Follow-ups to the tamper-evident NIP-55 audit chain (the tail-truncation tip MAC already shipped): reject unbounded leading empty-hash rows, add field escaping to the pipe-delimited serialization, and authenticate the entry id / document the caller trust boundary.
This groups several tracked sub-tasks; break out individual PRs as you tackle them.
Follow-ups to the tamper-evident NIP-55 audit chain (the tail-truncation tip MAC already shipped): reject unbounded leading empty-hash rows, add field escaping to the pipe-delimited serialization, and authenticate the entry id / document the caller trust boundary.
This groups several tracked sub-tasks; break out individual PRs as you tackle them.