
+
+Steps to reproduce the behavior:
+
+1. Install with `pip install qp-capsule...`
+2. Run this code:
+
+```python
+# Minimal reproducer
+```
+
+3. See error
+
+## Expected Behavior
+
+What you expected to happen.
+
+## Actual Behavior
+
+What actually happened. Include the full traceback if applicable.
+
+## Environment
+
+- **OS**: (e.g., macOS 15, Ubuntu 24.04)
+- **Python**: (e.g., 3.12.1)
+- **Capsule version**: (e.g., 1.0.0)
+- **Install extras**: (e.g., `[storage]`, `[pq]`)
+
+## Additional Context
+
+Any other context about the problem.

.github/ISSUE_TEMPLATE/cps_change.md

@@ -0,0 +1,35 @@
+---
+name: CPS Protocol Change
+about: Propose a change to the Capsule Protocol Specification itself
+title: "[CPS] "
+labels: protocol
+assignees: ''
+---
+
+## Summary
+
+One-sentence description of the proposed protocol change.
+
+## Motivation
+
+Why is this change needed? What problem does it solve at the protocol level?
+
+## Specification Change
+
+Describe the exact change to CPS. Which section(s) of the spec are affected?
+
+## Backward Compatibility
+
+- Does this break existing Capsules? (sealed records must remain verifiable)
+- Does this break existing implementations? (SDK authors must update)
+- Does this change canonical JSON output? (golden fixtures must be updated)
+
+## Golden Fixture Impact
+
+- [ ] Existing golden fixtures still pass
+- [ ] New golden fixtures are needed
+- [ ] Existing golden fixtures produce different output (BREAKING)
+
+## References
+
+Links to related issues, discussions, or external standards.

.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,23 @@
+---
+name: Feature Request
+about: Suggest an enhancement to Capsule
+title: "[Feature] "
+labels: enhancement
+assignees: ''
+---
+
+## Problem
+
+What problem does this solve? What use case is not currently supported?
+
+## Proposed Solution
+
+Describe your preferred approach.
+
+## Alternatives Considered
+
+What other approaches did you consider? Why were they rejected?
+
+## Additional Context
+
+Any other context, screenshots, or references.

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,28 @@
+## Summary
+
+What does this PR do? Link to any related issues.
+
+## Type of Change
+
+- [ ] Bug fix (non-breaking change that fixes an issue)
+- [ ] New feature (non-breaking change that adds functionality)
+- [ ] Breaking change (fix or feature that changes existing behavior)
+- [ ] Protocol change (modifies the CPS specification)
+- [ ] Documentation update
+- [ ] Test improvement
+
+## Checklist
+
+- [ ] Tests pass (`pytest tests/`)
+- [ ] Linter passes (`ruff check src/ tests/`)
+- [ ] Type checker passes (`mypy src/qp_capsule/`)
+- [ ] Golden fixtures still pass (`pytest tests/test_golden_fixtures.py`)
+- [ ] Documentation updated (if applicable)
+- [ ] CHANGELOG.md updated (if user-facing change)
+
+## Protocol Impact
+
+Does this PR change the Capsule Protocol Specification?
+
+- [ ] No protocol impact (implementation only)
+- [ ] Protocol change (requires CPS version bump and golden fixture update)

.github/dependabot.yml

@@ -0,0 +1,19 @@
+version: 2
+updates:
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    labels:
+      - "dependencies"
+    commit-message:
+      prefix: "deps"
+
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    labels:
+      - "dependencies"
+    commit-message:
+      prefix: "ci"

.github/workflows/ci.yaml

@@ -0,0 +1,55 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+permissions:
+  contents: read
+
+jobs:
+  lint:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
+        with:
+          python-version: "3.12"
+      - run: pip install ruff
+      - run: ruff check src/ tests/ specs/
+
+  typecheck:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
+        with:
+          python-version: "3.12"
+      - run: pip install -e ".[storage,dev]"
+      - run: mypy src/qp_capsule/
+
+  test:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.11", "3.12", "3.13", "3.14"]
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
+        with:
+          python-version: ${{ matrix.python-version }}
+          allow-prereleases: true
+      - run: pip install -e ".[storage,dev]" pytest-cov
+      - run: pytest tests/ -v --tb=short --cov=qp_capsule --cov-fail-under=100
+
+  test-golden:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
+        with:
+          python-version: "3.12"
+      - run: pip install -e ".[storage,dev]"
+      - run: pytest tests/test_golden_fixtures.py -v

.github/workflows/release.yaml

@@ -0,0 +1,83 @@
+name: Release
+
+on:
+  push:
+    tags:
+      - "v*"
+
+permissions:
+  contents: read
+
+jobs:
+  test:
+    name: Test
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.11", "3.12", "3.13"]
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
+        with:
+          python-version: ${{ matrix.python-version }}
+      - run: pip install -e ".[storage,dev]"
+      - run: pytest tests/ -v --tb=short
+      - run: pytest tests/test_golden_fixtures.py -v
+
+  build:
+    name: Build Package
+    runs-on: ubuntu-latest
+    needs: test
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
+        with:
+          python-version: "3.12"
+      - run: pip install build
+      - run: python -m build
+      - uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        with:
+          name: dist
+          path: dist/
+
+  publish:
+    name: Publish to PyPI
+    runs-on: ubuntu-latest
+    needs: build
+    permissions:
+      id-token: write
+    environment:
+      name: pypi
+      url: https://pypi.org/p/qp-capsule
+    steps:
+      - uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
+        with:
+          name: dist
+          path: dist/
+      - uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # release/v1
+
+  github-release:
+    name: GitHub Release
+    runs-on: ubuntu-latest
+    needs: publish
+    permissions:
+      contents: write
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Extract version from tag
+        id: version
+        run: echo "VERSION=${GITHUB_REF#refs/tags/v}" >> $GITHUB_OUTPUT
+      - name: Create GitHub Release
+        uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2
+        with:
+          generate_release_notes: true
+          body: |
+            ## Capsule ${{ steps.version.outputs.VERSION }}
+
+            See [CHANGELOG.md](https://github.com/quantumpipes/capsule/blob/main/CHANGELOG.md) for details.
+
+            ### Install
+
+            ```bash
+            pip install qp-capsule==${{ steps.version.outputs.VERSION }}
+            ```

.gitignore

@@ -0,0 +1,35 @@
+# Python
+__pycache__/
+*.py[cod]
+*.egg-info/
+dist/
+build/
+*.egg
+
+# Virtual environments
+.venv/
+venv/
+
+# Testing
+.pytest_cache/
+.coverage
+htmlcov/
+
+# Linting
+.ruff_cache/
+
+# mypy
+.mypy_cache/
+
+# IDE
+.idea/
+.vscode/
+*.swp
+*.swo
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Database (generated at runtime)
+*.db

CHANGELOG.md

@@ -0,0 +1,45 @@
+# Changelog
+
+All notable changes to Capsule are documented in this file.
+
+Format follows [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
+Versioning follows [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+---
+
+## [1.0.0] - 2026-03-07
+
+Initial public release of the Capsule Protocol Specification (CPS) v1.0 reference implementation.
+
+### Added
+
+- **Capsule model** with 6 mandatory sections: Trigger, Context, Reasoning, Authority, Execution, Outcome
+- **8 Capsule types**: agent, tool, system, kill, workflow, chat, vault, auth
+- **Cryptographic sealing**: SHA3-256 (FIPS 202) + Ed25519 (FIPS 186-5)
+- **Post-quantum dual signatures**: optional ML-DSA-65 (FIPS 204) via `pip install qp-capsule[pq]`
+- **Hash chain**: tamper-evident linking with sequence numbers and `previous_hash`
+- **CapsuleStorageProtocol**: runtime-checkable `typing.Protocol` for custom storage backends
+- **SQLite storage**: zero-config persistence via `pip install qp-capsule[storage]`
+- **PostgreSQL storage**: multi-tenant isolation via `pip install qp-capsule[postgres]`
+- **Pre-execution reasoning capture**: Section 3 (Reasoning) written before Section 5 (Execution)
+- **ReasoningOption.rejection_reason**: mandatory explanation for non-selected options
+- **Key management**: auto-generated keys with `0600` permissions, umask-based creation
+- **Cross-language interoperability**: canonical JSON serialization rules and 15 golden test vectors covering Unicode, fractional timestamps, all CapsuleTypes, chain sequences, deep nesting, failure paths
+- **Documentation**: getting-started, architecture, API reference, security evaluation, compliance mapping, CPS specification summary
+- **350 automated tests** across 14 test files with **100% code coverage** enforced in CI
+- **CPS v1.0 specification** shipped with the repo at `specs/cps/`
+- **Apache 2.0 license** with additional patent grant
+
+### Security
+
+- Ed25519 signatures required on every Capsule
+- SHA3-256 chosen over SHA-256 for length-extension resistance
+- Key files created with restrictive umask (no TOCTOU race)
+- ML-DSA-65 uses FIPS 204 standardized name
+- Zero runtime network dependencies (air-gapped operation)
+- `filterwarnings = ["error"]` with zero exemptions — any warning is a test failure
+- 100% test coverage enforced (`fail_under = 100`)
+
+---
+
+[1.0.0]: https://github.com/quantumpipes/capsule/releases/tag/v1.0.0