A governance-first programming language family
Project description
Thirsty-Lang
~ ~ ~ THIRSTY-LANG ~ ~ ~
source -> verdict -> proof -> audit -> governed effect
no policy no authority no silent downgrade
DENY is the default current
A governance-first programming language family for code that has to justify itself before it acts.
The programming language wars are not over. Governance is just getting started.
Thirsty-Lang is not trying to be a prettier Python syntax. It is a defensive runtime and language stack where execution, side effects, policy, proof, authority, audit, mutation, symbolic constraints, and build outputs are treated as governable surfaces.
The core posture is simple:
- 🌊 no policy means deny
- 🔐 no authority means deny
- 🧾 no proof means no governed-execution claim
- ⚡ no side effect before a verdict
- 🧱 no silent downgrade when a governed path cannot be preserved
Current Map
flowchart LR
Source[".thirsty source"] --> Parse["Parse + check"]
Parse --> Mode{"core or governed?"}
Mode -->|core| Run["ordinary runtime"]
Mode -->|governed| Contracts["requires / ensures / invariant"]
Contracts --> Policy["T.A.R.L. policy"]
Policy --> Verdict{"ALLOW / DENY / ESCALATE"}
Verdict -->|ALLOW| Effect["brokered effect"]
Verdict -->|DENY| Refuse["fail closed"]
Verdict -->|ESCALATE| Quorum["signed quorum path"]
Effect --> Proof["proof record"]
Refuse --> Proof
Quorum --> Proof
Proof --> Audit["hash-linked audit"]
Install
pip install thirsty-lang
Pinned release:
pip install thirsty-lang==0.8.2
From source:
git clone https://github.com/TP-IAmSoThirsty/TP-Thirsty-Lang-Official.git
cd TP-Thirsty-Lang-Official
pip install -e .
A First Thirsty Program
module hello: core
glass greet(name) {
return "hello, " + name + "!"
}
drink message = greet("governed world")
pour message
Run it:
thirsty run hello.thirsty
The welcoming syntax is only the surface. The language becomes more interesting when the program asks to touch something real.
Governed Execution
Governed code declares contracts and then passes through policy before sensitive effects happen.
module bank: governed
glass withdraw(amt) requires amt > 0 ensures result >= 0 {
return amt * 2
}
Runtime enforcement includes:
- 🧪
requires,ensures, andinvariantchecks - 🚧 static and runtime blocking of governed calls from ordinary
coremode - 🧭 T.A.R.L. policy routing for governed calls and capability gates
- 🧾 proof-bearing
ALLOW,DENY, andESCALATEdecisions - 🛑 non-swallowable
GovernanceViolationdenials - 🧯 fail-closed parsing for governed modules
- 📦 build refusal when a target would drop governance unless the loss is explicitly disclosed
T.A.R.L.: Policy As Resistance
T.A.R.L. is Thirsty's Active Resistance Language. It is a policy engine built around explicit verdicts, not optimistic defaults.
policy access_control
when user.role == "admin" => ALLOW
when action == "delete" and resource == "critical" => ESCALATE
when user.ip in blacklist => DENY
when true => DENY
Implemented policy surfaces include:
- 🌊 first-match-wins rule evaluation
- 🚦
ALLOW,DENY, andESCALATEverdicts - 🧪 sandboxed expression evaluation
- ⏱️ temporal policy windows
- 🔏 HMAC and Ed25519 proof certificates
- 🧷 strict proof verification flags for hardened use
- 🔁 replay, freshness, revocation, context, and policy-hash checks
- ⛓️ hash-linked audit archives with chain verification
Resistance Flow
sequenceDiagram
participant Code as Thirsty code
participant Runtime as Governed runtime
participant TARL as T.A.R.L.
participant Broker as Capability broker
participant Audit as Audit archive
Code->>Runtime: request governed call / side effect
Runtime->>Runtime: evaluate contracts
Runtime->>TARL: canonical context + authority
TARL-->>Runtime: verdict + proof material
alt ALLOW
Runtime->>Broker: require capability
Broker-->>Runtime: allowed decision
Runtime->>Audit: append proof
Runtime-->>Code: execute effect
else DENY or ESCALATE
Runtime->>Audit: append refusal proof
Runtime-->>Code: fail closed
end
Defensive Capabilities
Thirsty-Lang's defensive model is designed for hostile or ambiguous execution contexts: agents, plugins, generated code, local scripts, imports, and tool adapters.
| Current | Capability | Defensive effect |
|---|---|---|
| 🌊 | Default-deny governed mode | Missing policy, authority, proof, or audit state refuses execution instead of granting it |
| 🚪 | Capability broker | External effects such as FFI/native calls and tool invocations can be mediated before execution |
| 🧰 | Sensitive stdlib gates | File, network, process, env, database, logging, and related calls are treated as capability-bearing effects |
| 🔐 | Signed authority claims | Hardened mode can require authenticated authority instead of trusting a raw string like admin |
| 🧾 | Proof verifier | Rejects tampered, stale, unsigned, wrong-key, revoked, or context-mismatched decisions when strict checks are enabled |
| ⛓️ | Hash-linked audit | Proof archives can detect edits, deletions, and reordering |
| ⏱️ | Trusted clock | Temporal policy can use signed time instead of the host clock |
| 🗺️ | Path guard | Filesystem roots can be canonicalized and confined against traversal and symlink escape |
| 🗳️ | Policy lint and quorum | Broad ALLOW rules can be flagged, and ESCALATE can require distinct signed approvals |
| 🧯 | Parser fail-closed path | Governed parse errors discard recovered executable statements instead of running partial code |
The offensive challenge catalog is maintained in
docs/THREAT_MODEL.md. The feature matrix is maintained
in docs/STATUS.md.
The Six-Tier Stack
flowchart TB
T6["Tier 6: TSCG-B<br/>binary frames + integrity"]
T5["Tier 5: TSCG<br/>symbolic constraints"]
T4["Tier 4: Shadow Thirst<br/>mutation resistance"]
T3["Tier 3: T.A.R.L.<br/>policy + proof"]
T2["Tier 2: Thirst of Gods<br/>OOP / async / structured errors"]
T1["Tier 1: Thirsty-Lang<br/>lexer / parser / checker / runtime"]
T6 --> T5 --> T4 --> T3 --> T2 --> T1
| Tier | Current | Name | What it contributes |
|---|---|---|---|
| 1 | 💧 | Thirsty-Lang | Lexer, parser, checker, interpreter, formatter, CLI, module system, JS build target, contracts, and core syntax |
| 2 | ⚡ | Thirst of Gods | Object-oriented, async, and structured-error validation over the real AST |
| 3 | 🛡️ | T.A.R.L. | Policy-as-code, proof-carrying verdicts, temporal rules, composition, and audit hooks |
| 4 | 🌑 | Shadow Thirst | Mutation analysis, determinism checks, plane isolation, purity checks, resource estimation, and promotion blocking |
| 5 | 🧬 | TSCG | Symbolic constraint grammar with canonicalized constraint expressions |
| 6 | 📡 | TSCG-B | Binary frame protocol with CRC32 and SHA-256 integrity checks |
Unique Language Features
Thirsty-Lang uses its own vocabulary, but the names map to concrete execution behavior:
| Syntax | Current | Meaning |
|---|---|---|
drink |
💧 | declares bindings |
pour |
🌊 | outputs through the runtime |
glass |
🥛 | declares functions |
fountain |
⛲ | declares classes |
refill |
🔁 | loops |
times |
⏲️ | repeats a block |
spillage / cleanup / throw |
🧯 | models structured error handling |
cascade |
⚡ | models async flow |
requires / ensures / invariant |
🧪 | turns governance into executable checks |
module name: governed |
🛡️ | moves code into the governed execution path |
Example:
module counters: core
fountain Counter {
drink count: Int = 0
glass increment() {
this.count = this.count + 1
return this.count
}
}
drink c = new Counter()
times 3 { pour c.increment() }
CLI Surface
Primary commands:
thirsty --help
thirsty run program.thirsty
thirsty fmt program.thirsty
thirsty build program.thirsty --target js
thirsty build program.thirsty --target js --policy policy.tarl --emit-manifest
thirsty prove program.thirsty --policy policy.tarl --emit-manifest
thirsty explain-denial program.thirsty --policy policy.tarl
thirsty govern program.thirsty
thirsty lsp
tarl --help
tarl eval policy.tarl --context '{"role":"admin"}'
tarl eval temporal-policy.tarl --context '{"role":"admin"}' --now 2026-07-01T12:00:00Z
tarl verify proof.json --ed25519-only
tarl audit verify-chain audit.db
shadow-thirst --help
tscg --help
tscg-b --help
thirst-of-gods --help
| Command | Current | Surface |
|---|---|---|
thirsty |
🌊 | run, format, build, static proof-obligation reports, denial explanations, govern, LSP, docs |
tarl |
🛡️ | evaluate policies, verify proofs, inspect audits |
shadow-thirst |
🌑 | analyze mutation and promotion risk |
tscg |
🧬 | parse and canonicalize symbolic constraints |
tscg-b |
📡 | encode and decode binary constraint frames |
thirst-of-gods |
⚡ | validate higher-tier language contracts |
Proof-oriented commands are static unless explicitly documented otherwise:
thirsty prove program.thirsty --policy policy.tarl --emit-manifestparses, checks, and emits a machine-readable proof-obligation report without executing program side effects. The report includes functions, imports, sensitive stdlib calls, governed calls, required TARL actions, required capabilities, context schema, authority requirements, contract obligations, proof mode, audit requirement, governance-loss status, and unresolved proof gaps. Required TARL actions include capability actions and governed function-call actions.thirsty explain-denial program.thirsty --policy policy.tarlemits a machine-readable explanation of missing policy, context, authority, and proof conditions for the static obligation set.thirsty build ... --emit-manifest --policy policy.tarlrecords source and policy hashes, required capabilities, context schema, proof/audit requirements, Shadow status when statically visible, and governance-loss status in the build manifest.
Explicit context schemas can be attached with --context-schema schema.json.
The compact schema shape is:
{"fields": {"user.role": "string", "risk": {"kind": "number", "required": false}}}
T.A.R.L. verification is secure by default: tarl verify and
ProofVerifier() reject unsigned proofs unless --allow-unsigned or
ProofVerifier(require_signature=False) is used explicitly for local
inspection. tarl eval refuses temporal policy windows and CURRENT_*
builtins unless --now supplies the trusted evaluation time.
Evidence-First Claims
This project keeps defensive claims tied to files that can be inspected:
- status matrix:
docs/STATUS.md - adversary model and challenge catalog:
docs/THREAT_MODEL.md - governance runtime model:
docs/governance_model.md - grammar:
docs/GRAMMAR.md - language specification:
docs/LANGUAGE_SPEC.md - production acceptance tests:
tests/test_production_acceptance.py - offensive threat suites:
tests/test_threat_model_broker.py,tests/test_threat_model_authority.py,tests/test_threat_model_audit_chain.py,tests/test_threat_model_failclosed.py
Run the main validation suite:
python -m pytest tests/ -q
Optional static and package checks:
ruff check src tests
mypy -p utf
python -m build
Why This Exists
Most languages ask: can this code run?
Thirsty-Lang asks harder questions:
- Who is acting?
- What authority was proven?
- Which policy allowed it?
- What exact context was evaluated?
- What proof was produced?
- Can the audit chain detect tampering?
- Can a build target preserve governance, or does it have to confess the loss?
- Can an agent or tool adapter reach a side effect without crossing the broker?
That is the war surface now. Syntax still matters. Performance still matters. Ergonomics still matter. But governance is becoming part of the language runtime, not a document stapled to the side.
source
|
parser
|
contracts + policy
|
ALLOW / DENY / ESCALATE
|
proof
|
audit
|
only then: effect
License
Apache-2.0. Copyright 2026 Thirsty's Projects LLC.
Security reports: FounderOfTP@thirstysprojects.com
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file thirsty_lang-0.8.2.tar.gz.
File metadata
- Download URL: thirsty_lang-0.8.2.tar.gz
- Upload date:
- Size: 258.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.15
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f582417db58b05ae1dac245d922f2d8e4930c800ce887c04199959c927aff642
|
|
| MD5 |
2967ff4a6b6b29ba6d368f8035ebe5fa
|
|
| BLAKE2b-256 |
366ac9f22f4bafd8efe82c2f629cc737c8e01bf6bad4b332506466e8ab675c93
|
File details
Details for the file thirsty_lang-0.8.2-py3-none-any.whl.
File metadata
- Download URL: thirsty_lang-0.8.2-py3-none-any.whl
- Upload date:
- Size: 186.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.15
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
95f3da7bb373c91bef17470309de9bfa6933b978db25d5c4b988ef0a1b64744d
|
|
| MD5 |
49a97f6047cbf895e26e9c1a5e585240
|
|
| BLAKE2b-256 |
2b8241e294438dea6eee9b287747e485a9681e9192c59a7f55e2718f79b7c923
|