Skip to main content
This page is the canonical source for every disputed number, name, and definition across SINT Labs surfaces. When a number changes (new release, new audit, new conformance score), it is updated here first, then propagated to the whitepaper, marketing site, repo README, and social channels.

Protocol

Version
string
v0.2 — last updated April 2026. See changelog for version history.
License (code)
string
Apache-2.0 — reference implementation, conformance suite, SDKs, all code in the monorepo.
License (specification)
string
CC BY 4.0 — whitepaper, formal specification, design documents.
Packages in monorepo
number
41 workspace members.
Tests passing
number
1,772 — run pnpm test in the repo root for current exact count.
Transport bridges
number
12 — MCP, ROS 2, A2A, IoT (MQTT/CoAP), MQTT Sparkplug, OPC UA, Open-RMF, gRPC, MAVLink, Swarm, Economy, HAL.

Tier model

Tier count
string
Four tiers: T0, T1, T2, T3.
  • T0 — Observe. Read-only actions, auto-approved, logged.
  • T1 — Prepare. Reversible digital actions, auto-approved, audited.
  • T2 — Act. Physical or partially-reversible actions, requires review.
  • T3 — Commit. Irreversible actions, requires human approval with optional M-of-N quorum.
See Tiers for the full escalation function and Δ-factor rules.

CSML

CSML stands for
string
Composite Safety-Model-Ledger score.
CSML is a composite risk index combining per-model safety metrics (from behavioral observation in deployment) with evidence-ledger integrity. It feeds the tier escalation function via Δ_trust. See CSML for the formula and calibration.

Performance

Gateway decision latency (T0)
string
p50 ≤ 1ms, p99 ≤ 3ms under nominal load.
Ledger write (T2+)
string
≤ 2ms for standard append; TEE-signed writes add ~3ms depending on hardware.
ROS 2 control-loop target
string
p99 < 10ms end-to-end (request → decision → actuation → commit), on Jetson Orin NX.

Compliance

IEC 62443
string
FR1–FR7 mapped. See compliance for the functional-requirement crosswalk.
EU AI Act
string
Article 13 transparency and Article 14 human oversight operationalized. High-risk provisions effective 2 August 2026.
NIST AI RMF
string
GOVERN / MAP / MEASURE / MANAGE functions each mapped to concrete SINT mechanisms.
ISO/IEC 42001
string
Clauses 6, 8, 9, 10 cross-walked via the tier model.

OWASP coverage

OWASP Top 10 for Agentic Applications
string
10/10 ASI risks covered, each with dedicated regression tests in the conformance suite.

Cryptography

Capability token signing
string
Ed25519 via @noble/ed25519 (audited, zero-dependency).
Ledger integrity
string
SHA-256 hash chain. Each event’s prevHash points to the hash of the prior event’s canonical CBOR serialization.
Delegation depth
string
Maximum 3 hops. Attenuation-only (child scope ⊆ parent scope).

Runtime

Node version
string
Node.js ≥ 22, pnpm ≥ 9.
Language
string
TypeScript 5.7 in strict mode. Additional SDKs in Python, Go, Rust.
Persistence
string
PostgreSQL 16+ for production; in-memory for dev; Redis 7 for cache and rate-limiting.
Transport
string
TLS 1.3 on all inter-component communication. Ed25519 mutual auth.

Update policy

This page is updated before any other surface when a fact changes. The update order:
  1. facts.mdx (this page)
  2. WHITEPAPER.md in the repo
  3. Repo README.md
  4. docs.sint.gg/introduction
  5. sint.gg marketing site
  6. Social channels (@sintlabs, Telegram, LinkedIn)
If you find a discrepancy between this page and another surface, this page wins. Open an issue at github.com/sint-ai/sint-protocol/issues and we’ll reconcile.