A framework for building oblivious program transpilers.
|
Important
|
Project Status: Infrastructure Only This repository currently contains project infrastructure and CI/CD automation only. |
The obli-transpiler-framework is designed to provide tooling for transforming programs into oblivious variants - programs whose execution paths are independent of secret or private data. This is a foundational technique for:
-
Privacy-preserving computation
-
Cryptographic protocol implementation
-
Side-channel attack mitigation
-
Secure multi-party computation
| Component | Status |
|---|---|
Infrastructure |
Complete - CI/CD, policy enforcement, multi-forge sync |
Specification |
Pending - will be uploaded shortly |
Core Implementation |
Not started |
Documentation |
Minimal - this README and citation guide only |
obli-transpiler-framework/
├── .claude/CLAUDE.md # Language policy (Hyperpolymath Standard)
├── .github/
│ └── workflows/ # 12 CI/CD workflows
│ ├── codeql.yml # Security scanning
│ ├── rsr-antipattern.yml # TypeScript/Go/npm blocking
│ ├── security-policy.yml # MD5/SHA1/HTTP checks
│ ├── instant-sync.yml # Multi-forge propagation
│ └── ...
├── docs/
│ └── CITATIONS.adoc # Academic citation formats
├── justfile # Task runner (build/test/lint TODO)
├── LICENSE.txt # MIT OR AGPL-3.0-or-later
└── README.adoc # This fileThe following is a placeholder for the planned architecture. Full specification pending.
┌─────────────────────────────────────────┐
│ obli-transpiler-framework │
└─────────────────────────────────────────┘
│
┌───────────────────────────────┼───────────────────────────────┐
│ │ │
▼ ▼ ▼
┌─────────┐ ┌─────────────┐ ┌──────────┐
│ Frontend│ │ Core IR & │ │ Backend │
│ Parsers │ │ Transforms │ │ Emitters │
└─────────┘ └─────────────┘ └──────────┘
│ │ │
Source Code Obliviousness Passes Target CodeThis project adheres to the Hyperpolymath Standard for language selection:
| Allowed | Banned | Notes |
|---|---|---|
ReScript |
TypeScript |
Primary application language |
Deno |
Node/npm/Bun |
Runtime and package management |
Rust |
Go |
Performance-critical code |
Gleam |
- |
Backend services (BEAM/JS) |
Guile Scheme |
- |
Configuration/metadata |
See CLAUDE.md for the complete policy.
See ROADMAP.adoc for the development roadmap.
Dual-licensed under your choice of:
-
MIT License - Permissive, maximum flexibility
-
AGPL-3.0-or-later - Copyleft, network service source disclosure
See LICENSE.txt for details.
The project also encourages (non-binding) adherence to the Palimpsest License principles for consent-based digital interaction.
See docs/CITATIONS.adoc for academic citation formats (BibTeX, Harvard, APA, OSCOLA, MLA).
Contributions welcome once the specification is published. Until then, this repository serves as infrastructure scaffolding following Rhodium Standard Repository conventions.
