NextXus
Truth Verification System
GitHub
Storage Format · NextXus YamlDB v1.1

Plain Text. Append-Only. Forever Readable.

Every record in the NextXus public ledger is a plain-text YAML file on disk. No database service. No driver. No vendor. If our servers go dark tomorrow, you can still read the entire record in Notepad.

Download the full ledger (.yaml)Read the formal schema
Why YAML

Four guarantees no database can offer.

The decision to store the public ledger as plain-text YAML was not made for convenience. It is the technical expression of an editorial principle: a system that asks the public to trust its records must be one where the public can read those records directly, without our help.

01
Human-Readable

Anyone, any tool, any operating system, any era. The YAML 1.2 specification was finalized in 2009 and is implemented in every mainstream language. You can read a verification record in vi, in Notepad, on a phone, on a printout.

02
Vendor-Free

Zero runtime dependencies. No driver, no service, no SDK, no daemon. If NextXus is sunset, deprecated, or hacked, the data outlives the application. The format is not a hostage to a single company.

03
Triple-Layer Integrity

Every file's SHA-256 is recorded in MANIFEST.yaml — independent of the chain. The chain itself links entries with a separate SHA-256. (Optional third layer: git commit pinning when the data directory is mirrored to a public repository.)

04
Future-Proof

Every file declares its format version in a preamble header. Every collection's schema is auto-generated at startup as schema.yaml. A future engineer can reconstruct a compatible reader from those two artifacts alone, without reading a line of NextXus source.

If the System Fails

What survives. What changes. What you can do.

If the server dies

The data directory is a flat tree of YAML files. Any backup, archive, or git clone of /app/data/ is a complete, readable, verifiable copy. No restore procedure required — open and read.

If NextXus is sunset

The press kit includes the full schema (schema.yaml) and an integrity-verification script under 10 lines. A journalist can run that script years later, against the YAML files they downloaded today, and prove the chain.

If the storage system changes

Migration is a cat-and-paste away. YAML maps trivially onto JSON (one yaml.safe_load + json.dumps), onto Postgres JSONB, onto SQLite via JSON1, onto Parquet, onto S3. No proprietary format conversion is ever required.

Built-in CLI
  • python -m yamldb_cli verify
  • python -m yamldb_cli stats
  • python -m yamldb_cli list ledger
  • python -m yamldb_cli search REGEX
  • python -m yamldb_cli snapshot
  • python -m yamldb_cli rebuild-manifest
Public API
  • GET /api/integrity
  • GET /api/storage
  • GET /api/storage/schema
  • GET /api/ledger/export.yaml
  • GET /api/ledger/export.json
  • GET /api/ledger/export.csv
Migration paths
  • → JSON: one-line transform.
  • → Postgres JSONB: drop into a table without schema change.
  • → SQLite, Parquet, S3: round-trip safely.
  • → Git: the data directory is a valid repository as-is.
Verify Without Us

10 lines of Python. No NextXus code. No trust required.

Download the YAML export. Run this script. If the script prints OK, every record file's SHA-256 still matches the manifest, and the hash chain is intact. The system is transparent enough that you do not need to trust the system.

import yaml, hashlib, pathlib

# 1. Load the manifest
m = yaml.safe_load(pathlib.Path('MANIFEST.yaml').read_text())

# 2. Recompute SHA-256 of every record file
ok = True
for rel, meta in m['files'].items():
    p = pathlib.Path(rel)
    if not p.exists():
        print('MISSING', rel); ok = False; continue
    sha = hashlib.sha256(p.read_bytes()).hexdigest()
    if sha != meta['sha256']:
        print('TAMPERED', rel); ok = False

print('OK' if ok else 'INTEGRITY FAILURE')