Thoth Framework
Thoth Framework is a framework to create and manage the Internal Developer Platform tasks for infrastructure, DevOps, DevSecOps, software developers, and platform engineering teams aligned with business objectives:
| Business Objective |
Mechanism |
Implementation |
| Minimize mistakes |
Meaningful defaults |
Templates |
| Increase velocity |
Automation |
IaC Scripts |
| Improve products |
Fill product gaps |
New components |
| Enforce compliance |
Restrict choices |
Wrappers |
| Reduce lock-in |
Abstraction |
Service layers |

ThothCTL
The CLI tool for accelerating IaC adoption, enabling reuse, and interacting with the Internal Developer Platform.
Commands
| Command |
Description |
init |
Initialize and configure projects, spaces, environments |
check |
Validate IaC structure, cost analysis, blast radius, drift detection |
scan |
Security scanning with Checkov, Trivy, KICS, OPA |
inventory |
Dependency tracking, version analysis, professional reports |
document |
Auto-generate documentation for IaC modules |
generate |
Generate components and stacks from rules |
project |
Convert, upgrade, and manage projects |
ai-review |
Multi-agent AI security analysis and PR decisions |
mcp |
Model Context Protocol server for AI assistant integration |
list / remove |
Manage projects and spaces |
upgrade |
Upgrade thothctl to latest version |
Supported IaC Frameworks
| Framework |
Init |
Scan |
Inventory |
Check |
Document |
Generate |
| Terraform |
✅ |
✅ |
✅ |
✅ |
✅ |
✅ |
| OpenTofu |
✅ |
✅ |
✅ |
✅ |
✅ |
✅ |
| Terragrunt |
✅ |
✅ |
✅ |
✅ |
✅ |
— |
| CDK v2 |
— |
— |
✅ |
— |
— |
— |
Use Cases
- Template Engine — Build, configure, and scaffold projects from templates
- Policy as Code — Unified governance: structure rules, OPA/Rego security policies, drift policies, and AI decision thresholds
- AI-Powered Development (AI-DLC) — MCP integration with AI assistants for natural language IaC operations
- AI Agent for IaC Security — Multi-agent orchestrator with auto-decision engine, code fixes, and CI/CD API
- DevSecOps SDLC — 8-phase lifecycle with scanning, cost analysis, blast radius, and drift detection
- Platform Engineering Templates — Create and publish reusable templates for your organization
- Space Management — Organize projects into spaces with shared configuration
| Platform |
Status |
Shell Autocomplete |
| Linux |
✅ |
Bash / Zsh / Fish |
| macOS |
✅ |
Bash / Zsh / Fish |
| Windows 10/11 |
✅ |
PowerShell |
Requirements
- Python >= 3.8
graphviz (for dependency graphs)
- Docker (optional, for KICS scanner)
# Linux/Debian
sudo apt install graphviz -y
# macOS
brew install graphviz
# Windows
choco install graphviz