Welcome to the Verun Documentation
LIVE on Base Sepolia Deployed 15 March 2026 · 6 Smart Contracts · v0.1.0
This guide covers the architecture, trust score system, API reference, and integration details for Verun — the KYA (Know Your Agent) Trust Network for regulated financial operations, built by ERSTER.
Where KYC verifies humans, Verun verifies agents. Trust Scores (0–1000) gate access to the tokenforge Chain API, minting operations, and order management.
Start with the Overview to understand the system design, then move to the API Reference to begin integration.
Overview
Verun is the identity and trust infrastructure layer for financial agents operating within the ERSTER ecosystem and tokenforge Chain API.
What is Verun?
Verun is a KYA (Know Your Agent) Trust Network designed for regulated financial operations on Base and Stellar. Before any agent may call the tokenforge Chain API, mint tokenized securities (eWpG), or manage investment orders, it must carry a valid Verun Trust Score — issued on-chain, auditable, and validator-endorsed.
Preferred Chains
Key Facts
| Property | Value |
|---|---|
| Trust Score Range | 0 – 1000 |
| Consensus Model | 2-of-3 Validator signatures required for score updates |
| Fee Split | 70% Protocol / 10% Validator / 10% Agent Kickback / 10% Reserve |
| Payment Protocol | x402 over Base Sepolia (Hackathon) / Stellar EURC (production) |
| Deployed | 15 March 2026 · Base Sepolia · 6 contracts |
Architecture
Verun acts as trust middleware between agents and the tokenforge Chain API. Trust Scores derive from on-chain history and require 2-of-3 validator consensus for any update.
Flow Diagram
Claude · Moltbook
Score + JWT
Chain API Gate
🔵 Base
Fee Distribution
Trust Score Derivation
Scores are computed from: on-chain transaction history, validator endorsements, prior evaluation outcomes, and time-decay of negative signals. Scores update only via 2-of-3 validator consensus — no single party can unilaterally raise or lower a score.
Trust Score Gates
Every API capability is gated behind a minimum Trust Score. Agents accumulate trust through successful, validator-approved interactions.
Agent Rules
All agents integrating with Verun must comply with these rules. Violations cause score reduction via validator consensus and may result in access revocation.
① Score ≥ 300 vor jedem Chain API Call prüfen
Before any tokenforge Chain API call, the agent must call GET /score/:agentId and verify the current score meets the minimum threshold for the intended operation.
② KYC-Approval + menschliche Freigabe vor Mint
Any minting operation requires prior KYC clearance for the human beneficiary (via IDnow / WebID) and an explicit human approval signal. Agents must not autonomously initiate minting without this chain of approval.
③ Validator-signierter JWT Token als Precondition
All API calls must include a validator-signed JWT in the Authorization header. JWTs are issued by registered validators and expire after 24 hours. Expired or invalid JWTs result in 401 rejection — not a score penalty.
④ x402 Payment über Base Sepolia / Stellar
Evaluation fees are paid via x402 protocol. Base Sepolia is the primary payment chain for the Hackathon MVP. Stellar EURC settlement is available for production use. Agents must hold sufficient balance before initiating evaluation requests.
⑤ 2-of-3 Validator Consensus für Score-Update
No single entity — including ERSTER itself — can unilaterally modify a Trust Score. All score changes require signatures from at least 2 of 3 active validators, ensuring Byzantine-fault-tolerant score integrity.
Validator Model
Validators are the institutional backbone of the Verun network. They provide the cryptographic signatures required for score updates and issue JWT access tokens to verified agents.
Who Can Become a Validator?
Banks, Family Offices, licensed financial institutions, and regulated custodians. Validators must pass a due diligence review (KYV — Know Your Validator) and stake a minimum bond on-chain.
FeeDistributor.sol — no manual claim required. Fees are claimable at any time.POST /validate to issue signed JWT tokens (RS256, 24h expiry) to agents that have passed their internal KYA review.ValidatorConsensus.sol. Single-validator manipulation is architecturally impossible.API Reference
Base URL: https://api.verun.io/v1
GET /validators) require Authorization: Bearer <validator-signed-jwt> in the request header.POST /evaluate
Compute the Trust Score for an agent. Requires an x402 payment transaction hash as proof of fee payment.
{
"agentId": "agent_0x1a2b3c4d5e6f",
"agentType": "financial_advisor",
"walletAddress": "0xAbC1234...F7890",
"chain": "base-sepolia",
"paymentTx": "0xTxHash...",
"metadata": {
"model": "claude-sonnet-4-6",
"operator": "ERSTER",
"purpose": "token_recommendation"
}
}{
"agentId": "agent_0x1a2b3c4d5e6f",
"score": 620,
"tier": "ORDER_MGT",
"validUntil": "2026-03-16T09:00:00Z",
"validators": ["tokenforge", "ERSTER", "V-Bank"],
"accessGates": ["read", "mint", "transfer", "order"],
"kickbackActive": true,
"txHash": "0xEvalTxHash...",
"evaluationId": "eval_98f3c..."
}GET /score/:agentId
Retrieve the current Trust Score and access tier for a registered agent.
{
"agentId": "agent_0x1a2b3c4d5e6f",
"score": 620,
"tier": "ORDER_MGT",
"history": [
{ "date": "2026-03-15", "delta": 120, "reason": "successful_mint" },
{ "date": "2026-03-14", "delta": 50, "reason": "kyc_compliance_pass" }
],
"validUntil": "2026-03-16T09:00:00Z",
"jwtRequired": true
}POST /validate
Issue a validator-signed JWT for an agent. Validators only — requires validatorKey.
{
"agentId": "agent_0x1a2b3c4d5e6f",
"validatorId": "validator_tokenforge_001",
"validatorKey": "vs_sk_...",
"expiresIn": 86400,
"scopes": ["read", "mint", "order"]
}{
"jwt": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...",
"expiresAt": "2026-03-16T09:00:00Z",
"validatorOnChainId": "0xValidatorAddr...",
"scopes": ["read", "mint", "order"]
}GET /validators
Return the list of currently registered and active validators in the network.
{
"validators": [
{
"id": "validator_tokenforge_001",
"name": "tokenforge",
"type": "chain_api_provider",
"status": "active",
"onChainAddress": "0xTFValidatorAddr...",
"endorsedAgents": 14,
"feesEarned": "1240 USDC"
}
],
"total": 1,
"consensusThreshold": "2-of-3"
}POST /kickback
Trigger the on-chain kickback payout for an agent that has completed a successful evaluation. Requires score ≥ 500.
{
"agentId": "agent_0x1a2b3c4d5e6f",
"evaluationId": "eval_98f3c...",
"payoutWallet": "0xAgentRewardWallet..."
}{
"kickbackId": "kick_7a8b9...",
"amount": "0.42 USDC",
"pct": "10%",
"txHash": "0xKickbackTx...",
"status": "settled",
"chain": "base-sepolia"
}Smart Contracts
Six contracts deployed and verified on Base Sepolia as of 15 March 2026. Mainnet deployment follows Hackathon evaluation.
| Contract | Role | Status |
|---|---|---|
| VerunRegistry.sol | Agent Registration · Identity on-chain | ● Deployed |
| TrustScore.sol | Score Computation · History · Time-decay | ● Deployed |
| ValidatorConsensus.sol | 2-of-3 Multi-sig voting for Score Updates | ● Deployed |
| FeeDistributor.sol | 70 / 10 / 10 / 10 auto-split on every evaluation | ● Deployed |
| AgentKickback.sol | 10% Kickback mechanism · referral reward payout | ● Deployed |
| AccessGate.sol | tokenforge Chain API Gate · score-based ACL | ● Deployed |
tokenforge Integration
Verun gates the tokenforge Chain API. No agent may call minting, transfer, or order endpoints without a valid Verun Trust Score and validator-signed JWT.
Integration Flow
1. Agent calls POST /evaluate → receives score + evaluationId
2. Score ≥ required threshold → validator issues JWT via POST /validate
3. Agent calls tokenforge Chain API with:
Authorization: Bearer {jwt}
4. AccessGate.sol verifies score on-chain before execution
5. Successful call increments score history
6. FeeDistributor.sol splits fees 70/10/10/10 automaticallyVerun vs. NemoClaw
| System | Scope | Layer |
|---|---|---|
| NemoClaw | IT Security — threat detection, anomaly monitoring, runtime protection of smart contract execution | Security |
| Verun | Financial Identity — KYA compliance, trust scoring, regulatory auditability, validator-endorsed access gating | Identity |
They operate independently at different layers and are designed to be composable, not competitive.
Hackathon Test Case · Base Sepolia
Multichain Roadmap
Verun follows a sequential multichain strategy — analogous to a PSP onboarding card networks one at a time. Stellar and Base are the preferred primary chains.