Native Attestation

• Entity ID: ent-20260409-eaad8d36f26d
• Type: service
• Scope: shared
• Status: active
• Aliases: native attestation, cch hash, binary attestation

Description

DRM-like mechanism where cch=00000 placeholder in HTTP requests is overwritten by Bun's Zig HTTP stack with a computed hash validating the request came from the official binary. Anthropic acquired Bun partly to own this Zig-native capability.

Key claims

• Bun acquired partly to own native attestation in Zig
• Bun HMAC signing is a silent binary-attestation moat
• cch=00000 Bun sentinel scans the entire HTTP request body
• Bun fork mutates request body between JSON serialize and TLS encrypt, breaking prompt cache
• Bun native HTTP stack overwrites a 5-byte JS placeholder with an HMAC hash

Relations

• Anti-Distillation Defenses --[contains]--> Native Attestation
• Bun-Level Zig HMAC Request Signing --[related_to]--> Native Attestation

Sources

src-20260409-2e2e605ea18f