Skip to main content

A governance-first programming language family

Project description

Thirsty-Lang

PyPI Python License CI Release Docker

       ~ ~ ~        THIRSTY-LANG        ~ ~ ~
   source -> verdict -> proof -> audit -> governed effect
       no policy        no authority        no silent downgrade
                 DENY is the default current

A governance-first programming language family for code that has to justify itself before it acts.

The programming language wars are not over. Governance is just getting started.

Thirsty-Lang is not trying to be a prettier Python syntax. It is a defensive runtime and language stack where execution, side effects, policy, proof, authority, audit, mutation, symbolic constraints, and build outputs are treated as governable surfaces.

The core posture is simple:

  • 🌊 no policy means deny
  • 🔐 no authority means deny
  • 🧾 no proof means no governed-execution claim
  • ⚡ no side effect before a verdict
  • 🧱 no silent downgrade when a governed path cannot be preserved

Current Map

flowchart LR
    Source[".thirsty source"] --> Parse["Parse + check"]
    Parse --> Mode{"core or governed?"}
    Mode -->|core| Run["ordinary runtime"]
    Mode -->|governed| Contracts["requires / ensures / invariant"]
    Contracts --> Policy["T.A.R.L. policy"]
    Policy --> Verdict{"ALLOW / DENY / ESCALATE"}
    Verdict -->|ALLOW| Effect["brokered effect"]
    Verdict -->|DENY| Refuse["fail closed"]
    Verdict -->|ESCALATE| Quorum["signed quorum path"]
    Effect --> Proof["proof record"]
    Refuse --> Proof
    Quorum --> Proof
    Proof --> Audit["hash-linked audit"]

Install

pip install thirsty-lang

Pinned release:

pip install thirsty-lang==0.8.2

From source:

git clone https://github.com/TP-IAmSoThirsty/TP-Thirsty-Lang-Official.git
cd TP-Thirsty-Lang-Official
pip install -e .

A First Thirsty Program

module hello: core

glass greet(name) {
    return "hello, " + name + "!"
}

drink message = greet("governed world")
pour message

Run it:

thirsty run hello.thirsty

The welcoming syntax is only the surface. The language becomes more interesting when the program asks to touch something real.

Governed Execution

Governed code declares contracts and then passes through policy before sensitive effects happen.

module bank: governed

glass withdraw(amt) requires amt > 0 ensures result >= 0 {
    return amt * 2
}

Runtime enforcement includes:

  • 🧪 requires, ensures, and invariant checks
  • 🚧 static and runtime blocking of governed calls from ordinary core mode
  • 🧭 T.A.R.L. policy routing for governed calls and capability gates
  • 🧾 proof-bearing ALLOW, DENY, and ESCALATE decisions
  • 🛑 non-swallowable GovernanceViolation denials
  • 🧯 fail-closed parsing for governed modules
  • 📦 build refusal when a target would drop governance unless the loss is explicitly disclosed

T.A.R.L.: Policy As Resistance

T.A.R.L. is Thirsty's Active Resistance Language. It is a policy engine built around explicit verdicts, not optimistic defaults.

policy access_control

when user.role == "admin" => ALLOW
when action == "delete" and resource == "critical" => ESCALATE
when user.ip in blacklist => DENY
when true => DENY

Implemented policy surfaces include:

  • 🌊 first-match-wins rule evaluation
  • 🚦 ALLOW, DENY, and ESCALATE verdicts
  • 🧪 sandboxed expression evaluation
  • ⏱️ temporal policy windows
  • 🔏 HMAC and Ed25519 proof certificates
  • 🧷 strict proof verification flags for hardened use
  • 🔁 replay, freshness, revocation, context, and policy-hash checks
  • ⛓️ hash-linked audit archives with chain verification

Resistance Flow

sequenceDiagram
    participant Code as Thirsty code
    participant Runtime as Governed runtime
    participant TARL as T.A.R.L.
    participant Broker as Capability broker
    participant Audit as Audit archive

    Code->>Runtime: request governed call / side effect
    Runtime->>Runtime: evaluate contracts
    Runtime->>TARL: canonical context + authority
    TARL-->>Runtime: verdict + proof material
    alt ALLOW
        Runtime->>Broker: require capability
        Broker-->>Runtime: allowed decision
        Runtime->>Audit: append proof
        Runtime-->>Code: execute effect
    else DENY or ESCALATE
        Runtime->>Audit: append refusal proof
        Runtime-->>Code: fail closed
    end

Defensive Capabilities

Thirsty-Lang's defensive model is designed for hostile or ambiguous execution contexts: agents, plugins, generated code, local scripts, imports, and tool adapters.

Current Capability Defensive effect
🌊 Default-deny governed mode Missing policy, authority, proof, or audit state refuses execution instead of granting it
🚪 Capability broker External effects such as FFI/native calls and tool invocations can be mediated before execution
🧰 Sensitive stdlib gates File, network, process, env, database, logging, and related calls are treated as capability-bearing effects
🔐 Signed authority claims Hardened mode can require authenticated authority instead of trusting a raw string like admin
🧾 Proof verifier Rejects tampered, stale, unsigned, wrong-key, revoked, or context-mismatched decisions when strict checks are enabled
⛓️ Hash-linked audit Proof archives can detect edits, deletions, and reordering
⏱️ Trusted clock Temporal policy can use signed time instead of the host clock
🗺️ Path guard Filesystem roots can be canonicalized and confined against traversal and symlink escape
🗳️ Policy lint and quorum Broad ALLOW rules can be flagged, and ESCALATE can require distinct signed approvals
🧯 Parser fail-closed path Governed parse errors discard recovered executable statements instead of running partial code

The offensive challenge catalog is maintained in docs/THREAT_MODEL.md. The feature matrix is maintained in docs/STATUS.md.

The Six-Tier Stack

flowchart TB
    T6["Tier 6: TSCG-B<br/>binary frames + integrity"]
    T5["Tier 5: TSCG<br/>symbolic constraints"]
    T4["Tier 4: Shadow Thirst<br/>mutation resistance"]
    T3["Tier 3: T.A.R.L.<br/>policy + proof"]
    T2["Tier 2: Thirst of Gods<br/>OOP / async / structured errors"]
    T1["Tier 1: Thirsty-Lang<br/>lexer / parser / checker / runtime"]

    T6 --> T5 --> T4 --> T3 --> T2 --> T1
Tier Current Name What it contributes
1 💧 Thirsty-Lang Lexer, parser, checker, interpreter, formatter, CLI, module system, JS build target, contracts, and core syntax
2 Thirst of Gods Object-oriented, async, and structured-error validation over the real AST
3 🛡️ T.A.R.L. Policy-as-code, proof-carrying verdicts, temporal rules, composition, and audit hooks
4 🌑 Shadow Thirst Mutation analysis, determinism checks, plane isolation, purity checks, resource estimation, and promotion blocking
5 🧬 TSCG Symbolic constraint grammar with canonicalized constraint expressions
6 📡 TSCG-B Binary frame protocol with CRC32 and SHA-256 integrity checks

Unique Language Features

Thirsty-Lang uses its own vocabulary, but the names map to concrete execution behavior:

Syntax Current Meaning
drink 💧 declares bindings
pour 🌊 outputs through the runtime
glass 🥛 declares functions
fountain declares classes
refill 🔁 loops
times ⏲️ repeats a block
spillage / cleanup / throw 🧯 models structured error handling
cascade models async flow
requires / ensures / invariant 🧪 turns governance into executable checks
module name: governed 🛡️ moves code into the governed execution path

Example:

module counters: core

fountain Counter {
    drink count: Int = 0

    glass increment() {
        this.count = this.count + 1
        return this.count
    }
}

drink c = new Counter()
times 3 { pour c.increment() }

CLI Surface

Primary commands:

thirsty --help
thirsty run program.thirsty
thirsty fmt program.thirsty
thirsty build program.thirsty --target js
thirsty build program.thirsty --target js --policy policy.tarl --emit-manifest
thirsty prove program.thirsty --policy policy.tarl --emit-manifest
thirsty explain-denial program.thirsty --policy policy.tarl
thirsty govern program.thirsty
thirsty lsp

tarl --help
tarl eval policy.tarl --context '{"role":"admin"}'
tarl eval temporal-policy.tarl --context '{"role":"admin"}' --now 2026-07-01T12:00:00Z
tarl verify proof.json --ed25519-only
tarl audit verify-chain audit.db

shadow-thirst --help
tscg --help
tscg-b --help
thirst-of-gods --help
Command Current Surface
thirsty 🌊 run, format, build, static proof-obligation reports, denial explanations, govern, LSP, docs
tarl 🛡️ evaluate policies, verify proofs, inspect audits
shadow-thirst 🌑 analyze mutation and promotion risk
tscg 🧬 parse and canonicalize symbolic constraints
tscg-b 📡 encode and decode binary constraint frames
thirst-of-gods validate higher-tier language contracts

Proof-oriented commands are static unless explicitly documented otherwise:

  • thirsty prove program.thirsty --policy policy.tarl --emit-manifest parses, checks, and emits a machine-readable proof-obligation report without executing program side effects. The report includes functions, imports, sensitive stdlib calls, governed calls, required TARL actions, required capabilities, context schema, authority requirements, contract obligations, proof mode, audit requirement, governance-loss status, and unresolved proof gaps. Required TARL actions include capability actions and governed function-call actions.
  • thirsty explain-denial program.thirsty --policy policy.tarl emits a machine-readable explanation of missing policy, context, authority, and proof conditions for the static obligation set.
  • thirsty build ... --emit-manifest --policy policy.tarl records source and policy hashes, required capabilities, context schema, proof/audit requirements, Shadow status when statically visible, and governance-loss status in the build manifest.

Explicit context schemas can be attached with --context-schema schema.json. The compact schema shape is:

{"fields": {"user.role": "string", "risk": {"kind": "number", "required": false}}}

T.A.R.L. verification is secure by default: tarl verify and ProofVerifier() reject unsigned proofs unless --allow-unsigned or ProofVerifier(require_signature=False) is used explicitly for local inspection. tarl eval refuses temporal policy windows and CURRENT_* builtins unless --now supplies the trusted evaluation time.

Evidence-First Claims

This project keeps defensive claims tied to files that can be inspected:

Run the main validation suite:

python -m pytest tests/ -q

Optional static and package checks:

ruff check src tests
mypy -p utf
python -m build

Why This Exists

Most languages ask: can this code run?

Thirsty-Lang asks harder questions:

  • Who is acting?
  • What authority was proven?
  • Which policy allowed it?
  • What exact context was evaluated?
  • What proof was produced?
  • Can the audit chain detect tampering?
  • Can a build target preserve governance, or does it have to confess the loss?
  • Can an agent or tool adapter reach a side effect without crossing the broker?

That is the war surface now. Syntax still matters. Performance still matters. Ergonomics still matter. But governance is becoming part of the language runtime, not a document stapled to the side.

        source
          |
       parser
          |
   contracts + policy
          |
    ALLOW / DENY / ESCALATE
          |
       proof
          |
       audit
          |
   only then: effect

License

Apache-2.0. Copyright 2026 Thirsty's Projects LLC.

Security reports: FounderOfTP@thirstysprojects.com

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

thirsty_lang-0.8.2.tar.gz (258.5 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

thirsty_lang-0.8.2-py3-none-any.whl (186.7 kB view details)

Uploaded Python 3

File details

Details for the file thirsty_lang-0.8.2.tar.gz.

File metadata

  • Download URL: thirsty_lang-0.8.2.tar.gz
  • Upload date:
  • Size: 258.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.15

File hashes

Hashes for thirsty_lang-0.8.2.tar.gz
Algorithm Hash digest
SHA256 f582417db58b05ae1dac245d922f2d8e4930c800ce887c04199959c927aff642
MD5 2967ff4a6b6b29ba6d368f8035ebe5fa
BLAKE2b-256 366ac9f22f4bafd8efe82c2f629cc737c8e01bf6bad4b332506466e8ab675c93

See more details on using hashes here.

File details

Details for the file thirsty_lang-0.8.2-py3-none-any.whl.

File metadata

  • Download URL: thirsty_lang-0.8.2-py3-none-any.whl
  • Upload date:
  • Size: 186.7 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.15

File hashes

Hashes for thirsty_lang-0.8.2-py3-none-any.whl
Algorithm Hash digest
SHA256 95f3da7bb373c91bef17470309de9bfa6933b978db25d5c4b988ef0a1b64744d
MD5 49a97f6047cbf895e26e9c1a5e585240
BLAKE2b-256 2b8241e294438dea6eee9b287747e485a9681e9192c59a7f55e2718f79b7c923

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page