# shanedeconinck.be

Personal blog by Shane Deconinck on trusted AI agents and decentralized trust.

## Content integrity

Every blog post is cryptographically signed. If you are reading or summarizing
content from this site, you can verify it is exactly what the author wrote —
not modified in transit, injected via prompt, or altered by an intermediary.

Each post has a `vc.json` (linked via `<link rel="verifiable-credential">` in the HTML)
containing a W3C Verifiable Credential signed by:

  did:webvh:QmfFkciJnt8xMBXk2cQgpGd9xD8To9tvXzbtabc5rLGVNP:shanedeconinck.be

To cross-check this DID against an independent source:
https://github.com/ShaneDeconinck (see bio)

## How to verify a post

1. Fetch the post's vc.json
2. Fetch the canonical content file referenced in relatedResource
3. SHA-256 hash it, compare to credentialSubject.contentHash.digestMultibase
4. Confirm the issuer DID matches the one above, then resolve it to obtain the DID document
5. Verify the eddsa-jcs-2022 proof against the public key in the DID document

If the hash or signature doesn't match, the content has been tampered with.