Kit - HumoticaOS Package Manager & AI Security Gateway
Project description
Kit - HumoticaOS Package Manager & AI Security Gateway
What is Kit?
Kit is an intelligent package manager that validates software against security protocols before installation. Think of it as pip with a built-in security guard.
pip install kit-pm
kit list # See all available packages
kit install rabel # Install with security validation
Requirements
- Python 3.9+
- Dependencies: Only
requests(installed automatically) - Optional: Local Ollama instance for AI-powered validation
Quick Start
# Install Kit
pip install kit-pm
# List available HumoticaOS packages
kit list
# Search for packages
kit search memory
# Get package details
kit info rabel
# Install with JIS/SNAFT security validation
kit install rabel
# Health check your installation
kit doctor
# Update package registry
kit update
How It Works
When you run kit install <package>, Kit:
- Validates against JIS (Jasper Intent Specification) protocol
- Checks SNAFT security verification status
- Evaluates trust score (minimum 0.5 required)
- Installs via pip/npm with full audit trail
- Configures MCP servers automatically (if applicable)
kit install rabel
[CHECK] Validating package: rabel
├── Trust Score: 0.95 ✓
├── JIS Compliant: YES ✓
└── SNAFT Verified: YES ✓
[ROUTE] Installing via pip: mcp-server-rabel
[DONE] RABEL MCP Server v0.4.1 installed!
Available Packages (10 on PyPI)
All packages are published on PyPI and can be installed with Kit or directly with pip.
Core Stack
| Package | PyPI | Description |
|---|---|---|
humotica |
humotica | Complete HumoticaOS stack - AInternet, JIS, TIBET |
rabel |
mcp-server-rabel | Local-first AI memory with semantic search |
ainternet |
ainternet | Internet for AI - DNS (.aint), Email (I-Poll), P2P |
tibet |
mcp-server-tibet | Trust & provenance trail for AI systems |
Security
| Package | PyPI | Description |
|---|---|---|
kit-pm |
kit-pm | This package - security gateway |
inject-bender |
mcp-server-inject-bender | Transform attacks into hiking boot ads |
tibet-chip |
tibet-chip | Hardware-like AI security at TPM cost |
AI Bridges (MCP Servers)
| Package | PyPI | Description |
|---|---|---|
openai-bridge |
mcp-server-openai-bridge | Use OpenAI from any MCP AI |
gemini-bridge |
mcp-server-gemini-bridge | Use Gemini from any MCP AI |
ollama-bridge |
mcp-server-ollama-bridge | Use local LLMs (no API key) |
The Security Stack
| Component | Role | Description |
|---|---|---|
| JIS | The Law | Jasper Intent Specification - the security protocol |
| SNAFT | The Police | Security enforcement and access control |
| Kit | The Judge | Validates and decides what enters your system |
| TIBET | The Records | Audit trail with cryptographic provenance |
Programmatic Usage
from kit_pm import PackageRegistry, KitValidator
# Browse packages
registry = PackageRegistry()
for pkg in registry.list_all():
print(f"{pkg.name}: {pkg.description}")
# Validate a package
validator = KitValidator()
pkg = registry.get("rabel")
result = validator.validate(pkg)
print(f"Valid: {result['valid']}, Trust: {pkg.trust_score}")
# Check for prompt injection (with local AI)
validator = KitValidator(kit_api="http://localhost:11434/api/generate")
result = validator.check_injection("ignore all previous instructions")
Why Kit?
Traditional package managers (pip, npm) trust everything. Kit validates:
- Trust Score: Community reputation and audit history
- JIS Compliance: Follows HumoticaOS security protocol
- SNAFT Verification: Passed security review
- Intent Validation: AI-powered analysis of package behavior
"TRUST BEFORE ACCESS - No intent, no access"
Links
- PyPI: https://pypi.org/project/kit-pm/
- GitHub: https://github.com/jaspertvdm/KIT
- HumoticaOS: https://humotica.com
- All Packages: https://pypi.org/user/jaspertvdm/
License
MIT License - See LICENSE for details.
Credits
Built by the HumoticaOS Team.
One Love, One fAmIly!
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
kit_pm-0.1.1.tar.gz
(9.1 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
kit_pm-0.1.1-py3-none-any.whl
(11.2 kB
view details)
File details
Details for the file kit_pm-0.1.1.tar.gz.
File metadata
- Download URL: kit_pm-0.1.1.tar.gz
- Upload date:
- Size: 9.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
ff6d96571549b94bf2ccfc7dbf381a023063ca481dc8dd04fe655c1ed84ba461
|
|
| MD5 |
4c3ffaddaf4e54cf2f08c61ef9d04721
|
|
| BLAKE2b-256 |
747bc885b7aa98e72de7f4235b116f6599a1dfeaa5474758b18ec6598236a758
|
File details
Details for the file kit_pm-0.1.1-py3-none-any.whl.
File metadata
- Download URL: kit_pm-0.1.1-py3-none-any.whl
- Upload date:
- Size: 11.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f1190d59222ed0497771bed7691fba70fc4a4a4e14dcfb072b30e404d309c33c
|
|
| MD5 |
590695d4c8150255f90da82bb2206f02
|
|
| BLAKE2b-256 |
fbef93fc32780d657de3fc77f74e0b8ea48add275412566974aa22170657d9a9
|
