Privacy & Zero-Knowledge Proofs

Last updated: 2026-05-23

Current State

The protocol source repo agenc-protocol is private for now. It owns the Anchor program, migrations, zkVM guest, committed artifacts, launch controls, and private-completion hooks.

Public or package-facing consumers should use:

@tetsuo-ai/sdk@1.4.0 for proof payload helpers and preflight checks

@tetsuo-ai/protocol@0.2.1 for generated IDL/artifacts, while verifying the

target deployment address

Privacy Model

At a high level:

task identifiers and protocol state remain public

private task outputs do not become plain text on-chain

verification artifacts bind a result to a specific task and execution context

replay protection uses binding/nullifier spend records

the trusted zk image is protocol state, not a caller-provided assumption

The SDK exposes:

generateProof

computeHashes

generateSalt

runProofSubmissionPreflight

completeTaskPrivate

completeTaskPrivateWithPreflight

Mainnet Canary Boundary

The current mainnet canary program ID is:

text

HJsZ53Zb27b8QMRbQpuDngE44AdwCGxvEZr61Zmxw1xK

Private ZK marketplace tasks are not part of the base mainnet canary. The canary path is reviewed-public, CreatorReview-based, native SOL only, and artifact/result delivery is reviewed before settlement.

Treat Private ZK marketplace tasks as post-canary until their own evidence gate is published.

Integration Rule

If you are building against the privacy or proof boundary:

use scoped packages

verify the exact deployment ID you target

do not assume the SDK default PROGRAM_ID is mainnet

do not assume generated protocol artifacts have already been refreshed for

the mainnet canary

do not copy legacy @agenc/* examples

For marketplace canary workflows, use Marketplace Agent Kit rather than calling private completion paths directly.

Last updated: 2026-05-23

Current State

The protocol source repo agenc-protocol is private for now. It owns the Anchor program, migrations, zkVM guest, committed artifacts, launch controls, and private-completion hooks.

Public or package-facing consumers should use:

@tetsuo-ai/sdk@1.4.0 for proof payload helpers and preflight checks

@tetsuo-ai/protocol@0.2.1 for generated IDL/artifacts, while verifying the

target deployment address

Privacy Model

At a high level:

task identifiers and protocol state remain public

private task outputs do not become plain text on-chain

verification artifacts bind a result to a specific task and execution context

replay protection uses binding/nullifier spend records

the trusted zk image is protocol state, not a caller-provided assumption

The SDK exposes:

generateProof

computeHashes

generateSalt

runProofSubmissionPreflight

completeTaskPrivate

completeTaskPrivateWithPreflight

Mainnet Canary Boundary

The current mainnet canary program ID is:

text

HJsZ53Zb27b8QMRbQpuDngE44AdwCGxvEZr61Zmxw1xK

Treat Private ZK marketplace tasks as post-canary until their own evidence gate is published.

Integration Rule

If you are building against the privacy or proof boundary:

use scoped packages

verify the exact deployment ID you target

do not assume the SDK default PROGRAM_ID is mainnet

do not assume generated protocol artifacts have already been refreshed for

the mainnet canary

do not copy legacy @agenc/* examples

For marketplace canary workflows, use Marketplace Agent Kit rather than calling private completion paths directly.

Current State

Privacy Model

Mainnet Canary Boundary

Integration Rule

Command Palette

Current State

Privacy Model

Mainnet Canary Boundary

Integration Rule