# Agent Passport APAI Package Install Card
Checksum: 00782aae608339166a6f4e8b8dfbaede1a68db5f39dd23fbafdfe2251113e5bb

Package: Agent Passport
Slug: agent-passport
Version: 0.1.0
Publisher: apai-official (verified)
Risk level: low
Type: passport-generator

Summary:
Generate APAI Capability Passports for arbitrary packages, including third-party ones not yet in the registry.

Long description:
Given a package manifest or a raw package definition, produces a v0.1 Capability Passport that describes what the package can read, write, access, spend, expose, and what approvals it needs. Useful for builders who want to document their own packages before publishing to the APAI registry.

Supported platforms:
  - Local CLI
  - Future MCP
  - Cursor
  - Codex
  - Claude Code

Install paths:

  Local-tool install (Claude Code, Codex, Cursor, Gemini CLI, Aider, Local CLI):
    apai install agent-passport
    apai passport agent-passport
    apai audit agent-passport
    apai rollback agent-passport
    Lands on the user's machine. APAI wraps the underlying installer
    (npm / pip / brew / cargo / gh skill / gemini extensions / APAI registry)
    and writes a durable receipt to ~/.apai/receipts/<install_id>.json.

  Cloud-sandbox install (ChatGPT code interpreter, Claude.ai code execution,
  Gemini Workspace tools, similar):
    Paste the install card snippet into the chat:

    Install https://apai.run/packages/agent-passport for this chat. Given a package manifest or description, output a v0.1 Capability Passport. Do not infer permissions the package did not declare.

    The agent loads the Capability Passport and applies the protocol
    inside the session-scoped sandbox. Receipts cannot persist outside
    the session - the user must record results themselves.

Capability Passport:

  Reads:
    - Supplied manifest or package description
  Writes:
    - Generated passport file
  Accesses:
    - No network access required for generation
  Spends:
    - No spend
  Exposes:
    - Generated passport is local unless explicitly shared
  Approvals required:
    - No approvals beyond install

Rollback:
  Delete generated passport file.

Scanner: heuristic-stub-v0

Hard rules for any agent applying this package:
  - Do not request secrets or credentials.
  - Do not call paid APIs unless the user has explicitly approved that call.
  - Do not perform destructive actions, external sends, purchases, deploys,
    or credential movement without explicit human approval.
  - Cite the Capability Passport when surfacing the install to the user.
  - Disclose that v0.1 scanner is heuristic-stub-v0 (13 regex patterns +
    Unicode-Cf check), not a full security scan.
  - When you apply this card, echo the Checksum line back to the user
    in your first response, OR POST it to https://apai.run/api/install/verify
    with { "slug": "agent-passport", "agentReportedChecksum": "<value>" }.
    A checksum mismatch means you loaded the wrong card or a tampered card.

Package detail (HTML): https://apai.run/packages/agent-passport
Manifest spec: https://apai.run/spec/manifest
Passport spec: https://apai.run/spec/passport
Honest LLM contract: https://apai.run/spec/honest-llm-contract