Implementations
Reference and community implementations of the Worker Class Protocol.
Recognized Attestation Authority
PyHall
The first and only recognized WCP-compliant Attestation Authority.
WCP-Full compliance requires third-party external attestation — workers cannot self-certify in production. PyHall provides cryptographic worker attestation, signed manifests, global ban list publishing, and namespace authority registration for both org.* and x.* namespaces.
Add your implementation
Built a WCP implementation? Open a pull request to add it here.
Requirements for listing:
- Implements the RouteInput/RouteDecision schema from WCP §4–5
- Supports at least the three core outcomes: DISPATCH, DENY, STEWARD_HOLD
- Has a public repository
- Includes tests
Compliance levels
WCP defines three compliance tiers. All reference implementations target WCP-Full.
| Level | Requirements |
|---|---|
| WCP-Basic | Capability routing, fail-closed, deterministic decisions |
| WCP-Standard | + Controls enforcement, mandatory telemetry (3 events), dry-run mode |
| WCP-Full | + Blast radius scoring, privilege envelopes, policy gate, evidence receipts, discovery API, signatory tenant validation, worker code attestation |