npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@axiom-infra/core

v1.0.0

Published

Local semantic boundary engine for private AI reasoning

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

atadzhanatadzhan

Keywords

ai-infrastructuresemantictransformationboundarylocalprivacysecuritysdkopen-core

Readme

Axiom Core (v1.0)

Local semantic transformation for private AI reasoning.

Axiom Core is the v1.0 execution layer of the Axiom system. It transforms sensitive local input into non-identifying semantic representations so cloud models can reason over structure without seeing raw data.

The SDK performs semantic transformation locally: removing identifying information while preserving the relational structure required for reasoning.

Table of Contents

Installation

Requirements

  • Node.js >= 20.0.0
  • npm >= 9.0.0 (or Yarn/pnpm)

Install

npm install @axiom-infra/core
yarn add @axiom-infra/core

Usage

Basic Example

import { Axiom } from "@axiom-infra/core";

const axiom = new Axiom({
  securityTier: "standard",
  enclave: "none",
  policyVersion: "v1",
});

const result = await axiom.reason({
  context: localDocuments,
  task: "analyze obligations and risks",
  model: "gpt-5",
});

// Send only result.transformedContext to cloud

Local Demo (from this repo)

npm install
npm run demo

If your shell blocks npm scripts, run:

node --experimental-strip-types demo/demo.js

Advanced Usage (Preview)

const axiomPreview = new Axiom({
  securityTier: "attested",
  enclave: "auto",
  policyVersion: "v1",
});

For full integration details, see docs/INTEGRATION.md.

Guarantees (v1.0)

When invoking axiom.reason(...) in the standard tier, the SDK provides:

| Guarantee | Description | |-----------|-------------| | No raw data transmission | Raw input data is not transmitted by the SDK | | Local transformation | Semantic transformation occurs locally | | Explicit network calls | No implicit network calls are performed | | Fail-fast boundaries | Boundary violations fail explicitly | | No identity mapping output | The SDK does not expose a raw↔synthetic mapping |

These guarantees apply only to SDK-controlled execution paths.

Features

  • Local semantic abstraction pipeline
  • Entity and role modeling
  • Deterministic canonicalization and hashing
  • Explicit boundary enforcement and fail-fast errors
  • Zero data retention by default (SDK-controlled paths)
  • Optional attestation evidence in the attested preview tier

What This SDK Is

Axiom Core is infrastructure, not an application.

It is designed to be embedded into systems where:

  • Private data should not be transmitted to the cloud
  • Frontier models are still required for reasoning
  • Trust boundaries and auditability matter

At a high level, the SDK:

  • Executes semantic analysis on local input
  • Transforms raw data into non-identifying representations
  • Preserves entities, roles, and relationships
  • Enforces a strict boundary between local context and cloud models

What This SDK Is Not

To avoid ambiguity, Axiom Core is explicitly not:

  • A hosted service or proxy
  • A redaction or PII-masking tool
  • A compliance product or legal authority
  • A cryptographic encryption system
  • A local language model or inference engine
  • A cloud routing or billing layer

These concerns are intentionally outside the scope of this repository.

High-Level Architecture

The Axiom system enforces a hard trust boundary.

┌─────────────────────────────────────────────────────────────────┐
│  Local Environment (This SDK)                                   │
│                                                                 │
│  • Semantic analysis and transformation                         │
│  • Entity and relationship abstraction                          │
│  • Context filtering and minimization                           │
└─────────────────────────────────────────────────────────────────┘
                             │
                             ▼ Transformed context only
┌─────────────────────────────────────────────────────────────────┐
│  Cloud Boundary                                                 │
│                                                                 │
│  • Receives non-identifying context only                        │
│  • Performs reasoning using external models                     │
│  • Never receives raw private data                              │
└─────────────────────────────────────────────────────────────────┘

This repository operates entirely on the local side of that boundary.

Security Model (v1.0)

Hard Guarantees

Within its execution scope, the SDK enforces:

  • ✓ No raw text serialization
  • ✓ No implicit network access
  • ✓ Explicit local-to-cloud boundary enforcement
  • ✓ Zero data retention by default

All guarantees apply only to SDK-controlled execution paths.

Trust Assumptions

The SDK assumes:

  • The host operating system is honest-but-curious
  • The runtime environment is not actively malicious

The SDK is not designed to be safe under fully compromised host conditions.

Experimental: Enclave Execution (Preview)

The attested tier uses an enclave runner (private @axiom-infra/enclave-runner). It is not part of the core v1.0 guarantee set and is not required to run the SDK.

Notes:

  • enclave: "auto" falls back to a simulator when the native runner is unavailable.
  • enclave: "required" fails if the native runner is unavailable.
  • Simulator mode provides no security guarantees and is for development only.

Repository Structure

axiom-core/
├── src/           # Core SDK implementation (v1.0)
├── demo/          # Demo script
├── artifacts/     # Example evidence/verdicts
├── docs/          # Design notes and specifications
├── tests/         # Unit and boundary tests
├── STATUS.md      # Consolidated project status
├── README.md
├── docs/architecture.md
├── docs/security.md
├── docs/roadmap.md
└── LICENSE

Contributing

This project maintains high standards for correctness and clarity. Contributions are welcome for improvements to semantic correctness, documentation quality, and developer ergonomics.

License

Axiom Core is released under the Apache 2.0 License.

This repository represents the open-core component of the Axiom system.

Links