From vibe code to trusted tool. Automatic TIBET provenance, bloat detection, trust scoring, and supply chain certification.
Project description
tibet-forge
Zero-friction provenance. Built-in trust.
Turn any Python project into a certified, auditable tool with one command. Cryptographic provenance baked in, not bolted on.
Quick Start
pip install tibet-forge
tibet-forge certify ./my-project
╔════════════════════════════════════════════════════════╗
║ Humotica Trust Score: 87/100 (B+) ║
║ ✓ CERTIFIED ║
╚════════════════════════════════════════════════════════╝
Badge markdown:
[]
What You Get
Trust Scoring
Gamified quality metrics. See exactly where your code stands:
Humotica Trust Score: 87/100 (B+)
├── Code Quality: 85/100 (weight: 25%)
├── Security: 95/100 (weight: 25%)
├── Efficiency: 80/100 (weight: 20%)
├── Uniqueness: 70/100 (weight: 15%)
└── Provenance: 100/100 (weight: 15%)
Zero-Friction Provenance
TIBET audit trails injected automatically. Every function call tracked, every decision logged:
# Your code stays clean
def login(user, password):
...
# tibet-forge adds provenance invisibly
@tibet_audit(action="login", erachter="User authentication")
def login(user, password):
...
Hyper-Optimized Execution
Bloat detection powered by AST analysis. Know exactly what's slowing you down:
Efficiency Analysis:
✓ No heavy dependencies detected
• Consider: httpx instead of requests (3x faster, async-native)
• Unused import: 'os' in utils.py
Smart Deduplication
Intent hashing finds existing tools that do what you're building:
Similar Projects Found:
• rapid-rag (65% similar)
Production-ready RAG with TIBET integration
https://pypi.org/project/rapid-rag/
Commands
# Full certification with badge
tibet-forge certify .
# Quick scan
tibet-forge scan .
# Just the score
tibet-forge score .
# Preview TIBET injection
tibet-forge wrap --dry-run .
# Initialize config
tibet-forge init
Trust Score Components
| Component | Weight | Measures |
|---|---|---|
| Code Quality | 25% | README, tests, docs, types |
| Security | 25% | No vulns, no hardcoded secrets |
| Efficiency | 20% | No bloat, minimal dependencies |
| Uniqueness | 15% | Novel contribution, not reinventing |
| Provenance | 15% | TIBET integration, audit readiness |
The Badge
Projects scoring 70+ earn the Humotica Trust badge:
Configuration
Create tibet-forge.json:
{
"name": "my-project",
"scan_bloat": true,
"scan_duplicates": true,
"scan_security": true,
"auto_wrap": true,
"min_score_for_badge": 70
}
Or in pyproject.toml:
[tool.tibet-forge]
scan_bloat = true
min_score_for_badge = 70
Why "Forge"?
Raw code goes in. Trusted tool comes out.
Like a blacksmith's forge - heat, hammer, harden. Your vibe code becomes production steel.
Part of the Humotica Suite
| Package | Focus |
|---|---|
| tibet-core | Provenance foundation |
| rapid-rag | RAG in 3 lines |
| oomllama | Smart LLM routing |
| tibet-forge | Zero-friction certification |
License
MIT - Humotica
Credits
Designed by Jasper van de Meent. Built by Jasper and Root AI as part of HumoticaOS.
Stack-positie: Groep safety · Bootstrap = OSAPI-handshake naar tibet + jis (fail → snaft-rule + tibet-pol-rapport) · ← tibet-ci · tibet-ci-audit → · See STACK.md · See demo/golden-path/ for the spine end-to-end.
Enterprise
For private hub hosting, SLA support, custom integrations, or compliance guidance:
| Enterprise | enterprise@humotica.com |
| Support | support@humotica.com |
| Security | security@humotica.com |
See ENTERPRISE.md for details.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file tibet_forge-0.7.1.tar.gz.
File metadata
- Download URL: tibet_forge-0.7.1.tar.gz
- Upload date:
- Size: 26.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e7b96367d053565f9f7373eb103162f2c711a69eccc2d735d235d3459a3bbf68
|
|
| MD5 |
23e15b27d5d6402dc771d82368f65cf5
|
|
| BLAKE2b-256 |
678ca415356475843ee4b3e2c742dc319eebb5b54b161194d77a442d52512f2d
|
File details
Details for the file tibet_forge-0.7.1-py3-none-any.whl.
File metadata
- Download URL: tibet_forge-0.7.1-py3-none-any.whl
- Upload date:
- Size: 34.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
cdb0aeafd5860cbc45e267cea4d76e0b7d72dbe6e301463260ef0bc8bb5d9834
|
|
| MD5 |
8416373d27692a989570dddb81e7d6d2
|
|
| BLAKE2b-256 |
425aff7aacb20388d82d6994aa542758478750eddc388dd0e73c274131b49663
|
