Open proof engine
Proof-critical execution and public contracts are MIT licensed and reviewable. Guard does not modify the proof semantics of the released engine.
Guard is designed to run on customer-owned Linux compute. TinyZKP does not receive workloads, witnesses, checkpoints, scratch files, or proofs.
Proof-critical execution and public contracts are MIT licensed and reviewable. Guard does not modify the proof semantics of the released engine.
Workload files and scratch remain under customer-selected roots. Paths, symlinks, devices, release identity, and integrity are validated before use.
Activation sends limited license and release metadata to the merchant. Once activated, proving, resume, verification, and license status are local and offline.
Each qualified release publishes immutable hashes, an OCI digest, SBOM, provenance, signed channel manifest, schema identities, compatibility profile, source identity, and review evidence. Verify the exact release before use. Do not install an artifact whose identity is missing or inconsistent.
TinyZKP does not claim that every supported workload is zero knowledge, that SSD scratch is inherently private, that Guard provides a trusted execution environment, that the system supports arbitrary Plonky3 configurations, or that a release is independently reviewed before its evidence is published.
Use the repository's private vulnerability report for security-sensitive findings. Use a public issue only when the report contains no exploit detail or sensitive material. The project does not promise an SLA or guaranteed response time.