NERM – a tamper-evident audit log that proves itself. Run it yourself

META-TECH1 pts0 comments

GitHub - metacentric-tech/nerm-core: Non-repudiable Execution & Root-of-Trust Machine — a tamper-evident audit log that proves itself. Don't trust it, run the verifier. AGPL-3.0. · GitHub

/" data-turbo-transient="true" />

Skip to content

Search or jump to...

Search code, repositories, users, issues, pull requests...

-->

Search

Clear

Search syntax tips

Provide feedback

--><br>We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Cancel

Submit feedback

Saved searches

Use saved searches to filter your results more quickly

-->

Name

Query

To see all available qualifiers, see our documentation.

Cancel

Create saved search

Sign in

/;ref_cta:Sign up;ref_loc:header logged out"}"<br>Sign up

Appearance settings

Resetting focus

You signed in with another tab or window. Reload to refresh your session.<br>You signed out in another tab or window. Reload to refresh your session.<br>You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

{{ message }}

metacentric-tech

nerm-core

Public

Notifications<br>You must be signed in to change notification settings

Fork

Star

main

BranchesTags

Go to file

CodeOpen more actions menu

Folders and files<br>NameNameLast commit message<br>Last commit date<br>Latest commit

History<br>4 Commits<br>4 Commits

.gitattributes

.gitattributes

.gitignore

.gitignore

CLA.md

CLA.md

CONTRIBUTING.md

CONTRIBUTING.md

LICENSE

LICENSE

README.md

README.md

demo.jsonl

demo.jsonl

nerm_verify.py

nerm_verify.py

View all files

Repository files navigation

NERM — Non-repudiable Execution & Root-of-Trust Machine

A tamper-evident audit log that proves itself. Don't trust it — run the verifier.

NERM is a sovereign, append-only audit substrate. Every block is hash-chained<br>to the last and sealed with SHA3-256. Nothing is asserted that cannot be<br>recomputed: the verdict comes from running the math yourself, not from trusting<br>the author. Trust terminates outward — at NIST's hash standard, not at us.

This repository is the open core (L1–L2), released under AGPL-3.0.

Verify in one command

python nerm_verify.py demo.jsonl

Expected:

CHAIN INTACT<br>Blocks: 3<br>Tip: b1f9048251948136a9bb30365d0595a212354486f9b40c934a93423d00997214

The verifier recomputes every seal (sha3_256 over each block's canonical<br>JSON, sealing field excluded) and checks every prev_hash links to the prior<br>block's seal. Change one byte of demo.jsonl and it reports CHAIN BROKEN.<br>Prove that to yourself:

python nerm_verify.py --self-test

What's here

File<br>Role

nerm_verify.py<br>Standalone chain verifier. stdlib only, no network, no dependencies.

demo.jsonl<br>A reference chain (3 blocks) that verifies INTACT.

LICENSE<br>GNU AGPL-3.0.

Why it exists

On 2026-04-24, an AI audit agent inflated a result under financial incentive.<br>A second agent carried it. A third caught it. The correction was sealed on the<br>chain before anything shipped. That event is the design principle: a system<br>that catches its own inflation and cannot hide the record. The append-only<br>discipline is "show everything" made structural — you cannot exploit what is<br>fully shown and cryptographically pinned.

Scope

This is the verification core. It recomputes and refuses; it does not phone<br>home, place trust in a server, or require an account.

The standalone verifier and reference chain are free software under AGPL-3.0.<br>The automated execution layer, the FORGE DAG engine, and enterprise compliance<br>tooling are proprietary assets of Metacentric Technologies LLC and are not part<br>of this release.

Contributing: see CONTRIBUTING.md - external code contributions require a<br>signed Contributor License Agreement (CLA).

Secured by PEACE, Protected by TRUST.<br>Metacentric Technologies LLC — AGPL-3.0

About

Non-repudiable Execution & Root-of-Trust Machine — a tamper-evident audit log that proves itself. Don't trust it, run the verifier. AGPL-3.0.

Resources

Readme

License

AGPL-3.0 license

Contributing

Contributing

Uh oh!

There was an error while loading. Please reload this page.

Activity

Stars

stars

Watchers

watching

Forks

forks

Report repository

Releases

tags

Packages

Uh oh!

There was an error while loading. Please reload this page.

Contributors

Uh oh!

There was an error while loading. Please reload this page.

Languages

Python<br>100.0%

You can’t perform that action at this time.

trust agpl audit verifier reload contributing

Related Articles