refactor: canonical public_key_fingerprint with sha256: prefix in _types

Single source of truth for public key fingerprinting. Deleted duplicate implementations from provenance.py and agent.py (_fingerprint). All call sites now route through muse.core._types.public_key_fingerprint, which returns sha256:<64-hex> (length 71) consistent with every other content-addressed value in the system.

signer_key_id in CommitRecord wire format remains bare 16-char hex — that is a separate migration concern.

Tests: 16 new TDD tests in test_public_key_fingerprint.py, all updated existing test files updated to expect the prefixed format.

sha256:9604b7385087f53fc12d4d6398966152e90652122df931800fee579d854493b0 sha

sha256:9ef9e1c3cd263b29c5ad21f2be44526fca5a1c290c874f858de038573bb43861 parent

sha256:f4db4fd9de9f6cf1a817bad47a27f5e67974485492168605fb180a5f0c6e1266 snapshot

← Older Oldest on task/fingerprint-prefix

All commits Newer docs: update fingerprint examples to sha256: prefix sha256:2df337adcba922beb52384f3eff0ca4f24e06044df5b32f5eab8319fb4f3601a

0 comments

No comments yet. Be the first to start the discussion.

To add a comment, use the Muse CLI: muse hub commit comment sha256:9604b7385087f53fc12d4d6398966152e90652122df931800fee579d854493b0 --body "your comment"

Provenance signed

AI Agent

claude-sonnet-4-6

Bump BREAKING

Agent claude-code

Breaking

muse/core/provenance.py::public_key_fingerprint

Signature Cryptographically verified

Snapshot

ID sha256:f4db4fd9de9f6cf1a817bad47a27f5e67974485492168605fb180a5f0c6e1266

Files 0

Browse tree at this commit →

Commit

SHA sha256:9604b7385087f53fc12d4d6398966152e90652122df931800fee579d854493b0

Parent

sha256:9ef9e1c3cd263b29c5ad21f2be44526fca5a1c290c874f858de038573bb43861

Branch task/fingerprint-prefix