Kit - HumoticaOS Package Manager & AI Security Gateway
Project description
Kit - HumoticaOS Package Manager & AI Security Gateway
What is Kit?
Kit is an intelligent package manager that validates software against security protocols before installation. Think of it as pip with a built-in security guard.
pip install kit-pm
kit list # See all available packages
kit install rabel # Install with security validation
Requirements
- Python 3.9+
- Dependencies: Only
requests(installed automatically) - Optional: Local Ollama instance for AI-powered validation
Quick Start
# Install Kit
pip install kit-pm
# List available HumoticaOS packages
kit list
# Search for packages
kit search memory
# Get package details
kit info rabel
# Install with JIS/SNAFT security validation
kit install rabel
# Health check your installation
kit doctor
# Update package registry
kit update
How It Works
When you run kit install <package>, Kit:
- Validates against JIS (Jasper Intent Specification) protocol
- Checks SNAFT security verification status
- Evaluates trust score (minimum 0.5 required)
- Installs via pip/npm with full audit trail
- Configures MCP servers automatically (if applicable)
kit install rabel
[CHECK] Validating package: rabel
├── Trust Score: 0.95 ✓
├── JIS Compliant: YES ✓
└── SNAFT Verified: YES ✓
[ROUTE] Installing via pip: mcp-server-rabel
[DONE] RABEL MCP Server v0.4.1 installed!
Available Packages (10 on PyPI)
All packages are published on PyPI and can be installed with Kit or directly with pip.
Core Stack
| Package | PyPI | Description |
|---|---|---|
humotica |
humotica | Complete HumoticaOS stack - AInternet, JIS, TIBET |
rabel |
mcp-server-rabel | Local-first AI memory with semantic search |
ainternet |
ainternet | Internet for AI - DNS (.aint), Email (I-Poll), P2P |
tibet |
mcp-server-tibet | Trust & provenance trail for AI systems |
Security
| Package | PyPI | Description |
|---|---|---|
kit-pm |
kit-pm | This package - security gateway |
inject-bender |
mcp-server-inject-bender | Transform attacks into hiking boot ads |
tibet-chip |
tibet-chip | Hardware-like AI security at TPM cost |
AI Bridges (MCP Servers)
| Package | PyPI | Description |
|---|---|---|
openai-bridge |
mcp-server-openai-bridge | Use OpenAI from any MCP AI |
gemini-bridge |
mcp-server-gemini-bridge | Use Gemini from any MCP AI |
ollama-bridge |
mcp-server-ollama-bridge | Use local LLMs (no API key) |
The Security Stack
| Component | Role | Description |
|---|---|---|
| JIS | The Law | Jasper Intent Specification - the security protocol |
| SNAFT | The Police | Security enforcement and access control |
| Kit | The Judge | Validates and decides what enters your system |
| TIBET | The Records | Audit trail with cryptographic provenance |
Programmatic Usage
from kit_pm import PackageRegistry, KitValidator
# Browse packages
registry = PackageRegistry()
for pkg in registry.list_all():
print(f"{pkg.name}: {pkg.description}")
# Validate a package
validator = KitValidator()
pkg = registry.get("rabel")
result = validator.validate(pkg)
print(f"Valid: {result['valid']}, Trust: {pkg.trust_score}")
# Check for prompt injection (with local AI)
validator = KitValidator(kit_api="http://localhost:11434/api/generate")
result = validator.check_injection("ignore all previous instructions")
Why Kit?
Traditional package managers (pip, npm) trust everything. Kit validates:
- Trust Score: Community reputation and audit history
- JIS Compliance: Follows HumoticaOS security protocol
- SNAFT Verification: Passed security review
- Intent Validation: AI-powered analysis of package behavior
"TRUST BEFORE ACCESS - No intent, no access"
Links
- PyPI: https://pypi.org/project/kit-pm/
- GitHub: https://github.com/jaspertvdm/KIT
- HumoticaOS: https://humotica.com
- All Packages: https://pypi.org/user/jaspertvdm/
License
MIT License - See LICENSE for details.
Credits
Built by the HumoticaOS Team.
One Love, One fAmIly!
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
kit_pm-0.1.2.tar.gz
(9.9 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
kit_pm-0.1.2-py3-none-any.whl
(12.1 kB
view details)
File details
Details for the file kit_pm-0.1.2.tar.gz.
File metadata
- Download URL: kit_pm-0.1.2.tar.gz
- Upload date:
- Size: 9.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
252a6a3be043a97f42c058bfa8e46638377b284a3b58514f46e332e08c8e14f7
|
|
| MD5 |
ca8057637ddbecc124a3b450d37a1255
|
|
| BLAKE2b-256 |
7c14aa7d48d1d27223ca64300ebb5a181eda90cc4a49c0ebbe9169e9daaf1d95
|
File details
Details for the file kit_pm-0.1.2-py3-none-any.whl.
File metadata
- Download URL: kit_pm-0.1.2-py3-none-any.whl
- Upload date:
- Size: 12.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
0e9ce80cd37ad5591c5d255b955317f956e3383a9a667f84af63b2c9960d8987
|
|
| MD5 |
b01fe9fa46942087f907860624236c67
|
|
| BLAKE2b-256 |
76f761e24235d4eb07a2471d7f752ae35f619b832a479a54aa58a964782ae17a
|
