CRI-CORE — Deterministic structural enforcement kernel for governed state transitions.
Project description
title: "CRI-CORE — Deterministic Enforcement Kernel" filetype: "documentation" type: "repository-overview" domain: "enforcement" version: "0.11.0" doi: "10.5281/zenodo.19080238" status: "Active" created: "2026-02-19" updated: "2026-03-31"
author: name: "Shawn C. Wright" email: "swright@waveframelabs.org" orcid: "https://orcid.org/0009-0006-6043-9295"
maintainer: name: "Waveframe Labs" url: "https://waveframelabs.org"
license: "Apache-2.0"
copyright: holder: "Waveframe Labs" year: "2026"
ai_assisted: "partial"
dependencies: []
anchors:
- "CRI-CORE v0.11.0"
- "Deterministic Enforcement Kernel"
CRI-CORE
CRI-CORE v0.11.0 — Deterministic Enforcement Kernel
Concept DOI: https://doi.org/10.5281/zenodo.19080238
CRI-CORE is a deterministic structural enforcement engine for governed state transitions.
It evaluates a run directory against explicit structural, authority, integrity, binding, seal, and publication constraints.
The kernel does not interpret meaning.
It evaluates structure and invariants only.
CRI-CORE is a deterministic execution gate for state mutations in AI-assisted and automated systems.
Most systems detect or log issues after execution.
CRI-CORE enforces a decision boundary before a state mutation is allowed to occur.
What It Does
CRI-CORE sits directly at the execution boundary — the point where a system attempts to act.
It evaluates a run artifact representing a proposed state mutation and returns a single decision:
- allow execution
- block execution
No warnings.
No after-the-fact auditing.
Installation
Install from PyPI:
pip install cricore
Requires Python 3.10+.
Minimal Usage
The supported public entrypoint is:
from cricore import evaluate
Example:
from cricore import evaluate
result = evaluate(
run_path=".",
run_context={
"identities": {},
"integrity": {},
"publication": {},
},
)
The function returns an EvaluationResult:
result.commit_allowed # bool
result.failed_stages # List[str]
result.summary # str
Typical usage:
if result.commit_allowed:
execute()
else:
block(result.summary)
Runtime Input Contracts
CRI-CORE evaluates deterministic run artifacts and explicit mutation requests.
The kernel relies on two structured input contracts:
- Run artifact contract (run directory structure)
- Mutation proposal object (canonical proposal envelope)
Proposal objects are validated against the canonical proposal schema before enforcement.
Compiled governance contracts may be used by external systems to construct proposal objects.
Proposals reference the governing contract using:
contract.id
contract.version
contract.hash
During enforcement the kernel verifies that the proposal's contract hash matches the compiled contract artifact used by the run.
The kernel does not interpret governance policy semantics.
It verifies only deterministic contract identity and structural alignment between proposal and compiled contract artifacts.
run_context supplies execution-time identity, integrity references, and publication context.
It is treated as declarative input and is not resolved or validated against external systems.
Core Model
Exploration (high velocity, non-deterministic)
→
Deterministic structural gate (CRI-CORE)
→
Governed state mutation
The kernel ensures that only structurally valid and cryptographically sealed runs are permitted to mutate governed state.
Run Lifecycle
CRI-CORE operates on sealed run artifacts:
generate → finalize → evaluate → (optionally) commit
Once finalized, a run is immutable.
Any modification invalidates the seal and will cause enforcement failure.
Enforcement Pipeline (v0.11.0)
Canonical stage order:
- run-structure
- structure-contract-version-gate
- structure-contract-hash-gate
- independence
- integrity
- integrity-finalization
- publication
- publication-commit
The pipeline is deterministic and ordered.
The contract hash gate verifies that mutation proposals are bound to the exact compiled governance contract used during enforcement.
Contract-Version Behavior
CRI-CORE enforces versioned structural guarantees:
For contract_version < 0.3.0:
- Structural validation
- Independence enforcement
- Integrity manifest verification
For contract_version ≥ 0.3.0:
- binding.json required
- SEAL.json required
- Strict cryptographic seal validation
- Immutable artifact boundary enforcement
Enforcement meaning is isolated per declared contract version.
Historical runs are validated under their declared version.
Independence Model
The kernel enforces structural role separation:
- Explicit actor identities
- Optional declared role requirements (
required_roles) - Strict prohibition on multi-role identity when roles are required
- Explicit override pathway (recorded, never implicit)
The kernel evaluates identity structure only.
It does not evaluate competence or review quality.
Cryptographic Guarantees
Finalized runs must include:
- Deterministic SHA256 manifest
- Payload archive
- Structural binding artifact
- Deterministic SEAL.json
The seal covers:
- All run files (deterministic ordering)
- Binding artifact
- Manifest hash
- Payload hash
Any mutation changes the seal hash.
The seal provides tamper evidence.
It is not a signature.
Atomic Commit Semantics
CRI-CORE does not mutate state.
It emits a deterministic authorization decision:
commit_allowed = publication_commit_stage.passed
The caller decides whether to mutate.
The kernel centralizes the commit decision.
It does not enforce it outside its invocation boundary.
Runtime Packaging Guarantees
CRI-CORE is distributed as a self-contained runtime.
- Schema artifacts are embedded within the package (
cricore.schema) - No dependency on repository-relative paths
- Deterministic behavior across local, CI, and installed environments
All validation logic operates against packaged artifacts, not filesystem assumptions.
What CRI-CORE Does Not Do
CRI-CORE does not:
- Interpret lifecycle semantics
- Judge correctness of domain objects
- Evaluate epistemic sufficiency
- Enforce governance policy meaning
- Perform distributed consensus
- Prevent bypass outside invocation
It is a deterministic structural gate only.
Design Principles
- Deterministic evaluation
- No network calls
- No model calls
- No semantic inference
- Opaque reference handling
- Versioned enforcement meaning
- Strict immutability after finalization
Intended Use
CRI-CORE is designed to sit beneath:
- Workflow engines
- CI pipelines
- Agent execution runtimes
- Domain governance systems
It provides:
- Structural admissibility validation
- Cryptographic immutability guarantees
- Centralized commit authorization
It is domain-agnostic.
Citation
If you use CRI-CORE in your work, please cite the concept DOI:
CRI-CORE — Deterministic Enforcement Kernel
Wright, Shawn C.; Waveframe Labs (2026)
https://doi.org/10.5281/zenodo.19080238
BibTeX
@software{cricore_concept_2026,
title = {CRI-CORE: Deterministic Enforcement Kernel},
author = {Wright, Shawn C. and Waveframe Labs},
year = {2026},
doi = {10.5281/zenodo.19080238},
url = {https://doi.org/10.5281/zenodo.19080238}
}
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file cricore-0.11.0.tar.gz.
File metadata
- Download URL: cricore-0.11.0.tar.gz
- Upload date:
- Size: 28.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
2ce886596b4787a585875e50b741bd4f3abf8ead036ff33d8471033075e150dd
|
|
| MD5 |
3d54705c0bfb24f80e2881708a89d77f
|
|
| BLAKE2b-256 |
b7c677d3501d858ecc71fec74be931623845d1710507b92b62e9e7b8452370b9
|
File details
Details for the file cricore-0.11.0-py3-none-any.whl.
File metadata
- Download URL: cricore-0.11.0-py3-none-any.whl
- Upload date:
- Size: 44.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
d24738e655a8d996774c7dd6ad4c9234d5139621a5382953c4c0ce9f7318340b
|
|
| MD5 |
ee3cd01ae3d1a0b20a7ab029bba9b976
|
|
| BLAKE2b-256 |
55a31234cb92ab929d1470a44a281984395420202bb8b438e314cb8c5840e1ed
|