Allow customers to see Python code, but secure modification

Question

Here's the deal: I have a Python application for business written in Django. It's not in Cloud, customers should install them at their own servers.

However, Brazil IT laws for tax payment calculation softwares forces me to homologate every piece of code (in this case, every file.py). They generate a MD5 hash and if a customer of mine is running a modified version, I have to pay a fine and should even be sued by Government.

I really don't care if my source code is available to everyone. Really. I just want to guarantee no changes at the source code.

Does anyone have an idea to protect the code? Customers should have root access to servers, so a simple "statement of compliance" should not guarantee anything...

Answer 1

This is not really suited for StackOveflow; but the suggestion I would make is to take the parts of your code that are subject to audit; write them as a Python C module which is then imported. You can ship the compiled module along with your normal, unmodified django application.

This would only work if certain parts of your code are subject to this audit/restriction and not the entire application.

Your only other recourse is to host it yourself and provide your own audit/controls on the source.