{"id":47726957,"url":"https://github.com/diveprotocol/opendive-client","last_synced_at":"2026-04-06T00:01:01.759Z","repository":{"id":348376656,"uuid":"1196224647","full_name":"diveprotocol/opendive-client","owner":"diveprotocol","description":"Python library and CLI for Domain-based Integrity Verification Enforcement (DIVE)","archived":false,"fork":false,"pushed_at":"2026-04-01T16:50:48.000Z","size":84,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-03T06:29:42.463Z","etag":null,"topics":["dive-client","dive-protocol","python-cli","python-library","python3"],"latest_commit_sha":null,"homepage":"https://diveprotocol.org","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/diveprotocol.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":"CITATION.cff","codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":"ROADMAP.md","authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"github":"mateocallec"}},"created_at":"2026-03-30T13:47:08.000Z","updated_at":"2026-04-01T16:48:30.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/diveprotocol/opendive-client","commit_stats":null,"previous_names":["diveprotocol/opendive-client"],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/diveprotocol/opendive-client","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/diveprotocol%2Fopendive-client","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/diveprotocol%2Fopendive-client/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/diveprotocol%2Fopendive-client/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/diveprotocol%2Fopendive-client/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/diveprotocol","download_url":"https://codeload.github.com/diveprotocol/opendive-client/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/diveprotocol%2Fopendive-client/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31379453,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-03T21:40:47.592Z","status":"ssl_error","status_checked_at":"2026-04-03T21:40:05.436Z","response_time":107,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dive-client","dive-protocol","python-cli","python-library","python3"],"created_at":"2026-04-02T20:45:32.655Z","updated_at":"2026-04-03T22:01:37.854Z","avatar_url":"https://github.com/diveprotocol.png","language":"Python","funding_links":["https://github.com/sponsors/mateocallec"],"categories":[],"sub_categories":[],"readme":"# OpenDIVE: Python Client for Domain-based Integrity Verification Enforcement (DIVE)\n\n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)\n[![Python: 3.8+](https://img.shields.io/badge/Python-3.8+-blue.svg)](https://www.python.org/)\n[![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-orange.svg)](https://github.com/diveprotocol/opendive-client/releases)\n[![Status: Alpha](https://img.shields.io/badge/Status-Alpha-red.svg)](https://github.com/diveprotocol/opendive-client)\n\n**OpenDIVE** is a Python client library for the **DIVE protocol** (Domain-based Integrity Verification Enforcement), a cryptographic protocol that leverages **DNSSEC** to verify the integrity and authenticity of web resources. DIVE operates as an additional security layer above HTTP/HTTPS, ensuring that resources are signed and validated against DNS-published keys.\n\n---\n\n## Features\n\n- **DNSSEC-backed verification**: Uses DNS TXT records (`_dive`, `_divekey`) to publish policies and public keys.\n- **Cryptographic signatures**: Supports **Ed25519** and **Ed448** for signing, and **SHA-256/384/512** for hashing.\n- **CLI tool**: Includes commands for verification, key generation, signing, and DNS inspection.\n- **Incremental deployment**: Works alongside existing infrastructure without breaking non-DIVE clients.\n- **Reporting**: Sends verification failure reports to a configurable endpoint.\n\n---\n\n## Installation\n\n### From PyPI (Alpha Release)\n\n```bash\npip install opendive-client\n```\n\n### From Source\n\n```bash\ngit clone https://github.com/diveprotocol/opendive-client.git\ncd opendive-client\npip install -e .\n```\n\n### Dependencies\n\n- Python 3.8+\n- `dnspython` (DNSSEC resolution)\n- `cryptography` (Ed25519/Ed448 support)\n- `httpx` (HTTP client)\n- `click` (CLI)\n\n---\n\n## Usage\n\n### CLI Commands\n\nOpenDIVE provides a CLI for common operations:\n\n```bash\n# Verify a resource\nopendive verify https://example.com/file.tar.gz\n\n# Download a resource (only if DIVE verification passes)\nopendive download https://example.com/file.tar.gz\n\n# Generate a key pair\nopendive keygen --alg ed25519 --key-id mykey --domain example.com\n\n# Sign a file\nopendive sign myfile.tar.gz --private-key \u003cbase64_private_key\u003e --key-id mykey\n\n# Inspect DNS records\nopendive dns example.com --key-id mykey\n```\n\n### Python Library\n\n```python\nfrom dive.client import DiveClient\n\nclient = DiveClient(require_dnssec=True)\nresult = client.verify(\"https://example.com/file.tar.gz\")\n\nif result.accepted:\n    print(\"Resource is authentic!\")\nelse:\n    print(f\"DIVE rejected resource: {result.failure_reason}\")\n```\n\n---\n\n## Documentation\n\n### DIVE Protocol\n\n- [Draft RFC](https://datatracker.ietf.org/doc/draft-callec-dive/) (Work in Progress)\n- [DIVE Website](https://diveprotocol.org)\n\n### OpenDIVE API\n\n- [CLI Reference](docs/cli.md) (TODO)\n- [Python API](docs/api.md) (TODO)\n\n---\n\n## Development\n\n### Running Tests\n\n```bash\npytest tests/\n```\n\n### Contributing\n\nPull requests are welcome! For major changes, please open an issue first.\n\n---\n\n## License\n\nMIT License. See [LICENSE](LICENSE) for details.\n\n---\n\n## Security\n\nFor security issues, see [SECURITY.md](SECURITY.md).\n\n---\n\n## Contact\n\n- **Author**: Matéo Florian CALLEC\n- **Email**: mateo@callec.net\n- **GitHub**: [@diveprotocol](https://github.com/diveprotocol)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdiveprotocol%2Fopendive-client","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdiveprotocol%2Fopendive-client","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdiveprotocol%2Fopendive-client/lists"}