Skip to content
Rotifer Rotifer Protocol

Trust Badges

Trust badges let creators and users verify the safety, reputation, and fitness of AI Skills and Genes at a glance. Powered by the V(g) security scanner and Rotifer Protocol’s reputation system.

Badge Types

Section titled “Badge Types”
TypeLabelData SourceWhat it Shows
Safetyrotifer safetyV(g) static analysis grade (A/B/C/D/? / skipped)Code security scan result
Reputationrotifer reputationGene reputation_score from RegistryAggregate trust score
Fitnessrotifer F(g)Arena fitness value F(g)Latest Arena competition score
Creatorrotifer reputationCreator reputation scoreAuthor credibility

Safety Badge States

Section titled “Safety Badge States”
StateDisplayMeaning
A / B / C / DColoured (green → red)V(g) scan completed; grade reflects findings
?GreyNo code files found (pure-config / pure-prompt Skill)
skippedGreyPublisher used rotifer publish --skip-vg to upload a placeholder without running the scan — interpret as “no safety claim made”
not scannedGreyNo badge has been uploaded for this gene yet

Quick Start

Section titled “Quick Start”

Using the Badge Generator

Section titled “Using the Badge Generator”

The easiest way to create a badge is the Badge Generator:

  1. Select a badge type (Safety / Reputation / Fitness / Creator)
  2. Enter the identifier (Skill name, Gene name, or username)
  3. Click Generate to preview
  4. Copy the Markdown snippet into your README

Using the CLI

Section titled “Using the CLI”

Run a V(g) scan and embed the safety badge:

Terminal window
$ rotifer vg ./my-skill --id @alice/search-web

Then add to your README:

![Rotifer Safety](https://img.shields.io/endpoint?url=https://badge.rotifer.dev/safety/@alice/search-web)

Automatic Upload via rotifer publish

Section titled “Automatic Upload via rotifer publish”

Since v0.9, rotifer publish automatically runs a V(g) scan and uploads the safety badge as part of the publish flow (Phase 1):

Terminal window
$ rotifer publish my-gene                # default: scan + upload self-reported badge
$ rotifer publish my-gene --skip-vg      # skip scan, upload "skipped" placeholder badge
$ rotifer publish my-gene --skip-security  # skip pre-publish checks entirely (no badge upload)

ROTIFER_BADGE_TOKEN must be set in the environment for badge upload; otherwise the publish proceeds and the upload is silently skipped. Badge upload failures are non-blocking — publish succeeds even if the Badge Worker is unreachable.

Embedding Badges

Section titled “Embedding Badges”

All badges render through shields.io using the Endpoint Badge format.

Markdown

Section titled “Markdown”
![Safety](https://img.shields.io/endpoint?url=https://badge.rotifer.dev/safety/@author/skill-name)
![Reputation](https://img.shields.io/endpoint?url=https://badge.rotifer.dev/gene/@author/gene-name)
![Fitness](https://img.shields.io/endpoint?url=https://badge.rotifer.dev/gene/@author/gene-name/fitness)
![Creator](https://img.shields.io/endpoint?url=https://badge.rotifer.dev/dev/username)

HTML

Section titled “HTML”
<img src="https://img.shields.io/endpoint?url=https://badge.rotifer.dev/safety/@author/skill-name" alt="Rotifer Safety" />

Badge Styles

Section titled “Badge Styles”

Append &style= to customize appearance:

StyleParameter
Flat (default)&style=flat
Flat Square&style=flat-square
Plastic&style=plastic
For the Badge&style=for-the-badge

Example:

![Safety](https://img.shields.io/endpoint?url=https://badge.rotifer.dev/safety/@author/skill-name&style=for-the-badge)

API Reference

Section titled “API Reference”

The badge API is hosted at badge.rotifer.dev and returns shields.io Endpoint Badge compatible JSON.

GET /safety/:skill_id

Section titled “GET /safety/:skill_id”

Returns the V(g) safety grade for a Skill.

ParameterDescription
skill_idSkill identifier (e.g. @author/skill-name)

GET /gene/:identifier

Section titled “GET /gene/:identifier”

Returns the reputation score for a Gene.

ParameterDescription
identifierGene UUID, plain name, or qualified name (@owner/gene-name)

GET /gene/:identifier/fitness

Section titled “GET /gene/:identifier/fitness”

Returns the Arena fitness score F(g) for a Gene.

ParameterDescription
identifierGene UUID, plain name, or qualified name (@owner/gene-name)

GET /dev/:username

Section titled “GET /dev/:username”

Returns the creator reputation score.

ParameterDescription
usernameCreator username

Response Format

Section titled “Response Format”

All endpoints return the same JSON schema:

{
  "schemaVersion": 1,
  "label": "rotifer safety",
  "message": "A",
  "color": "brightgreen",
  "cacheSeconds": 3600
}

When the identifier is not found:

{
  "schemaVersion": 1,
  "label": "rotifer safety",
  "message": "not found",
  "color": "lightgrey",
  "cacheSeconds": 3600
}

Gene Identifier Resolution

Section titled “Gene Identifier Resolution”

The /gene/ endpoints accept three identifier formats:

FormatExampleResolution
UUID550e8400-e29b-41d4-a716-446655440000Direct lookup
Qualified name@alice/search-webQuery by owner + name
Plain namesearch-webQuery by name (latest published)

Caching & CORS

Section titled “Caching & CORS”
  • All responses include Cache-Control: public, max-age=3600 (1 hour cache)
  • CORS is enabled for all origins (Access-Control-Allow-Origin: *)