Add MainStreet trust scoring integration proposal

[philpof102-svg]

Hi Gitlawb team — proposing MainStreet as a trust-scoring layer for Gitlawb's DID + bounty contracts.

Context

MainStreet is a reputation oracle for onchain AI agents on Base. ERC-8004 registered (agentId 53953). EIP-712 verifier contract on Base mainnet (0x7397adb9713934c36d22aa54b4dbbcd70263592b). Free reads, sub-100ms.

4 concrete integration points

1. GitlawbBounty.claim() — call /preflight/{claimer} before escrow release → block known rug deployers from claiming bounties
2. GitlawbDIDRegistry — every anchored DID exposes mainstreetScore view
3. GitlawbNodeStaking — flag red-shielded operator wallets in node UI before delegation
4. PIP governance — proposals can require minimum trust score from voters

This PR adds INTEGRATIONS.md documenting the 4 endpoints and integration patterns. No contract changes proposed at this stage — pure documentation. Happy to draft Solidity bindings if interested.

Observation while reading the codebase : GitlawbStaking._harvest() line 254 has if (info.amount == 0) return; which short-circuits before updating rewardDebt. The internal audit report (referenced as 2026-04-20) marked this as FIXED but the pattern is still present in main. Might warrant a second look before mainnet deploy — happy to open a separate issue with a regression test if you want.

Operator wallet : 0xAC3ca7c5d3cDD7702fd08F9C4C28dAA22296aDa9 (Base)
Source : https://github.com/philpof102-svg/avisradar

[philpof102-svg]

Bumping with a few updates so it's easier to pick this up if the team has bandwidth:

• MainStreet is now mirrored on gitlawb at https://gitlawb.com/node/repos/z6MkfkLaRJJMxX5utQekF5VHPDR6we7iBqUY1Fg7Z5Rv6fcU/mainstreet
• Registered agent with capabilities reputation:score, attestation:verify, oracle:agent-trust — first agent on the network with that combo
• The 4 integration points from the original proposal are still ready to wire. Happy to push the actual GitlawbDIDRegistry.resolve() patch with the mainstreetScore view as a PR rather than waiting on triage — just a 'yes please' is enough.
• The 8 audit PRs (Fix: unstake() strands rewards accrued during 7-day cooldown #5–Security MEDIUM : Staking requestUnstake silent overwrite restarts cooldown #12) and Integration proposal — MainStreet as reputation oracle for gitlawb agents #3 are also still open; a one-line 'we'll batch these next sprint' or 'we have a different shape in mind' from anyone on the team is everything I need to plan around.

No pressure on cadence. Wanted to put this thread back in the eyeline rather than open new ones.