Skip to content

spec: decide and document the cnf-in-preimage canonical pre-image (normative) #77

Description

@imran-siddique

Tracked follow-up from the June 2026 org-wide security hardening review. Wave 1/2 fixes are merged and published; this is remaining hardening.

The SDK signs over the record including cnf (correct), but some doc snippets historically excluded it. Make the normative pre-image definition explicit in the spec so all implementations agree (recommend: include cnf, exclude only signature). Confirm SDK + spec + all docs match.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions