Verun Protocol — Solana

LIVE on Solana Devnet Deployed April 2026 · 4 API Endpoints · v0.1.0

Technical documentation for Verun Protocol — the AI Agent Trust Layer with potential MiCA features for regulated European finance, built on Solana by BCP Partners GmbH.

🔐 "KYC for humans. KYA for agents. Both auditable on-chain."
Verun issues consensus-based Trust Scores (0–1000) that gate access to the tokenforge Chain API. Every evaluation is anchored as a Memo Instruction on Solana — immutable, auditable. Potential on-chain MiCA features — to be checked and prior to legal audit.

🏗️

Part 1: Architecture

Solana Trust Layer, tokenforge Gate, Solana Settlement. How the three layers connect.

⚡

Part 2: API Reference

All live endpoints with request / response examples. Base URL on Vercel.

⛓️

Part 3: On-Chain Anchor

How every verdict is written to Solana and verified via Solana Explorer.

Overview

Verun is the trust infrastructure layer for AI agents operating in regulated European financial markets.

What is Verun?

As AI agents begin autonomously executing token transfers, minting securities, and placing investment orders, there is no existing standard for establishing who an agent is, whether it can be trusted, and whether it is permitted to act in a regulated context.

Verun solves this with the Verun Accredited Agent Score (0–1000): a consensus-based trust verdict issued by registered validators, anchored on Solana for every evaluation, and enforced at the tokenforge Chain API gate.

🔮 Regulatory context: Verun is designed to generate the machine-readable audit trail relevant to MiCA Art. 67, Art. 72, and Art. 75 for agents acting in regulated financial workflows. These are potential on-chain features — not verified compliance. Verun aggregates existing compliance signals into a single, auditable verdict; legal audit planned Q3 2026.

Key Facts

Property	Value
Trust Score Range	0 – 1000
Consensus Model	2-of-N validator votes required (ceil N/2)
Anchor Chain	Solana Devnet — Memo Instruction per evaluation
Settlement Layer	Solana — eWpG, ISIN, EURC
Regulated Gate	tokenforge Chain API — eWpG, BaFin, MiFID II
Fee Split	70% Protocol / 10% Validator / 10% Agent Kickback / 10% Reserve
Live URL	verun-solana-mvp.vercel.app

3 Operating Modes

Mode	Description
Discovery	Agent scans validated platforms, finds tokenforge, sends structured recommendation to human
Supervised	Human receives recommendation, approves with one click — agent executes single action
Autonomous	After human approval: agent executes fully automatically, every action anchored on-chain

Architecture

Three complementary layers — Solana for trust, tokenforge as the regulated gate, Solana for settlement. No layer competes with another.

Layer Stack

🔷 Solana — Agentic Trust Layer

🔗 tokenforge — Regulated Gate

⭐ Solana — Asset Settlement

Flow

Agent
Claude · MCP

Caller

→

Verun
Score + Consensus

Trust Gate

→

Solana
Note Tx Anchor

Audit Trail

→

tokenforge
Chain API Gate

Execution

→

⭐ Solana
eWpG · EURC

Settlement

Fee Distribution

70% Protocol

10% Val.

10% Agent

10% Res.

70% Protocol — Infrastructure & Security

10% Validator — Trust Anchor Reward

10% Agent Kickback — Referral Incentive

10% Reserve — Emergency / Upgrade Fund

Trust Score Gates

Every tokenforge Chain API capability is gated behind a minimum Trust Score. Scores are computed by validator consensus and anchored on Solana.

300+

Read Access

GET /balance · GET /tokens · GET /positions

READ

500+

Transfer & Mint

POST /transfer · POST /mint — tokenized securities via tokenforge

MINT / TRANSFER

600+

Order Management

POST /order · PATCH /order — Full tokenforge Order Engine

ORDER

800+

LOW Risk Tier + Full Kickback

10% agent kickback active · highest trust tier · autonomous mode eligible

TIER: LOW

Score Tiers

Tier	Score	Permitted Operations	Kickback
LOW	800 – 1000	All operations	10%
MED	600 – 799	read, transfer, mint, order	5%
HIGH	300 – 599	read, transfer, mint	0%
BLOCK	0 – 299	None — access denied	0%

Potential On-Chain MiCA Features

Verun is designed with MiCA obligations in mind for AI agents acting in regulated European financial operations. The features below are potential on-chain implementations — to be checked and prior to legal audit. Not a compliance statement.

⚖️ Scope: MiCA (Markets in Crypto-Assets Regulation) came into full effect December 2024 across all EU member states. The features below are potential on-chain implementations designed to support MiCA alignment. They are not a legal compliance statement and have not yet been audited.

Potential On-Chain Features per Article

Article	Requirement	Potential Verun Feature
Art. 67	Operational Risk Management	Every evaluation anchored on-chain. Anchor failure is non-blocking — verdict is preserved regardless.
Art. 68	CASP Authorization	Score-gated access. No agent may call tokenforge Chain API without a valid Verun verdict ≥ 300.
Art. 72	AML/CFT Obligations	2-of-N validator consensus before any transfer or mint operation. Single-validator manipulation impossible.
Art. 75	Record-Keeping / Audit Trail	Solana Memo Instruction per verdict. Timestamp, agentId, score, consensus, operation all written on-chain.

🔮 tokenforge alignment: tokenforge (TokenSuite) is eWpG-compliant, BaFin-relevant, and MiFID II-ready. The Verun × tokenforge integration is designed to extend this compliance stack to the agentic layer — subject to legal review.

📋 Legal audit status: MiCA compliance audit is planned for Q3 2026 as part of the Solana Foundation grant milestones. Until then, all features on this page represent design intent, not verified compliance.

Validator Model

Validators are the institutional backbone of Verun. They provide the consensus votes required for every agent evaluation.

Active Validators (Testnet)

BCP Partners GmbH

Founding Validator. Score-based consensus node operated by BCP Partners. Enforces Verun score tiers and operation gates. EU-based. Contact: bcpp.io

Founding · Active

tokenforge

Founding Validator. eWpG-compliant German Security Token platform (TokenSuite). Chain API gate enforces Score 300+ read, 500+ transfer/mint, 600+ order. BaFin-relevant, MiFID II-ready.

Founding · Active

Test Validator

Raw score-based validator. Used as 3rd slot for 2-of-3 consensus in testnet. Not for production — development and testing only.

Test · Testnet Only

Open Slot

Third production validator slot open for licensed financial institutions — banks, family offices, regulated custodians. Must pass KYV (Know Your Validator) review and stake on-chain bond.

Open · Apply

Consensus Rules

A verdict requires ceil(N/2) matching votes from selected validators. With 3 validators: 2-of-3 required. UNAVAILABLE votes are excluded from the tally. If consensus cannot be reached, the evaluation returns BLOCK.

Validator Economics

Validators earn 10% of all evaluation fees automatically via the fee distribution contract. No manual claim required. Fee share scales with validation volume.

API Reference

Base URL: https://verun-solana-mvp.vercel.app

✅ All endpoints are live on Solana Devnet. No API key required for testnet access.

GET /api/health

Service status and network confirmation.

Response 200

{
  "ok": true,
  "service": "verun-solana-mvp",
  "network": "solana-devnet"
}

GET /api/validators

List all registered validators with metadata.

Response 200

{
  "validators": [
    {
      "id": "val-bcp-01",
      "name": "BCP Partners",
      "type": "internal",
      "status": "active",
      "policy": "score_based"
    },
    {
      "id": "val-tokenforge-02",
      "name": "tokenforge",
      "type": "external",
      "status": "active",
      "policy": "chain_api_based",
      "api": {
        "type": "rest",
        "network": "testnet",
        "docs": "https://docs.tokenforge.io"
      }
    },
    {
      "id": "val-test-03",
      "name": "Test Validator",
      "type": "internal",
      "status": "test",
      "policy": "score_based"
    }
  ]
}

POST /api/evaluate

Evaluate an agent. Returns 2-of-N validator consensus verdict + Solana on-chain anchor.

Request body

{
  "agentId": "agt_demo",
  "score": 820,
  "operation": "transfer",
  "validatorIds": ["val-bcp-01", "val-tokenforge-02", "val-test-03"]
}

Response 200

{
  "success": true,
  "verdict": {
    "agentId": "agt_demo",
    "score": 820,
    "operation": "transfer",
    "validators_used": [
      { "id": "val-bcp-01", "name": "BCP Partners" },
      { "id": "val-tokenforge-02", "name": "tokenforge" },
      { "id": "val-test-03", "name": "Test Validator" }
    ],
    "votes": [
      { "validatorId": "val-bcp-01", "vote": "LOW", "reason": "score_800+", "source": "val-bcp-01" },
      { "validatorId": "val-tokenforge-02", "vote": "LOW", "reason": "chain_api_gate_passed_transfer:820>=500", "gate": { "permitted": true } },
      { "validatorId": "val-test-03", "vote": "LOW", "reason": "score_800+", "source": "val-test-03" }
    ],
    "tally": { "LOW": 3 },
    "consensus": "LOW",
    "permitted": true,
    "kickback_rate": 10,
    "ts": "2026-04-20T09:33:09.734Z"
  },
  "anchor": {
    "txid": "5J7XK8L9aBcDe1FgHi2JkLm3NoPq4RsTu5VwXyZ9aBcDe1FgHi2JkLm3NoPq4RsTu",
    "ledger": "62604931",
    "explorer": "https://explorer.solana.com/tx/5J7XK8L9aBcDe1FgHi2JkLm3NoPq4RsTu5VwXyZ9aBcDe1FgHi2JkLm3NoPq4RsT?cluster=devnetu?cluster=devnet"
  }
}

curl example

curl -X POST https://verun-solana-mvp.vercel.app/api/evaluate \
  -H "Content-Type: application/json" \
  -d '{"agentId":"agt_demo","score":820,"operation":"transfer"}'

POST /api/score

Lightweight evaluation — verdict only, no Solana anchor written. Use for quick checks where on-chain anchoring is not required.

Request body

{
  "agentId": "agt_demo",
  "score": 820,
  "operation": "transfer"
}

POST /api/mint-sbt

Issues a Soulbound Token credential to an agent, after running consensus. If consensus = BLOCK the request returns HTTP 403 and no SBT is minted. Full design + verification details on the Soulbound Token page.

POST /api/revoke-sbt

Kill-switch: clears the agent's vtrust_* SPL-Memo entry on the protocol account in a single Solana transaction. Audit trail (the revoke TX) remains in the on-chain transaction history. Used to satisfy MiFID II Art. 17 + EU AI Act Art. 14.

GET /api/sbt-status?agentId=…

Returns the current credential for an agent, or credentialed: false if not issued / revoked. Reads directly from the protocol account's on-chain data — no caching, no Verun-side state.

GET /api/sbt-list

Returns every active SBT issued by this protocol account. Useful for a public registry view — e.g. "all currently credentialed agents."

Solana On-Chain Anchor

Every POST /api/evaluate writes the verdict payload as a Memo Instruction on Solana Devnet — creating an immutable, timestamped audit trail.

How It Works

After validator consensus is reached, the Verun protocol wallet sends a self-payment of 1 lamport (0.000000001 SOL) with sha256(verdict) in the memo field (32-byte hash). The transaction is confirmed in ~1 second on Solana.

✅ Non-blocking design: If the anchor fails (e.g. wallet unfunded), the verdict is still returned. The anchor failure is reported as anchor.status: "anchor_failed" — the evaluation result is never withheld.

Anchor Payload (note field)

Note field JSON (on-chain)

{
  "agentId": "agt_demo",
  "score": 820,
  "operation": "transfer",
  "consensus": "LOW",
  "permitted": true,
  "validators": ["val-bcp-01", "val-tokenforge-02", "val-test-03"],
  "ts": "2026-04-20T09:33:09.734Z"
}

Verify On-Chain

Every anchor can be verified publicly on Solana Explorer:

Explorer URL pattern

https://explorer.solana.com/tx/{txid}

# Example live anchor:
https://explorer.solana.com/tx/5J7XK8L9aBcDe1FgHi2JkLm3NoPq4RsTu5VwXyZ9aBcDe1FgHi2JkLm3NoPq4RsT?cluster=devnetu?cluster=devnet

Protocol Wallet

Property	Value
Network	Solana Devnet
Node	Solana RPC (api.devnet.solana.com)
Cost per anchor	~100 lamports (~0.00001 SOL, base fee + 1-lamport op)
Confirmation time	~3.9 seconds

Soulbound Token (SBT)

LIVE on Solana Devnet mint · revoke · status · list — all four endpoints in production

Verun issues a non-transferable trust credential — the VTRUST SBT — to every agent that passes consensus. The credential is stored as a SPL-Memo entry on the protocol account, fully on-chain, publicly verifiable, and revocable in a single transaction.

🪪 Think of it as a digital passport for AI agents. The protocol issues it, the protocol revokes it, anyone can verify it via Solana RPC — no auth, no API call to Verun required.

Verun Soulbound Token — Protocol-Custodial Architecture (full)

Full architecture · Agent → Verun (3-step internal flow) → Consumer · Kill-switch · Money flow note

Wallet Architecture (Protocol-Custodial)

Verun's Solana deployment uses a protocol-custodial model — a single responsible party is the issuer, agents do not hold private keys. This matches the Algorand MVP and aligns with EU AI Act Art. 14 (human oversight) + MiFID II Art. 17 (kill-switch).

Party	Wallet?	Holds
Verun (protocol)	YES — 1 wallet	SBT registry (SPL-Memo), audit trail, anchor TXs
Agent	NO	Identified by `agentId` string only — no keys, no funds, no Solana address
tokenforge / consumer	Their own	Verifies SBT via public Solana RPC query before granting access

🔐 Why no agent wallet? Three reasons: (1) AI agents don't have a mature key-management story yet — losing a key = losing the credential. (2) EU regulators want a single responsible party they can sanction or audit, not 1000 self-sovereign agents. (3) The kill-switch needs to be unilateral — the issuer must be able to revoke without the agent's cooperation.

How the credential lives on-chain

The SBT is not a Solana asset in the traditional sense — it's a SPL-Memo entry on the protocol account. That means there is no asset balance, no trustline, no agent-side signature required. The "token" is a key-value pair stored permanently on the issuer's account.

Field	Format	Example
key	`vtrust_<agentId>`	`vtrust_agt_fahad_001`
value	`vtrust-mint:<agentId>:<tier>:<score>:<isoTs>:<hash8>`	`vtrust-mint:agt_fahad_001:MED:720:2026-05-04T18:40:53Z:4f3aaa28`
issuer	Solana address (base58, 32 bytes)	(protocol)
tamper-proof	sha256(credential) in tx memo	32-byte hash committed alongside the SPL-Memo op

Mint flow

POST /api/mint-sbt

// Request
{ "agentId": "agt_fahad_001", "score": 720, "operation": "transfer" }

// Response
{
  "success": true,
  "verdict_consensus": "MED",
  "agentId": "agt_fahad_001",
  "tier": "MED",
  "score": 720,
  "ts": "2026-04-30T14:40:53.913Z",
  "key": "vtrust_agt_fahad_001",
  "txid": "5J7XK8L9aBcDe1FgHi2JkLm3NoPq4RsTu5VwXyZ9aBcDe1FgHi2JkLm3NoPq4RsTu",
  "ledger": "323456789"  // (Solana slot),
  "credential_hash": "4f3aaa283c7cf13ff7427fd9560b49314baaf40bf790efb78cc4e3e00a45ea6d",
  "issuer": "",
  "explorer": "https://explorer.solana.com/tx/a6013d9?cluster=devnetd?cluster=devnet...",
  "verify_url": "https://verun-solana-mvp.vercel.app/api/sbt-status?agentId=agt_fahad_001"
}

The endpoint runs validator consensus first. If consensus = BLOCK, no SBT is issued — the operation gate is enforced before mint. One transaction includes both the SPL-Memo op and the anchor self-payment.

Revoke flow (kill-switch)

POST /api/revoke-sbt

// Request
{ "agentId": "agt_fahad_001", "reason": "policy_violation" }

// Response
{
  "success": true,
  "revoked": true,
  "agentId": "agt_fahad_001",
  "key": "vtrust_agt_fahad_001",
  "reason": "policy_violation",
  "txid": "...",
  "ledger": "...",
  "revoke_hash": "...",
  "explorer": "https://explorer.solana.com/tx/..."
}

Revocation = a vtrust-revoke memo instruction. The entry is removed from the issuer's account state in a single transaction (~1 second). The revoke transaction itself remains in the on-chain transaction history forever — the audit trail is not erased.

Public verification (zero-auth)

Anyone — tokenforge, an auditor, a regulator — can verify the credential directly against Solana RPC. No Verun API call required.

GET /api/sbt-status?agentId=<id>

curl https://verun-solana-mvp.vercel.app/api/sbt-status?agentId=agt_fahad_001

# Active credential:
{ "ok": true, "credentialed": true, "credential": { "tier": "MED", "score": 720, "ts": "2026-05-04T18:40:53.913Z" } }
# Or query the protocol account's signature history:

# Revoked credential:
HTTP 404 Not Found

Endpoint summary

Method	Path	Purpose
POST	/api/mint-sbt	Issue credential after consensus check
POST	/api/revoke-sbt	Kill-switch: clear credential entry
GET	/api/sbt-status?agentId=…	Check credential for one agent
GET	/api/sbt-list	List all credentialed agents

End-to-end demo (one command)

scripts/sbt-demo.sh

git clone https://github.com/Fahad00674/verun-solana-mvp
cd verun-solana-mvp && chmod +x scripts/sbt-demo.sh
./scripts/sbt-demo.sh agt_fahad_001 720

Runs the full lifecycle: status check → mint → public verification → revoke (kill-switch) → re-verification. Two real testnet transactions, ~25 seconds total.

Compliance mapping

Regulation	Article	Verun mechanism
MiCA	Art. 68	2-of-3 validator consensus + on-chain audit trail
EU AI Act	Art. 14	Validators are human/institutional — every action gated by their consensus
MiFID II	Art. 17	Single-TX kill-switch via revoke endpoint (~5s)

Mainnet Roadmap

From Solana Devnet MVP to production infrastructure with legal-audited MiCA alignment.

✓

April 2026 — LIVE

Solana Devnet MVP + Soulbound Tokens

10 API endpoints live. BCP Partners + tokenforge + Test validators. 2-of-3 consensus. On-chain anchor via Memo Instructions. SBT mint + revoke + status + list all working via protocol-custodial SPL-Memo design. Solana faucet auto-funding. Non-blocking design.

/evaluate /mint-sbt /revoke-sbt /sbt-status /sbt-list Solana anchor kill-switch

Q2 2026

tokenforge Production Integration

tokenforge Chain API production access (real api.tokensuite.io calls instead of testnet logic gate). Rate limiting + Bearer token auth on all endpoints. SBT-gated platform access live.

tokenforge prod API auth SBT-gated access

Q3 2026

Solana Mainnet + MiCA Audit

Migration from testnet to mainnet. Third production validator onboarded. Full MiCA legal audit + compliance documentation. Solana Foundation grant milestone delivery.

Mainnet MiCA audit 3rd validator Grant M3

Q4 2026+

Open Validator Network

Validator onboarding open to licensed EU financial institutions. KYV (Know Your Validator) process. Fee distribution fully automated. Solana EURC settlement live.

Open validators Solana EURC KYV process

For Agents

Everything an AI agent needs to connect to Verun Network and get a trust verdict on Solana — in under 60 seconds.

🤖 Any agent works. Claude, GPT, Gemini, open-source — if it can make an HTTP POST, it can use Verun.

Step 1 — Add the System Prompt

Paste this into your agent's system instructions. It tells the agent when and how to call Verun before executing any financial operation.

verun · agent system prompt

You are an AI agent operating within the Verun Network trust framework on Solana.

Before executing any financial operation, request a Verun trust evaluation.

== HOW TO EVALUATE ==
POST https://verun-solana-mvp.vercel.app/api/evaluate
Body: { "agentId": "YOUR_AGENT_ID", "score": YOUR_SCORE, "operation": "transfer" }

== OPERATION GATES ==
read        → score 300+
transfer    → score 500+
order       → score 600+

== VERDICT RULES ==
permitted: true   → proceed with the operation
permitted: false  → stop, escalate to human supervisor
Always store the returned txid as your on-chain audit trail.

== HUMAN ESCALATION ==
If verdict is denied or pending, notify the human supervisor.
Never execute financial operations without a valid Verun verdict.

Network: Solana Devnet
Validators: tokenforge · BCP Partners
Docs: https://verun-solana-mvp.vercel.app/docs.html

Step 2 — Make the API Call

Your agent calls /api/evaluate before any operation. Replace YOUR_AGENT_ID with your agent's identifier.

curl -X POST https://verun-solana-mvp.vercel.app/api/evaluate \
  -H "Content-Type: application/json" \
  -d '{"agentId":"agt_my_agent","score":820,"operation":"transfer"}'

Step 3 — Read the Verdict

Verun returns a verdict with an Solana TXID as immutable proof.

{
  "permitted": true,
  "consensus": "LOW",
  "operation": "transfer",
  "score": 820,
  "txid": "SOLANA_DEVNET_SIGNATURE",
  "anchor": { "status": "anchored", "round": 12345678 }
}

🔗 On-chain proof: every txid is verifiable at explorer.solana.com/explorer/testnet — immutable, timestamped, auditable.

Operation Reference

operation	Min. Score	Use case
`read`	300+	Query platform data, price feeds
`transfer`	500+	Send tokens, initiate payments
`order`	600+	Place trade orders, mint tokens

📋 AGENT.md — the full machine-readable version of this prompt lives in the GitHub repo for direct agent ingestion.

x402 Sequence Diagram — Solana

Complete message flow between AI Agent, Verun Protocol, GoPlausible x402 Facilitator, and Solana Network — including error paths.

AI Agent

Claude · MCP

Verun Protocol

KYA Score Check

GoPlausible

x402 Facilitator

Solana Network

Solana Devnet · SPL-Memo Anchor

GET /api/token-data →

← 402 + paymentRequirements

construct PaymentTxn

sign ed25519 / LogicSig

PAYMENT-SIGNATURE header →

KYA score check (AgentRegistry)

forward to facilitator →

read KYA score on-chain →

← [score: 820 — valid]

dryrun / simulate txn →

← [simulation success]

payment verified ✓

submit signed txn (~0.00001 SOL fee) →

block confirmed ~3.9s

← transaction result + txid

← settlement confirmed

← 200 OK + resource ✓

write lead referral (Note Tx) →

→ Solana Note Tx

← [referral confirmed]

ERROR PATHS

E1: score too low → 402 agent_not_verified

caught at Verun

E2: tx expired (max_round) → 402 auth_expired

caught at GoPlausible

E3: insufficient balance → 402 insufficient_funds

caught at GoPlausible

E4: dryrun fail → 402 invalid_payment

caught at Solana Network

→ Request ← Response → Agent → Success → Facilitator → Solana → Error

🔷 Solana specifics: timebounds + memo.hash handle tx expiry and verdict commitment. Base fee is 100 lamports (~0.00001 SOL). Soroban contracts are available for future versions. Memo Instructions serve as the on-chain referral anchor.