PramΔαΉa is a preβverification protocol designed to verify content before it goes live, rather than after the fact. It provides a robust backend-integrated layer for content management systems (CMS), social platforms, and marketplaces to ensure that all user-generated content is checked and signed before publication.
ThreeβNode Architecture:
- Gateway node: Receives content submissions from the platform, orchestrates verification, and returns signed proofs.
- Text verifier node: Analyzes and verifies text-based content using AI and external fact sources.
- Media verifier node: Handles images, video frames, and other media for authenticity, manipulation, and context checks.
Key Protocol Features:
- Content hashing: Every submission is hashed for integrity and deduplication.
- Caching: Verified responses are cached for instant retrieval and reduced cost.
- Signed proofs: Each verification result is cryptographically signed by the protocol nodes.
- Trust tags: Attestations and trust-level tags are attached to content for downstream consumers and moderators.
Platforms integrate this protocol layer directly into their backend workflows to gate content before it is visible to end users, maximizing trust and minimizing the spread of misinformation.
- Azure VM deployment: The three-node protocol runs via Docker Compose on a single Azure VM for easy scaling and management.
- Azure OpenAI (GPTβ4oβmini): When enabled, the text verifier node uses GPTβ4oβmini for advanced LLM-based verification.
- Proof of execution: All actions are logged and responses (including LLM outputs) are cached for traceability.
- GCP support: Google Cloud Platform components (BigQuery caching, Cloud Run, Vision API) remain fully supported and are described below.
An Android App that provides one-tap fact verification from any mobile app via the system Share sheet, with transparent AI explanations and verified citations.
Click below to download and install the latest APK:
note: while downloading don't scan the app , it may stop the installation
One-tap fact verification from any mobile app via the system Share sheet enabling fast, reliable checks with minimal effort. Backed by Retrieval-Augmented Generation (RAG) for contextual accuracy and transparent AI explanations with verified citations. Built on Google Cloud for scalability, cost-efficiency, and trust. Designed for ease of use with fewer steps and seamless integration on Android.
We run an internal regression suite against the curated dataset in tests/misinformation_final.csv (texts, images, links).
The latest run produced:
- Overall accuracy: 75.00β―%
- Plot:
You can explore the test-reports in the /tests directory.
Honest status: These are early numbers. Weβre actively refining prompts, evidence retrieval, and media handling (especially video) to push accuracy well above 75β―%. Expect rapid iterations and model fine-tuning over the next releases.
TruthLens/
βββ api/ # Backend API (Cloud Run)
β βββ main.py # FastAPI application with integrated Vision API and Serper search
β βββ requirements.txt # Python dependencies
β βββ Dockerfile # Container configuration with async Vision calls support
βββ infra/ # Infrastructure configs
β βββ terraform/ # Terraform configurations
β βββ cloudbuild.yaml # Cloud Build config
β βββ api-gateway.yaml # API Gateway spec
βββ vision/ # Vision API integration for entity and face recognition
βββ cache/ # BigQuery caching layer for verification responses
βββ scripts/ # Deployment scripts
βββ docs/ # Documentation
- Python 3.11+
- Google Cloud SDK
- GCP Project with billing enabled
# Clone the repository
git clone https://github.com/channi23/OrangeLens.git
cd OrangeLens
# Setup your specific project (orange-lens-472108)
./scripts/setup-orange-lens.sh
# Start backend development server
./scripts/start-dev.sh# Deploy to Google Cloud
./scripts/deploy.sh- β One-tap verification from any Android app via Share sheet
- β Text and image verification using AI
- β Fast/Deep verification modes
- β Multi-language support (English, Hindi, Tamil)
- β Real-time metrics (latency, cost)
- β Transparent AI explanations
- β Verified citations from fact-check databases
- β Vision-based celebrity and object detection
- β Smart video frame sampling for improved authenticity verification
- β Cached verification responses for faster results
- β Clickable citations and collapsible sections in the app
- Android Client: Native Android app using system Share sheet
- Backend: Cloud Run with caching, API Gateway, Vertex AI Gemini, Google Cloud Vision API
- Data: BigQuery caching, Cloud Storage, Google Fact Check API
- Security: Secret Manager, API Keys/JWT
- Monitoring: Cloud Logging, Cloud Monitoring with latency and cache hit ratio tracking
- Infrastructure: Terraform, Cloud Build
~$200/month for 50k queries (covered by GCP credits)
./scripts/setup-dev.shFollow these steps to run the API locally for development.
- Configure environment
cd api
cp config.env.example .env
# Edit .env and set at least:
# GOOGLE_CLOUD_PROJECT=local-dev
# GOOGLE_CLOUD_LOCATION=us-central1
# GEMINI_MODE=vertex
# GEMINI_MODEL=gemini-2.5-flash-lite
# SERPER_API_KEY=YOUR_SERPER_API_KEY # optional news search fallback
# GEMINI_API_KEY=YOUR_GEMINI_API_KEY # only needed when using Express REST locally
# FACT_CHECK_API_KEY=YOUR_FACT_CHECK_API_KEY # optional (enables deep fact checks)- Install and run
python3 -m venv .venv
source .venv/bin/activate
pip install --upgrade pip
pip install -r requirements.txt
uvicorn main:app --reload --host 0.0.0.0 --port 8080- Quick tests
# Fast (text, image, hybrid verification)
curl -X POST http://localhost:8080/v1/verify \
-H 'Content-Type: application/json' \
-d '{"text":"The Earth orbits the Sun.","language":"en"}'
# Image (multipart, unauthenticated for dev)
curl -X POST http://localhost:8080/v1/verify-image-test \
-F 'text=What is shown?' -F 'language=en' -F 'image=@/path/to/photo.jpg'Notes
/v1/verifynow supports text, image, and hybrid verification with integrated Serper search and Vision-based entity detection.- Gemini requests default to Vertex Gemini 2.5 Flash Lite (service account auth). Set
GEMINI_MODE=vertexunless you specifically need the Express REST API. - Evidence retrieval first queries Google Fact Check Tools; if nothing is found, it falls back to a news search (Serper.dev) when
SERPER_API_KEYis configured. - Deep checks (or low confidence) can call Google Fact Check API when
FACT_CHECK_API_KEYis provided.
./scripts/test-api.shThis helper script requires
jqfor pretty-printing JSON. Install it viabrew install jq(macOS) or your distribution's package manager.
- GCP Project with billing enabled
- gcloud CLI installed and authenticated
- Required APIs enabled
# Set your project ID (already configured)
export PROJECT_ID="orange-lens-472108"
# Deploy everything
./scripts/deploy.sh- Enable APIs: Run the deployment script
- Create Infrastructure: Deploy Terraform configurations
- Build & Deploy API: Cloud Build + Cloud Run with automatic scaling and async Vision API calls support
- Configure Monitoring: Set up alerts and dashboards
# Test health endpoint
curl http://localhost:8080/healthz
# Test verification endpoint
curl -H "Authorization: Bearer test-key" \
-F "text=The Earth is round" \
-F "mode=fast" \
-F "language=en" \
http://localhost:8080/v1/verify- API Keys: Bearer token authentication
- Service Accounts: IAM-based permissions
- Data Encryption: All data encrypted at rest and in transit
- PII Protection: User data anonymized
- Retention Policies: Automatic data deletion
- Cloud Logging: Application logs
- Cloud Monitoring: Metrics and alerting
- BigQuery: Analytics and reporting
- Uptime Checks: Service availability
- Additional: Supports latency tracking and cache hit ratio logging for performance insights
TruthLens/
βββ api/ # Python FastAPI backend
β βββ main.py # Main API application with Vision API integration
β βββ simple_main.py # Simple development server
β βββ requirements.txt # Dependencies
β βββ Dockerfile # Container config with async Vision support
βββ vision/ # Vision API integration modules
βββ cache/ # BigQuery caching layer
β βββ cache_manager.py # Cache handling logic
βββ infra/ # Infrastructure
β βββ terraform/ # Terraform configs
β βββ cloudbuild.yaml # CI/CD config
β βββ api-gateway.yaml # API Gateway spec
βββ scripts/ # Deployment scripts
βββ deploy.sh # Production deployment
βββ setup-dev.sh # Development setup
βββ start-dev.sh # Start dev servers
- API: Add endpoints in
api/main.py - Vision: Add entity and face recognition features in
vision/ - Cache: Implement caching logic in
cache/ - Infrastructure: Update Terraform configs
- Monitoring: Add metrics and alerts including latency and cache hit ratio
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests
- Submit a pull request
π Suggestions? Email us here : orangxai@gmail.com
- Mobile app (iOS/Android)
- Browser extension
- Telegram bot
- WhatsApp integration
- Advanced analytics
- Custom fact-check sources
- API rate limiting
- Multi-tenant support
--------------------------------------------------------------------------------------------------------------------------------------------------
πͺ Windows Setup Guide (Single Terminal)
This section explains how to set up and run the OrangeLens/TruthLens API locally on Windows using a single PowerShell terminal. It complements the Linux/macOS steps above and does not replace them.
- Python 3.12 (Download from https://www.python.org/downloads/ and check "Add Python to PATH") the version has to be 3.12 as anything above will need you to separately install rust and cargo
- Google Cloud Project with required APIs enabled:
- Vertex AI API
- Cloud Storage API
- Secret Manager API
- BigQuery API
- A Service Account with roles:
- BigQuery Data Editor
- BigQuery Job User
- Secret Manager Secret Accessor
- Storage Object Admin
- Vertex AI User
- A JSON key for that service account (downloaded from Google Cloud Console) this is essential and is needed to be kept as a secret dont include it with the project files
git clone https://github.com/channi23/OrangeLens.git
cd OrangeLens\api# Create a virtual environment with Python 3.12
python -m venv .venv
# If scripts are blocked in PowerShell, bypass for this session
Set-ExecutionPolicy -Scope Process -ExecutionPolicy Bypass -Force
# Activate venv
.\.venv\Scripts\Activate.ps1python -m pip install --upgrade pip
pip install -r requirements.txt- In Google Cloud Console β IAM & Admin β Service Accounts, select your API service account.
- Open Keys tab β Add Key β Create new key β choose JSON.
- Download the key and move it to a safe folder (not tracked by git):
New-Item -ItemType Directory -Force "C:\Users\<YourName>\OrangeLensKeys"
Move-Item "$env:USERPROFILE\Downloads\truth-lens-service-key.json" `
"C:\Users\<YourName>\OrangeLensKeys\truth-lens-service-key.json"Add the folder to .gitignore to avoid committing keys:
# in .gitignore
/OrangeLensKeys/*.json
Set the environment variable in the same terminal:
$env:GOOGLE_APPLICATION_CREDENTIALS="C:\Users\<YourName>\OrangeLensKeys\truth-lens-service-key.json"Run this quick test in the same terminal:
python - <<'PY'
from google.cloud import storage
client = storage.Client()
print("β
Connected to project:", client.project)
PYYou should see your project ID (for example, orange-lens-472108).
uvicorn main:app --reload --host 127.0.0.1 --port 8080When it starts, visit:
- API Root: http://127.0.0.1:8080
- Interactive Docs: http://127.0.0.1:8080/docs
If you are also running the Android app, set the API URL accordingly.
-
path to .JSON keys in gcloud (Googlecloud->console->secret manager-> create secret->now make the key or if key exists click on the three dots and copy the json into a file )
-
DefaultCredentialsError: Your default credentials were not found
- Double-check that
$env:GOOGLE_APPLICATION_CREDENTIALSis set correctly in the current terminal. - The path must point to your
.jsonkey file. - If you open a new terminal, re-run
Activate.ps1and set$env:GOOGLE_APPLICATION_CREDENTIALS=...again.
- Double-check that
-
gcloud: command not found
- You do not need the gcloud CLI if you already have a JSON key file. Just set the environment variable as shown above.
- Never commit the
.jsonkey file to Git, or share it to other unauthorized people as they can manipulate the project files. - Rotate keys regularly and delete unused keys from GCP.
- For production, consider Secret Manager or Workload Identity Federation instead of storing JSON keys locally.
Create a start-api.ps1 script in the project root with:
# start-api.ps1
.\.venv\Scripts\Activate.ps1
$env:GOOGLE_APPLICATION_CREDENTIALS="C:\Users\<YourName>\OrangeLensKeys\truth-lens-service-key.json"
uvicorn main:app --reload --host 127.0.0.1 --port 8080
Then run everything with:
.\start-api.ps1This provides a single-terminal workflow: activate venv β set credentials β run server on port 8080.