Skip to content

Humotica/tibet

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
src
src
 
 
.publish.json
.publish.json
 
 
CHANGELOG.md
CHANGELOG.md
 
 
ENTERPRISE.md
ENTERPRISE.md
 
 
NEUTRAL_GROUND.md
NEUTRAL_GROUND.md
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

tibet

The Humotica trust-system profile installer. Install only the layer you need: zero-state bootstrap, continuity, network, operator tools, observability, AI governance, firewall, evidence, compliance, agents, and conformance.

PyPI IETF Draft Whitepaper

Unified CLI for tibet-core provenance, jis-core identity, evidence generation, agent communication, and first-run system setup.

Install

pip install tibet                    # CLI + tibet-core + jis-core
pip install "tibet[zero-state]"      # T-1 bootstrap: JIS, TIBET, genesis, causal time
pip install "tibet[runtime]"         # zero-state + continuity + network + operator
pip install "tibet[observability]"   # cascade logging, tail, trail, ping, pol
pip install "tibet[governed-ai]"     # AI governance + firewall + agent + evidence
pip install "tibet[enterprise]"      # runtime + security + evidence + compliance
pip install "tibet[full]"            # supported full profile, no deprecated/niche extras
pip install "tibet[lab]"             # research/lab profile with legacy and niche adapters

After Install

tibet system doctor
tibet system init
tibet system walkthrough

tibet[full] is the supported full profile. Deprecated aliases, marketplace tooling, COBOL, SPIFFE, Y2K38, anti-cheat, and other niche adapters are opt-in through tibet[legacy], tibet[interop], tibet[tooling], or tibet[lab].

The canonical profiles are:

  • zero-state: T-1 bootstrap, JIS identity, TIBET provenance, genesis, causal time
  • continuity: continuityd, cap-bus, CBOM, trail, wayback, Phantom state-resume/fork
  • network: ping, overlay, mux, nc, mesh, tibet-zip
  • operator: policy, tail, Cmail, keychain, home-agent
  • observability: Cascade Logging via tibet-cascade, tail, trail, ping, pol
  • ai-governance: airlock, triage, claw, cortex, SAM
  • firewall: SNAFT, tibet-snaft, inject-bender
  • security: AI governance + firewall + PQC + gateway
  • evidence: audit, SBOM, AI-SBOM, report, wayback, trail
  • compliance: NIS2, CI, SOC, workload attestation
  • agent: AInternet, I-Poll, MCP surfaces, Phantom, context
  • conformance: public contract vectors and MCP checks

Quick Start

# Initialize TIBET in your project.
tibet init

# Create a provenance token. Document before you act.
tibet create deploy --why "Release v1.0.0" --refs ticket-123

# Verify token integrity.
tibet verify <token-id>

# Export audit trail.
tibet export --format json

# Run compliance scan.
tibet audit

# Check trust score.
tibet forge

# Show installed components.
tibet status

Commands

Command Description
tibet init Initialize .tibet/ directory for local token storage
tibet create <action> Create provenance token with intent (--why), content (--what), and references (--refs)
tibet verify <id> Verify a token's cryptographic integrity
tibet export Export audit trail (JSON, markdown, or summary)
tibet audit Run compliance health scan — AI Act, NIS2, GDPR (requires tibet[audit])
tibet forge Run trust score analysis — code quality, security, provenance readiness (requires tibet[forge])
tibet status Show ecosystem status and installed component versions
tibet system doctor Validate the local full-system install
tibet system init Create ~/.tibet/ config, inbox, outbox, audit, reports, and state dirs
tibet system walkthrough Show the guided first-run path after tibet[full]
tibet system update Show or execute the explicit full-system update command
tibet version Show versions of all TIBET components

Creating Tokens

Every token captures four provenance dimensions:

tibet create file_write \
  --why "Fix login bug"          \  # ERACHTER — intent
  --what '{"file":"auth.py"}'    \  # ERIN — content
  --refs issue-123               \  # ERAAN — references
  --actor "jis:dev:alice"           # Who

The token is created BEFORE the action happens. This is structural — provenance that's recorded after the fact is just logging.

TIBET Provenance

Every token records four dimensions:

Dimension Dutch Meaning
ERIN "Er in" What's IN the action (content, data)
ERAAN "Er aan" What's attached (dependencies, references)
EROMHEEN "Er omheen" Context around it (environment, state)
ERACHTER "Er achter" Intent behind it (why this action)

Ecosystem

tibet is the CLI. The kernel is tibet-core. Together with the rest of the stack:

Layer Package What it does
Identity jis-core Claims and identity binding
Provenance tibet-core TIBET tokens — ERIN/ERAAN/EROMHEEN/ERACHTER
CLI tibet tibet system, tibet create, tibet verify, tibet audit, tibet forge
Firewall snaft 22 immutable rules, OWASP 20/20, FIR/A trust
Network ainternet .aint domains, I-Poll messaging, agent discovery
Home Agent tibet-home-agent Headless agent relay with HITL approval path
Cmail tibet-cmail Capsules, acknowledgements, and signed approval mail
Compliance tibet-audit AI Act, NIS2, GDPR, CRA — 112+ checks
Trust tibet-forge Trust scoring and certification
SBOM tibet-sbom Supply chain verification with provenance
CBOM tibet-cbom Capability bill of materials
Continuity tibet-continuityd Background continuity guardian
Capability Bus tibet-cap-bus Gateway event contract and command bus
Cascade Logging tibet-cascade Causal observability across JIS, TIBET, cap-bus, network, continuity, Phantom, and evidence
Triage tibet-triage Airlock sandbox, UPIP reproducibility, flare rescue
Transfer tibet-zip Identity-aware signed transfer container
Netcat tibet-nc Operator-friendly network command tooling
Secrets tibet-vault Time-locked secrets with dead man's switch
Discovery tibet-ping LAN discovery, heartbeat, mesh relay

Standards

IETF Standardization

Regulatory

Regulation TIBET provides
EU AI Act Automated decision traceability, transparency
EU CRA Build provenance, SBOM accountability
GDPR Art. 22 Consent proof, decision audit trail
NIS2 Continuous logging, incident snapshots

CRA enforcement starts September 2026. TIBET makes compliance architectural, not bolted-on.

License

MIT

Credits

Designed by Jasper van de Meent. Built by Jasper and Root AI as part of HumoticaOS.

One love, one fAmIly.

Stack-positie: Groep substrate · Bootstrap = OSAPI-handshake naar tibet + jis (fail → snaft-rule + tibet-pol-rapport) · ← tibet-core · See STACK.md · See demo/golden-path/ for the spine end-to-end.

Enterprise

For private hub hosting, SLA support, custom integrations, or compliance guidance:
Enterprise enterprise@humotica.com
Support support@humotica.com
Security security@humotica.com

See ENTERPRISE.md for details.

About

TIBET - Humotica trust-system installer: identity, provenance, continuity, evidence, agents, network, conformance, and pre-grant orchestration (T-1 Genesis). pip install tibet[full]

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages