back to proof

Continuous verification

Show people how the sausage gets made.

Most AI-safety groups publish ethics whitepapers. We publish the CI matrix that mechanically enforces the safety boundaries, before a single image is minted. Over 15,000 tests run from the foundation up across six projects to produce one verified build. The safety constraints are not promises. They are continuously machined, tested, and cryptographically signed code.

15,000+
tests, bottom-up
6
projects in the chain
2.9.7+
verified image
x86_64 · aarch64
multi-arch
29
locales, parity-checked

The dependency chain, from the foundation up

The matrix evaluates the chain bottom-up. Each layer must satisfy its conformance matrix before any combination above it is allowed to boot.

1 · CIRISVerify

crypto + trust

2 · CIRISPersist

data + state

3 · CIRISEdge

mesh + federation

4 · CIRISServer

headless ops

5 · CIRISAgent

client + mobile

This matrix is what keeps runtime code drift from undermining the Coherence Ratchet or sneaking un-vetted capabilities past the apophatic bounds. It runs concurrent release waves horizontally, with no flaky environment failures.

CIRISConformance

Ecosystem matrix and contract governance

Not a deployable binary. It defines the integration boundaries and testing contracts for the whole CI lifecycle, the reference matrices the substrate layers must satisfy before any combination is allowed to boot.

Adversarial fire-tests

isolated attack vectors against the substrate data-access surfaces, so caller-scope admission and hardware-backed attestation hold under duress.

Matrix alignment validation

strict compatibility floors between dependent projects, to prevent cross-library (PyO3 / UniFFI) initialization skew.

CIRISVerify

Cryptographic and trust foundation

The bedrock. Structural evidence, attestation, and cryptographic signing. Code cannot progress unless the trust layer is flawless.

Pre-flight

AST-level verification and D27 conformance gates, so runtime code never depends on .md documentation.

Static analysis

strict mypy type checking across all cryptographic modules.

Multi-arch compilation

builds the C / Rust FFI extensions (.so, .dylib, .dll) for x86_64 and aarch64.

~1,500 tests · key generation, signature determinism, isolated TPM2 mock testing.

CIRISPersist

Data and state management

Durability, secure local storage, and schema compatibility across every platform, immediately above the trust layer.

Dual-backend conformance sweep

every test runs against both Dockerized PostgreSQL (distributed) and SQLite (local / mobile) for absolute functional parity.

Upgrade-compat fixture capture

legacy schema snapshots are loaded and migrated, to guarantee zero data loss across upgrades.

Cross-platform parity assertion

data serialized on Windows x64 is read losslessly on macOS ARM64 and Linux.

~2,500 tests · ACID compliance, concurrent locking, multi-threaded isolation, I/O regressions.

CIRISEdge

Mesh networking and federation

The routing tier. Deep integration with external transport vendors and the decentralized peer-to-peer logic.

Leviculum vendor integration

integration testing with the Reticulum-rs and Leviculum Rust libraries, validating the PyO3 / UniFFI boundary for TCP-loopback, LoRa, and packet-radio transport stubs.

Network mesh simulation

virtualized local topologies test CIRIS-V1 NodeCode peer discovery and cryptographic routing-table propagation.

Latency and drain assertions

checks event-loop stalls and asserts flush() and stop() drain their queues within strict millisecond thresholds.

~3,000 tests · byte-level packet encoding, async stream handling, SAS verification, network-boundary fuzzing.

CIRISServer

Headless operations and administration

The headless engine orchestrating persistence and edge: API requests, agent-to-agent negotiations, and heavy background tasks.

API conformance

full HTTP / REST and Server-Sent Events surface testing (/v1/federation/*, /a2a), validating token-tier gating (Observer vs. Admin).

Headless generation

optimized headless binaries via PyInstaller, tuned for Docker and headless Linux.

Docker multi-arch images

container logic creates, layers, signs, and pushes amd64 / arm64 images to the GitHub Container Registry.

~3,500 tests · rate-limiting, CORS policies, streaming event serialization, concurrent asyncio task processing.

CIRISAgent

User experience and mobile interfaces

The culmination: every lower service folded into one user-facing client across desktop and mobile.

Localization guard

a stdlib-only guard guarantees reference coverage and mirror parity across 29 locales for the Android / iOS Kotlin / Swift bundles, so no raw key ever renders.

Staged QA (qa_runner)

full UI, agent-mode capability (CLIENT / PROXY / SERVER), and workflow simulation: a byte-for-byte install-parity check mimicking exactly what a user installs.

CIRISRegistry verification

canonical hashes of the resources and Python runtime tree, signed with ciris-build-sign to satisfy the CIRISVerify v2.0.3+ contract.

Final output

cross-platform wheels, the Chaquopy Android APK, the Desktop UberJar, and the Inno Setup Windows installer, aggregated into the GitHub Release.

~4,500+ tests · sharded 8 ways. UI bridging, capability execution, safety-interpretation sweeps, end-to-end across all five projects.

CIRIS is not a wrapper. It is a fully engineered computing paradigm, verified end to end.

See the measured fabric →Read the source

CIRISsafe by structure · open by principle · kind by design