Metadata-Version: 2.4
Name: contcode
Version: 0.1.1
Summary: Offline verification suite for local LLM workflows
Author: contcode maintainers
License: MIT
Keywords: offline,audit,network,security
Classifier: Development Status :: 3 - Alpha
Classifier: Environment :: Console
Classifier: License :: OSI Approved :: MIT License
Classifier: Operating System :: POSIX :: Linux
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3 :: Only
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Programming Language :: Python :: 3.13
Classifier: Topic :: Security
Classifier: Topic :: System :: Networking :: Monitoring
Requires-Python: >=3.10
Description-Content-Type: text/markdown

# contcode

Offline verification suite for local LLM workflows.

Runs a read-only inventory + defense-in-depth check on a host that talks to
a local OpenAI-compatible endpoint. Zero runtime dependencies, stdlib only.

## Install

```bash
pip install --user contcode
```

## Use

```bash
contcode recon              # one-shot environment scan
contcode verify --soft-only # run non-privileged tests
contcode verify             # full test suite (sudo enables critical L1 tests)
contcode pcap --duration 30 # optional: capture + flow analysis (needs tcpdump)
contcode report             # list recent reports
contcode selftest           # package integrity
```

Reports are written to `/tmp/contcode/` (override with
`CONTCODE_REPORT_DIR=...`).

## Config

Whitelist overrides (format: one entry per line, `HOST[:PORT]` or `CIDR[:PORT]`):

```
~/.config/contcode/whitelist.txt
```

Model match needle (endpoint probe looks for this substring in `/v1/models`):

```bash
export CONTCODE_MODEL_NEEDLE="my-model-id"
```

## Exit codes (verify)

| code | meaning |
|------|---------|
| 0 | all pass |
| 1 | non-critical fail |
| 2 | critical fail |
| 3 | partial (skipped, e.g. no sudo) |

## License

MIT.
