Skip to main content
QWED v5.1.0 Agent State Governance is now live — AgentStateGuard for deterministic state verification, plus fail-closed hardening across math, logic, code execution, and schema validation. See what’s new →

What is QWED?

QWED (Query With Evidence & Determinism) is a trust boundary for AI systems:
  • LLMs can translate user intent into structured claims.
  • QWED verifies those claims with deterministic engines before execution or response.
  • You get proof-backed outcomes instead of probability-only confidence.
QWED is designed for LLM verification, AI agent security, verified tool calls, prompt injection defense, and deterministic transaction verification in high-stakes workflows.
“Do not trust generated output. Verify it.”

Explore common verification problems

LLM verification

Learn how formal verification for LLMs differs from prompting, RAG, and output formatting.

AI agent security

Add pre-execution checks, policy enforcement, and budget controls for agent actions.

Prompt injection defense

Harden your stack against prompt injection, exfiltration, and unsafe execution paths.

MCP security

Secure Model Context Protocol tools with deterministic verification and tool schema checks.

When to use QWED first

Math and Logic

Verify equations, constraints, and logical claims before they reach users.

Code and SQL

Catch unsafe patterns, injection risks, and structural errors before execution.

Agent Tool Calls

Inspect actions and payloads before external systems are touched.

High-Stakes Workflows

Add deterministic checkpoints for finance, legal, tax, and regulated systems.

Quick Start (5 minutes)

pip install qwed

# Verify a simple claim
qwed verify "Is 2+2=5?"
# -> CORRECTED: The answer is 4

# Verify logic constraints
qwed verify-logic "(AND (GT x 5) (LT y 10))"
# -> SAT: {x=6, y=9}
1

Install and configure

Follow Installation and set your provider with LLM Configuration.
2

Run first verification

Use Quick Start to validate math, logic, code, and SQL.
3

Integrate into production flow

Use Integration Getting Started and Production Deployment.

Verification engines at a glance

Math

SymPy-based symbolic verification.

Logic

Z3 SAT/SMT verification with models.

Code

AST and symbolic checks for risky behavior.

SQL

Parser-backed SQL safety and validation.

Schema

Type and shape validation for structured outputs.

Taint

Data-flow tracking for untrusted inputs.

See all engines

Explore core, analysis, and specialized engines.

What’s new in v5.1.0

AgentStateGuard

Deterministic structural and semantic verification of agent state payloads with governed atomic commits. Learn more →
Legacy CodeExecutor blocked, unknown tools default-denied, bounded math tolerance, ambiguous expressions rejected, schema uniqueItems fail-closed, and identity sampling rejected.
LOOP-004 state-aware replay protection detects agents repeating actions on unchanged world state.
  1. Core Concepts
  2. Architecture Overview
  3. SDKs Overview
  4. API Overview
  5. Integration Guide