Project History¶

Genesis Mesh has shipped a sequence of tagged releases since v0.1.0. This document walks through them in six coherent phases, naming the question each phase answered and what was true at the end of it.

It is a synthesis. The canonical sources are the per-release plans under ops/ in the repository, the architectural thesis in ops/strategy.md, the milestone list in ops/roadmap.md, and the project’s VISION.md.

1. The Problem¶

Machines can connect. They cannot prove trust.

Every AI agent, autonomous system, and distributed worker that talks to another one today answers three questions badly or not at all:

Who is this? Is this agent who it claims to be, or an impostor on a flat, anonymous network?
What can it do? What is it actually authorized to do, and under whose policy?
How do I cut it off? When it is compromised, how do I revoke it everywhere, instantly, with proof?

Identity and access systems exist. They live inside one provider (Entra ID, Okta, IAM) or one consortium (verifiable credentials, DIDs). None of them carry trust across independent organizations the way DNS carries names or PKI carries certificates. Most agent frameworks silently assume this layer is solved. It is not.

Genesis Mesh is intended to be that layer: a protocol for sovereign communities to establish, delegate, recognize, and revoke trust across organizational boundaries. The core primitive is portable trust. Capabilities, agents, workflows, marketplaces, and economies are overlays on top of it.

The long-term value is not only the code; it is the recognition network: the accumulated graph of who recognizes whom. Code can be copied; relationships cannot.

2. The Journey, in Phases¶

Phase A - Foundation (v0.1.0 through v0.5.2)¶

Question: Can we build a permissioned mesh of authenticated nodes?

v0.1.0 shipped the first usable runtime. A signed Genesis block defined the network root, policy, and authority. A Network Authority issued join certificates. Nodes joined under those certificates and spoke to each other over a real transport. Messages routed across the mesh. Revocation, health, metrics, and audit existed at first-pass quality. The protocol-first proof: minimum viable control plane and data plane, no demos yet.

v0.2.0 was the first hardening release. After v0.1.0, several authorization and concurrency flaws became visible: unauthenticated heartbeats, renewal as a privilege-escalation path, replay caches with wrong targeting, peer-manager deadlocks. v0.2.0 closed all of them and added regression tests.

v0.3.0 moved the project from “runtime exists” to “operators can inspect and drive it.” Persona-oriented CLI workflows, the first Sphinx documentation site, and a browser-visible Network Authority console with node visibility.

v0.4.0 made the project explainable outside the source tree. GitHub Pages documentation, the first runnable revocation demo, proof-of-possession and capped renewal improvements.

v0.5.0 was the first infrastructure proof. Azure deployment via Terraform, GitHub Actions for deployment automation, ProxyFix for cloud ingress, multi-hop routing demo, peer-to-peer send demo, failover demo, Kubernetes manifests.

v0.5.1 turned the live proof into something reproducible. PyPI packaging, publishing scripts, pre-commit configuration, canonical systemd units, a VM bootstrap runbook.

v0.5.2 was a small credibility patch: SECURITY.md, threat model material, PyPI README image fixes, integration test markers, a failover assertion correction.

At the end of Phase A: A permissioned mesh exists, runs in production on Azure, can be installed from PyPI, and has documented security posture.

Phase B - Agent Layer (v0.6.0 through v0.8.0)¶

Question: Can the mesh carry real agent workloads?

v0.6.0 introduced a cooperative multi-agent workflow: Researcher -> Router -> Knowledge Agent -> Router -> Researcher. The release also added capacity benchmarking with measured baseline numbers (50-agent and 1000-request runs).

v0.7.0 changed agent coordination from hard-coded peer knowledge to capability-driven discovery. The Network Authority became a service registry: agents advertise capabilities, consumers query by capability tags, registry entries can expire or be refreshed. The release also added an LLM-backed responder, provider-agnostic via a single env-var prefix.

v0.7.1 polished the discovery story for public consumption. Capability discovery before requester action in the demo flow, secret redaction in recorded output, refreshed assets.

v0.8.0 was the first release where revocation directly shaped application-level agent behavior. Capability orchestration: callers request work by capability, the mesh selects trusted providers, invokes them, and fails over when trust changes. CapabilityRequest/CapabilityResponse contracts, provider abstraction, a planner that orchestrates through discovery, and a revocation-aware failover demonstration.

At the end of Phase B: The mesh routes real work through trusted, discoverable providers, and trust state actually affects which provider runs the work.

Phase C - The Trust Thesis (v0.9.0 through v0.12.0)¶

Question: Can independent sovereigns recognize each other and revoke trust across boundaries?

This is the phase where the architectural thesis gets built in code. Four releases, each adding one primitive.

v0.9.0 - Sovereign Trust and Membership Attestations. The SovereignIdentity model. The MembershipAttestation model with role and status claims. Local recognition policy. An attestation verifier that checks issuer recognition, signature, validity window, status, role, and local revocation. Structured TrustDecision results with audit-ready reason codes. A two-sovereign demo where Sovereign B accepts an attestation from Sovereign A only when it recognizes A, and rejects the same attestation after revocation.

The two sovereigns in v0.9 are both operated by the maintainer. The release plan says this out loud rather than hiding it. The protocol mechanism is the proof; the operator is incidental.

v0.10.0 - Recognition Treaties and Graph Export. Local configuration becomes a signed on-network artifact. RecognitionTreaty and RecognitionTreatyScope models. Treaty-backed attestation verification. Treaty issue/revoke endpoints, public treaty read endpoints, a treaty-backed verification endpoint, and a /recognition-graph export endpoint.

The graph export ships at v0.10 - three releases before the Connectome visualization - so the data is observable from the moment treaties exist. The visualization is later because making the protocol data observable is more important than making it pretty.

v0.11.0 - Cross-Sovereign Revocation Propagation. A sovereign that accepts another sovereign’s attestations must also learn when those attestations are revoked. SovereignRevocationFeed model with signature verification, sequence-based stale-feed rejection, signed feed endpoint on the issuing sovereign, admin feed import endpoint on the accepting sovereign, and treaty-backed verification that honors imported revocations.

v0.12.0 - Connectome Visualization and Operator Workflows. /connectome.json for machines, /connectome for browsers, /connectome/trust-path?from=...&to=... for explaining specific decisions, revocation blast-radius summaries.

The Connectome consumes /recognition-graph. It does not invent a second source of truth. The Network Authority remains the authoritative state; the Connectome is one possible view. This is a deliberate architectural decision to prevent any single viewer from becoming the authority over what the network can see or rank.

At the end of Phase C: Two sovereigns can recognize each other through signed treaties, accept each other’s attestations, propagate revocations across the boundary, and explain every trust decision through a graph viewer.

Phase D - Operational Proof (v0.12.1)¶

Question: Does the protocol work between actually independent infrastructure?

v0.12.1 is a patch release in version-number terms and a major release in evidence terms. Two sovereigns: one on Azure (na.genesismesh.connectorzzz.com), one on DigitalOcean (separate VM, separate IP). Each has its own genesis block, NA keypair, operator keys, SQLite database, policy, and state. They speak the same protocol.

The proof motion:

Both authorities start from empty Connectome state.
Azure sovereign signs a recognition treaty for the DigitalOcean sovereign (network name USG-NB).
The DigitalOcean sovereign issues a membership attestation.
Azure accepts it before revocation.
The DigitalOcean sovereign revokes the attestation and publishes its signed revocation feed.
Azure imports the feed.
Azure rejects the same attestation after revocation.

This release ran on real public infrastructure across two cloud providers. It is the difference between “the protocol could work across boundaries in principle” and “the protocol has worked across boundaries on these specific IPs and these specific keys at this specific time.”

Phase E - Operator Readiness (v0.13.0 through v0.16.0)¶

Question: Can someone else run this without being the maintainer?

This phase is preparation. Each release does the work that has to land before an external operator could be expected to succeed.

v0.13.0 - Operator-Ready Sovereign Workflows. Reproducible sovereign initialization with explicit configuration. Provider-neutral Ubuntu VM bootstrap. A public /sovereign.json metadata endpoint. A remote proof runner that accepts two NA endpoints and executes the full attestation -> treaty -> revocation -> rejection flow. A narrow cleanup helper that resets only proof tables.

v0.14.0 - External Operator Adoption Readiness. The release shipped the operator packet (quickstart, security checklist, recognition playbook), the proof bundle schema, and adoption-proof metadata validation that requires the issuer to be marked external and confirm control of their own keys and infrastructure.

The original v0.14 plan named the release “External Operator Adoption Proof” and gated the tag on a real external operator having run the proof. When that gate was not yet met but the engineering work was done, the release was renamed to “Readiness” and a CHANGELOG note explicitly stated the adoption milestone was still open. The actual adoption-proof work moved to v0.18.0.

v0.15.0 - Supply-Chain Trust Gate. A narrow CI/release gate that demonstrates how Genesis Mesh sits in a publishing or release path. A project sovereign attests a maintainer. Another project recognizes the issuer through a treaty. A CI verifier allows or denies a release action based on treaty-backed trust. Revocation by the issuing sovereign blocks the same maintainer on the same gate.

The release also lands a competitive page positioning Genesis Mesh against Sigstore, SLSA, and similar - because the question “isn’t this just Sigstore?” arrives in every conversation and the one-line answer needs to exist.

v0.16.0 - Managed Sovereign Enterprise Readiness. Backup and restore runbooks, an optional backup helper, audit event export, monitoring documentation for healthz/readyz/metrics, incident response runbooks for operator key compromise, NA key compromise, bad treaty, bad feed, database restore, and revocation blast-radius review.

v0.16.1 - Operator Console Surface Alignment. The Network Authority home page and Connectome are brought into the same visual standard. The browser surface remains read-only and explanatory, but it now reflects the shipped managed-sovereign and cross-sovereign trust surfaces rather than an older enrollment-only view.

v0.16.2 - Operator Adoption Console. The operator console becomes a compact adoption surface: generated API and CLI references, dark/light mode, shared navigation, curated route groups, search, surface filters, and a Connectome graph. The goal is not a browser control plane. The goal is that a reviewer or future operator can open a running authority and understand what exists without reading raw JSON first.

v0.17.0 - Documentation Retheme and Navigation. The Sphinx docs are reorganized around reader intent, gain grouped landing pages, and adopt the same visual language as the operator console. This release also adds the public project history page so the build sequence is legible to maintainers.

v0.17.1 - Large Module Refactor. The largest security-sensitive implementation files are split without changing behavior: genesis_mesh/cli/ops.py becomes a smaller registration and remaining command surface, genesis_mesh/na_service/db.py remains the stable NADatabase facade while delegating persistence domains to smaller mixins, and the monolithic CLI ops tests are split by command family.

v0.17.2 - Federation Bootstrap Readiness. The first-recognition operator journey becomes a guided CLI workflow. An operator can review another sovereign’s public material, preview treaty scope, explicitly confirm the trust decision, issue a direct-recognition treaty using existing signed admin semantics, and verify the resulting trust path. This is readiness work, not external adoption proof.

v0.17.3 - Trust Bundle Exchange. The first-recognition journey gains a portable review artifact. An operator can export another sovereign’s public trust material into a JSON bundle, inspect it offline, validate it against the live endpoint, import it as local review evidence with trust_granted: false, and feed it into federation bootstrap. Trust still requires explicit treaty issuance and operator signing.

v0.17.4 - Treaty Lifecycle Management. Operators can list, inspect, renew, replace, and revoke direct-recognition treaties through a dedicated CLI surface. The Connectome now shows derived lifecycle state and expiry risk, while operator-facing dates are rendered in a readable UTC format. The release keeps renewal and replacement as helpers over existing issue and revoke semantics, not as new treaty primitives.

v0.17.5 - Sovereign Health and Trust Dashboard. Each sovereign gains a read-only dashboard over local state: readiness, Connectome counts, treaty lifecycle risk, revocation-feed freshness, recent sanitized trust changes, and links to raw JSON/reference surfaces. The page improves operator confidence without becoming a browser-admin product or a new source of trust.

v0.17.6 - Operator Console Trust View Polish. The operator console and dashboard are tightened for real multi-sovereign screenshots: Connectome graph edges are aggregated instead of overlapping, current and historical recognition edges are separated, dashboard audit summaries become human-readable, and docs include live Network Authority screenshots alongside repeatable demo assets.

v0.17.7 - CLI Error Handling Hardening. Operator-facing CLI failures are converted from raw Python tracebacks into compact, actionable messages. The release adds shared validation for roles, validity windows, operator signing keys, and HTTP JSON errors across the admin, join, federation, trust-bundle, treaty, proof, discovery, and sovereign-inspection command paths.

v0.17.8 - API Error Contract Hardening. Network Authority HTTP failures are moved behind a shared typed exception layer and one JSON error envelope. Routes express business failures while app-level handlers translate them into safe status codes, request IDs, sanitized messages, and generated API metadata that clients can rely on.

v0.17.9 - Observability Logging Hardening. Process logging is moved behind a shared observability module with consistent level/format configuration, secret redaction, WSGI/CLI/node wiring, API access logs, and centralized server-error logging. Operators get request IDs in responses and logs without exposing invite tokens, bearer tokens, signatures, private-key markers, or key file paths.

v0.17.10 - Observability and Operator UX Hardening. The v0.17.x adoption readiness surface is tightened after the full smoke pass: JSON logs promote request metadata to first-class fields across the NA process, ANSI-colored development-server messages are sanitized, init --home keeps its config beside generated artifacts, unsafe init --force deletions are refused clearly, federation bootstrap reports half-committed treaty state with cleanup guidance, common operator commands accept direct signing keys or consistent endpoint aliases, and local na start development logs stay JSON-readable when JSON log mode is enabled.

v0.17.11 - Azure Deployment Verification Hardening. The release deployment path is tightened after the v0.17.10 deploy exposed an environment assumption: the Azure VM does not provide a bare python executable. The workflow now uses the repo virtual environment for its Connectome probe, and the production NA systemd unit defaults to JSON logs so deployed operators get structured output without extra override work.

At the end of Phase E: A new operator has documented onboarding, a security checklist, an operator packet, a proof bundle format that distinguishes maintainer-operated from externally-operated infrastructure, operational credibility for managed deployment, a coherent public documentation surface, smaller internal modules for auditing the CLI and trust-state persistence paths, a local read-only dashboard for health and trust visibility, and safer operator-facing logs. The first federation step is now easier to run, package for review, inspect through operator-facing views, and explain visually, but a non-maintainer operator is still required for adoption proof.

Phase F - Adoption, Operator Continuity, and Ecosystem Baseline (v0.18.0 through v0.21.0)¶

Question: Has someone else become operationally visible in the network?

This phase moved the project beyond maintainer-only demonstrations. It created public evidence for non-maintainer sovereigns, founding community operators, operator-owned control boundaries, and continuity expectations after the first proof.

v0.18.0 - External Operator Adoption Proof. Non-maintainer sovereigns are represented through public proof material. The adoption proof distinguishes operator-owned trust domains from Genesis Core maintenance: each operator has its own sovereign identity, Network Authority key, operator key, policy, endpoint, and public proof artifacts. The milestone shows that Genesis Mesh can explain and package non-maintainer participation rather than only local or maintainer-run scenarios.

The Operator Quality Test remains the standard for assessing whether an operator is meaningful: did they ask to run a sovereign or did the maintainer push them; do they have a reason to operate that exists even if Genesis Mesh does not succeed; would they keep operating after the proof; are they willing to be named publicly; can they explain why they are running it without coaching.

v0.19.0 - Operator Continuity. The adoption proof becomes an ongoing operator-continuity model. Founding community operators are documented as non-maintainers of Genesis Mesh who maintain their own sovereign trust domains. Continuity expectations cover endpoint health, backups, treaty expiry review, trust-bundle refresh, recurring attestation/revocation proof, and Connectome state checks.

v0.20.0 - Phase 2 Ecosystem Baseline. The operator-continuity proof becomes the baseline for ecosystem formation. The project now names the next proof surfaces explicitly: RFCs, Atlas, governance, independent implementations, and one native application that makes the trust fabric useful beyond protocol readers.

v0.21.0 - RFC Program Batch 1. The first ecosystem surface named in the baseline becomes real. Eight protocol RFCs are published under docs/rfcs/, each one implementation-informed and mapped to a reference module rather than speculative: sovereign identity, recognition treaties, trust bundles, revocation feeds, capability manifests, the Connectome model, operator continuity, and the managed operator role. The protocol can now be read as a standard, not only as Python.

At the end of Phase F: Genesis Mesh has technical proof, operational proof, and early adoption proof. The next risk is no longer only technical. It is ecosystem risk, governance risk, independent implementation risk, and application-layer relevance.

3. Patterns of Discipline¶

Across every shipped release, several patterns held without exception.

Every plan has the same structure. Goal/Positioning, Release Narrative, Success Criteria, In Scope / Out of Scope, Implementation Phases, Verification, Release Gate. A reader can pick up any plan and navigate it.

Every plan has an Out-of-Scope section. From v0.1 onward, marketplaces, billing, tokens, governance UI, reputation scoring, registry monetization, and global discovery are explicitly named as not-this-release. v0.8 says cross-sovereign trust is out (rightly - that was v0.9). v0.10 says transitive recognition is out. v0.14 says marketplace and paid billing are out.

Release Gates are real checklists. Not “we hope this works” but “do not tag until X.” Most releases have Verified Results blocks with specific test counts (215 passed, 228 passed, 236 passed), specific mypy output, and demo confirmation.

Honesty is structural. v0.9 says explicitly that the first proof is operated by the maintainer on two NAs and the demo must say so. v0.12.1 says “the important claim is not ‘two services are online,’” naming what the proof is and is not. v0.14 CHANGELOG says “the real adoption milestone still requires a non-maintainer operator.” v0.17 says “do not tag without a named non-maintainer operator.”

Protocol-vs-platform discipline never broke. Across every shipped release, no release drifted into building a marketplace, a token economy, a central reputation system, or a closed registry. The Out-of-Scope sections held the line at every step.

The recovery from v0.14 is the most informative single artifact. When reality didn’t match the plan, the response was: rename the release to be honest about what shipped, write a CHANGELOG note that acknowledges the original goal is still open, split the actual work into a new milestone, and add Parallel Adoption Checkpoints to v0.15 and v0.16 so the same drift can’t happen twice.

4. What Is True Today¶

As of the current Phase 2 baseline:

A working permissioned mesh runs in production on Azure, with cryptographic identity, signed join certificates, Noise XX peer sessions, CRL enforcement, peer discovery, and routing.
A cooperative multi-agent workflow runs on top of it with measured capacity baselines.
Capability discovery and trust-aware orchestration with revocation failover are demonstrated end-to-end.
Portable trust between independent sovereigns works in code: signed membership attestations, signed recognition treaties, treaty-backed acceptance, signed revocation feeds, cross-boundary revocation propagation, and a recognition-graph export.
The Connectome surfaces the recognition graph with trust-path explanations and revocation blast-radius summaries, as one view over signed protocol data.
Two independent infrastructure deployments have successfully recognized each other and propagated a revocation across a real network boundary between Azure and DigitalOcean.
Founding community operators are documented as non-maintainers of Genesis Mesh who maintain their own sovereign trust domains.
A reproducible operator packet exists, including a quickstart, a security checklist, a recognition playbook, and a proof bundle schema. The proof bundle format distinguishes maintainer-operated infrastructure from externally-operated infrastructure.
Public operator proof artifacts and continuity expectations exist for the founding operator set.
Connectorzzz has a defined managing-partner role: operator onboarding, endpoint coordination, public trust material, continuity checks, and client-facing confidence without becoming hidden owner of the operators’ private keys or trust decisions.
The project is open-source, MIT-licensed, and installable from PyPI as pip install genesis-mesh.
Every shipped release has a written plan in ops/ and a verified release gate.

As of the current Phase 2 baseline, the following are not yet true:

Genesis Mesh does not yet have a complete RFC set that can stand apart from the Python reference implementation.
Atlas does not yet exist as a public ecosystem explorer beyond individual Connectome views and public proof artifacts.
Governance is not yet formalized into an RFC process, decision log, operator exit note, and managing-partner boundary document.
A second implementation has not yet completed treaty-backed interoperability with the Python reference implementation.
The first native application has not yet made Genesis Mesh legible to a non-protocol buyer or operator workflow.

5. Where to Read More¶

The files referenced below live in the repository root and under ops/. They are not part of the Sphinx documentation tree, so they are listed as paths rather than as links.

Architecture and design philosophy: ops/strategy.md
Pre-1.0 milestone list: ops/roadmap.md
Per-release plans (v0.1.0 through v0.22.0): ops/plan-v0.*.md
Phase 2 ecosystem roadmap: docs/development/phase-2-ecosystem.md
Provenance note: docs/provenance-2017-to-phase-2.md
Project vision and the “what we will not build” list: VISION.md
Repository conventions for working in the codebase: AGENT.md

This document changes as the project changes.