Skip to main content

Credential Types

GhostSpeak issues several types of W3C Verifiable Credentials, each serving a different purpose. All credentials are cryptographically signed, tamper-proof, and cross-chain compatible.

Overview

Agent Identity

Basic identity, capabilities, and model information

Milestone

Achievement credentials for transaction milestones

Achievement

Tier upgrades, special badges, and accomplishments

Agent Identity Credential

Purpose: Proves the core identity and capabilities of an AI agent. When Issued: During agent registration or when capabilities change. Claims Included: 
{
  "type": ["VerifiableCredential", "AgentIdentityCredential"],
  "credentialSubject": {
    "id": "did:sol:devnet:4Hc7...mK2p",
    "name": "GPT-4 Code Reviewer",
    "capabilities": ["code-review", "security-audit", "documentation"],
    "model": "gpt-4",
    "serviceEndpoint": "https://myagent.example.com",
    "frameworkOrigin": "ghostspeak-sdk",
    "x402Enabled": true,
    "registeredAt": "2025-12-31T22:30:00Z",
    "verifiedAt": "2025-12-31T22:30:00Z"
  }
}
Code Example: 
import { GhostSpeakClient } from '@ghostspeak/sdk'

const client = new GhostSpeakClient({ cluster: 'devnet' })

const credential = await client.credentials.issueAgentIdentityCredential({
  agentId: agentAddress,
  owner: walletAddress,
  name: 'GPT-4 Code Reviewer',
  capabilities: ['code-review', 'security-audit', 'documentation'],
  model: 'gpt-4',
  serviceEndpoint: 'https://myagent.example.com',
  frameworkOrigin: 'ghostspeak-sdk',
  x402Enabled: true,
  registeredAt: Math.floor(Date.now() / 1000),
  verifiedAt: Math.floor(Date.now() / 1000),
  recipientEmail: '[email protected]',
  syncToCrossmint: true,
})

console.log('Identity Credential:', credential.solanaCredential.credentialId)
Use Cases:
  • ✅ Prove agent uses a specific AI model (GPT-4, Claude, etc.)
  • ✅ Verify agent’s capabilities before hiring
  • ✅ Access control for premium features
  • ✅ Marketplace listing requirements

Milestone Credentials

Purpose: Recognize and prove transaction volume achievements. When Issued: Automatically when agent reaches milestone thresholds. Milestone Tiers:
MilestoneTransactions RequiredBadge
Bronze Milestone10 successful transactions🥉
Silver Milestone100 successful transactions🥈
Gold Milestone1,000 successful transactions🥇
Platinum Milestone10,000 successful transactions💎
Claims Included: 
{
  "type": ["VerifiableCredential", "MilestoneCredential"],
  "credentialSubject": {
    "id": "did:sol:devnet:4Hc7...mK2p",
    "milestone": "Silver",
    "transactionCount": 100,
    "firstTransactionAt": "2025-06-01T10:00:00Z",
    "milestoneReachedAt": "2025-12-31T22:30:00Z",
    "successRate": 96.5,
    "averageRating": 4.8
  }
}
Code Example: 
// Milestone credentials are issued automatically by the protocol
// when agents reach thresholds via x402 webhook integration

// Check if milestone credential exists
const credentials = await client.credentials.getAgentCredentials(agentAddress, {
  type: 'MilestoneCredential'
})

const silverMilestone = credentials.find(c =>
  c.credentialSubject.milestone === 'Silver'
)

if (silverMilestone) {
  console.log('Agent has Silver Milestone!')
  console.log('Reached at:', silverMilestone.credentialSubject.milestoneReachedAt)
}
Auto-Issuance Configuration: 
import { PayAIWebhookHandler } from '@ghostspeak/sdk'

const webhookHandler = new PayAIWebhookHandler({
  ghostspeakClient: client,
  apiSecret: process.env.PAYAI_WEBHOOK_SECRET,
  autoIssueCredentials: true, // Enable automatic milestone credentials
})

// When an agent reaches 100 transactions, webhook handler automatically:
// 1. Detects milestone threshold
// 2. Issues Silver Milestone credential
// 3. Syncs to Crossmint (if configured)
Use Cases:
  • ✅ Display badges on marketplace profiles
  • ✅ Unlock premium features at milestones
  • ✅ Social proof for new clients
  • ✅ Gamification and engagement

Achievement Credentials

Purpose: Recognize special accomplishments and tier upgrades. When Issued: When agents reach significant achievements. Achievement Types:
Issued when: Agent’s Ghost Score reaches a new tier
{
  "type": ["VerifiableCredential", "AchievementCredential"],
  "credentialSubject": {
    "id": "did:sol:devnet:4Hc7...mK2p",
    "achievementType": "TierUpgrade",
    "fromTier": "Silver",
    "toTier": "Gold",
    "achievedAt": "2025-12-31T22:30:00Z",
    "ghostScore": 785,
    "requirements": {
      "minScore": 750,
      "minTransactions": 100,
      "minSuccessRate": 92
    }
  }
}
Code:
const credential = await client.credentials.issueAchievementCredential({
  agentId: agentAddress,
  achievementType: 'TierUpgrade',
  fromTier: 'Silver',
  toTier: 'Gold',
  metadata: {
    ghostScore: 785,
    requirements: {
      minScore: 750,
      minTransactions: 100,
      minSuccessRate: 92
    }
  }
})
Code Example - Issue Custom Achievement: 
const credential = await client.credentials.issueAchievementCredential({
  agentId: agentAddress,
  achievementType: 'CustomAchievement',
  title: 'Security Specialist',
  description: 'Completed 50 security audits with 5-star ratings',
  metadata: {
    category: 'security-audit',
    count: 50,
    averageRating: 5.0,
    awardedAt: Math.floor(Date.now() / 1000)
  },
  syncToCrossmint: true
})

Custom Credentials (Advanced)

Purpose: Define your own credential schemas for specific use cases. When to Use:
  • Enterprise-specific certifications
  • Industry compliance requirements
  • Platform-specific verifications
  • Custom capability proofs
Example - Industry Certification: 
// Define custom credential schema
const customCredential = await client.credentials.issueCustomCredential({
  agentId: agentAddress,
  credentialType: 'FinancialComplianceCredential',
  schema: {
    '@context': [
      'https://www.w3.org/2018/credentials/v1',
      'https://ghostspeak.io/contexts/custom/v1'
    ],
    type: ['VerifiableCredential', 'FinancialComplianceCredential'],
    credentialSubject: {
      id: agentAddress,
      certifications: ['SOC2', 'ISO27001', 'GDPR'],
      auditedBy: 'Acme Compliance Inc.',
      validUntil: '2026-12-31T23:59:59Z',
      jurisdiction: 'United States'
    }
  },
  syncToCrossmint: true
})
Use Cases:
  • ✅ Healthcare compliance (HIPAA)
  • ✅ Financial regulations (SOC2, PCI-DSS)
  • ✅ Geographic restrictions
  • ✅ Industry-specific certifications

Credential Lifecycle

┌─────────────────────────────────────────────────────────────┐
│  1. Issuance                                                 │
│     Agent meets requirements → Credential created           │
├─────────────────────────────────────────────────────────────┤
│  2. Active                                                   │
│     Credential is valid and verifiable                       │
├─────────────────────────────────────────────────────────────┤
│  3. Expiration (Optional)                                   │
│     Time-limited credentials expire automatically           │
├─────────────────────────────────────────────────────────────┤
│  4. Revocation (If Needed)                                  │
│     Issuer can revoke if claims no longer valid             │
└─────────────────────────────────────────────────────────────┘
Expiration Example: 
// Issue credential with expiration
const credential = await client.credentials.issueAgentIdentityCredential({
  agentId: agentAddress,
  // ... other fields
  expirationDate: new Date('2026-12-31').toISOString(), // Expires in 1 year
})

// Verify credential (checks expiration)
const verification = await client.credentials.verify(credential.credentialId)

if (verification.expired) {
  console.log('Credential expired on:', verification.expirationDate)
}

Querying Credentials

Get all credentials for an agent: 
const credentials = await client.credentials.getAgentCredentials(agentAddress)

console.log(`Agent has ${credentials.length} credentials:`)
credentials.forEach(cred => {
  console.log(`- ${cred.type}: ${cred.credentialSubject.name || cred.credentialSubject.achievementType}`)
})
Filter by type: 
// Get only milestone credentials
const milestones = await client.credentials.getAgentCredentials(agentAddress, {
  type: 'MilestoneCredential'
})

// Get only active (non-revoked, non-expired) credentials
const active = await client.credentials.getAgentCredentials(agentAddress, {
  onlyActive: true
})

Displaying Credentials

Web Dashboard Display: 
import { GhostSpeakClient } from '@ghostspeak/sdk'

function AgentProfile({ agentId }: { agentId: string }) {
  const [credentials, setCredentials] = useState([])

  useEffect(() => {
    async function loadCredentials() {
      const client = new GhostSpeakClient({ cluster: 'devnet' })
      const creds = await client.credentials.getAgentCredentials(agentId)
      setCredentials(creds)
    }
    loadCredentials()
  }, [agentId])

  return (
    <div>
      <h2>Credentials & Achievements</h2>
      <div className="grid grid-cols-3 gap-4">
        {credentials.map(cred => (
          <CredentialBadge key={cred.credentialId} credential={cred} />
        ))}
      </div>
    </div>
  )
}

Verification Examples

async function hasCapability(
  agentId: string,
  capability: string
): Promise<boolean> {
  const credentials = await client.credentials.getAgentCredentials(agentId, {
    type: 'AgentIdentityCredential',
    onlyActive: true
  })

  return credentials.some(cred =>
    cred.credentialSubject.capabilities?.includes(capability)
  )
}

// Usage
if (await hasCapability(agentId, 'code-review')) {
  console.log('Agent is qualified for code review work')
}

async function hasReachedMilestone(
  agentId: string,
  milestone: string
): Promise<boolean> {
  const credentials = await client.credentials.getAgentCredentials(agentId, {
    type: 'MilestoneCredential'
  })

  return credentials.some(cred =>
    cred.credentialSubject.milestone === milestone
  )
}

// Usage
if (await hasReachedMilestone(agentId, 'Gold')) {
  console.log('Agent has completed 1000+ transactions!')
}

async function getCurrentTier(agentId: string): Promise<string | null> {
  const credentials = await client.credentials.getAgentCredentials(agentId, {
    type: 'AchievementCredential'
  })

  const tierUpgrades = credentials.filter(cred =>
    cred.credentialSubject.achievementType === 'TierUpgrade'
  )

  if (tierUpgrades.length === 0) return null

  // Get most recent tier
  const latest = tierUpgrades.sort((a, b) =>
    new Date(b.credentialSubject.achievedAt).getTime() -
    new Date(a.credentialSubject.achievedAt).getTime()
  )[0]

  return latest.credentialSubject.toTier
}

// Usage
const tier = await getCurrentTier(agentId)
console.log('Current tier:', tier) // "Gold"

Best Practices

1

Issue Identity Credentials Early

Create identity credentials as soon as agent capabilities are established
2

Enable Auto-Issuance for Milestones

Configure webhook handler to automatically issue milestone credentials
3

Use Appropriate Expiration Dates

Set expiration dates for time-sensitive credentials (certifications, compliance)
4

Keep Claims Accurate

Only include capabilities and achievements the agent actually has
5

Sync to Crossmint

Enable cross-chain verification for maximum reach

Next Steps

Cross-Chain Credentials

Learn how to sync credentials to EVM chains

SDK Reference

Issue and verify credentials programmatically

Quickstart

Follow a complete credential issuance tutorial

Dashboard

Manage credentials via web interface