QWED GitHub Action

Neurosymbolic verification for your CI/CD pipeline

What is QWED?

QWED combines Neural Networks (LLMs) with Symbolic Reasoning (SymPy, Z3) to provide deterministic verification of AI outputs. Use cases:

✅ Verify mathematical calculations in PRs
✅ Check logical reasoning in documentation
✅ Detect unsafe code patterns
✅ Validate LLM outputs before deployment

Quick start

Add this to your .github/workflows/verify.yml:

name: Verify with QWED

on: [push, pull_request]

jobs:
  verify:
    runs-on: ubuntu-latest
    steps:
      - name: Verify Calculation
        uses: QWED-AI/qwed-verification@v5.0.0
        with:
          api_key: ${{ secrets.QWED_API_KEY }}
          action: verify
          engine: math
          query: "x**2 + 2*x + 1 = (x+1)**2"

Extension GitHub Actions

Use these extension-specific actions when you want domain-focused checks in your pipeline.

Icon	Action	Description
💰	QWED Finance Guard	Verify financial calculations and compliance signals before merging.
⚖️	QWED Legal Verification	Validate legal reasoning, deadlines, citations, and clause consistency.
🧾	QWED Protocol Verification	Verify protocol-level logic and deterministic rule conformance.
🛒	QWED Commerce Auditor	Audit checkout math, pricing, and transaction integrity in commerce flows.

Inputs

Input	Description	Required	Default
`api_key`	QWED API key (optional for local mode)	No	-
`action`	Action type: `verify`, `scan-secrets`, `scan-code`, `verify-shell`	No	`verify`
`provider`	LLM provider (`openai`, `anthropic`, `gemini`)	No	-
`model`	Model name (e.g., `gpt-4o`, `claude-sonnet-4-20250514`)	No	-
`mask_pii`	Mask PII in inputs and outputs	No	`false`
`query`	The user query (e.g., “Derivative of x^2”). Required for `math` and `logic` engines.	Conditional	-
`llm_output`	The LLM output to verify. Required for the `code` engine.	Conditional	-
`engine`	Verification engine: `math`, `logic`, `code`, `sql`, `shell`	No	`math`
`paths`	Glob patterns for files to scan (e.g., `*/.py,*/.env`)	No	`.`
`output_format`	Output format: `text`, `json`, `sarif`	No	`text`
`fail_on_findings`	Fail the action if security issues are found	No	`true`

Each engine requires different inputs:

math — requires query (passed as the expression to verify)
logic — requires query
code — requires llm_output (passed as the code to analyze)

Provider and model selection

New in v5.0.0

You can now specify which LLM provider and model the action uses. When you pass api_key, QWED automatically maps it to the correct provider-specific environment variable (OPENAI_API_KEY, ANTHROPIC_API_KEY, or GOOGLE_API_KEY) based on your provider selection.

- name: Verify with Claude
  uses: QWED-AI/qwed-verification@v5.0.0
  with:
    api_key: ${{ secrets.ANTHROPIC_API_KEY }}
    provider: anthropic
    model: claude-sonnet-4-20250514
    action: verify
    engine: math
    query: "sqrt(144) = 12"

PII masking

Set mask_pii: "true" to automatically redact personally identifiable information (email addresses, phone numbers, SSNs) from inputs and outputs before they reach the LLM.

- name: Verify with PII masking
  uses: QWED-AI/qwed-verification@v5.0.0
  with:
    api_key: ${{ secrets.QWED_API_KEY }}
    mask_pii: "true"
    action: verify
    engine: logic
    query: "User john@example.com claims order total is correct"

Outputs

Output	Description
`verified`	`true` if verification passed or no issues found
`explanation`	Detailed proof or error explanation
`findings_count`	Number of security issues found (for scan modes)
`badge_url`	URL for QWED verified badge
`sarif_file`	Path to SARIF output file (if `output_format=sarif`)

Examples

Verify math in PRs

- name: Check Math
  uses: QWED-AI/qwed-verification@v5.0.0
  with:
    api_key: ${{ secrets.QWED_API_KEY }}
    action: verify
    engine: math
    query: "2**10 = 1024"

Verify logic

- name: Check Logic
  uses: QWED-AI/qwed-verification@v5.0.0
  with:
    api_key: ${{ secrets.QWED_API_KEY }}
    action: verify
    engine: logic
    query: "(AND (GT x 5) (LT x 10))"

Check code security

- name: Security Check
  uses: QWED-AI/qwed-verification@v5.0.0
  with:
    api_key: ${{ secrets.QWED_API_KEY }}
    action: verify
    engine: code
    llm_output: "eval(user_input)"

Scan files with SARIF output

- name: Scan Code
  uses: QWED-AI/qwed-verification@v5.0.0
  with:
    api_key: ${{ secrets.QWED_API_KEY }}
    action: scan-code
    paths: "**/*.py"
    output_format: sarif
    fail_on_findings: "true"

Privacy & Security

🔒 PII Masking: Automatically mask sensitive data (emails, SSNs, credit cards)
🏠 Local Option: Use local LLMs (Ollama) for zero cloud exposure
🔐 API Keys: Use GitHub Secrets for secure credential management
✅ Open Source: Full transparency, no black boxes

How It Works

Your Query
    ↓
LLM Response (GPT-4, Claude, etc.)
    ↓
Symbolic Verification (SymPy, Z3, AST)
    ↓
✅ Deterministic Proof or ❌ Verification Failure

Example:

Query: “What is the derivative of x^2?”
LLM says: “2x”
SymPy computes: diff(x**2, x) = 2*x
QWED: ✅ MATCH! Verified with 100% confidence

Requirements

API Keys (choose one):

OpenAI: OPENAI_API_KEY
Anthropic: ANTHROPIC_API_KEY
Google: GOOGLE_API_KEY

Or use local LLMs (Ollama) for free!

Documentation

Support

Issues: GitHub Issues
PyPI: qwed
Twitter: @rahuldass29

License

Apache 2.0 - See LICENSE

Made with 💜 by QWED-AI

Production path

Deployment

CI/CD

Security & Compliance

What is QWED?

Quick start

Extension GitHub Actions

Inputs

Provider and model selection

PII masking

Outputs

Examples

Verify math in PRs

Verify logic

Check code security

Scan files with SARIF output

Privacy & Security

How It Works

Requirements

Documentation

Support

License

Production path

Deployment

CI/CD

Security & Compliance

​What is QWED?

​Quick start

​Extension GitHub Actions

​Inputs

​Provider and model selection

​PII masking

​Outputs

​Examples

​Verify math in PRs

​Verify logic

​Check code security

​Scan files with SARIF output

​Privacy & Security

​How It Works

​Requirements

​Documentation

​Support

​License

What is QWED?

Quick start

Extension GitHub Actions

Inputs

Provider and model selection

PII masking

Outputs

Examples

Verify math in PRs

Verify logic

Check code security

Scan files with SARIF output

Privacy & Security

How It Works

Requirements

Documentation

Support

License