Sandboxed plugin VM with typed capabilities, deterministic replay, and time-travel debugging — written in Rust.

Decentralized OS for multi-tool agent swarms.

Governed AI agent runtime with a local-first desktop app + CLI. Chat with any model (Claude, OpenAI, Groq, Ollama, LM Studio); every action passes Intent → Proposal → Commit through signed capability writs, risk-gated approvals, and a replayable hash-chained ledger. Watch it think in the Mind graph. Cognition proposes; the runtime governs.

Compile-time capability-based security for Rust

Zero-trust, capability-based Rust microkernel targeting formal verification. Tri-arch (x86_64 / AArch64 / RISC-V). Sovereign and generative: no telemetry, user owns keys and data. Early-stage — see STATUS.md. Inspired by seL4, Hubris, and Redox.

A Rust-based research microkernel operating system for RISC-V, focused on capability-based security, deterministic testing, and a Service-Plane userspace.

A deterministic, distributed, capability-safe execution fabric for agent workflows with verifiable replay and certified audit trails

Deterministic, auditable, capability-safe autonomous agent framework in Rust. Event-sourced, replayable, with governed self-evolution.

A local-first WebAssembly sandbox runtime with capability-based security

A data-driven, cryptographically signed, registry-backed AI operating system, with capability-scoped execution and graph-executable workflows — living inside your projects, running through a recursive MCP that goes as deep as you dare.

VAC Protocol - Capability-based security for AI agents. Task-scoped credentials, receipt-based state, instant revocation.

Secure-execution domain repository providing modular runtime-security components for sandboxing, capability enforcement, cryptographic isolation, audit logging, and policy-driven execution control — designed for building hardened application and infrastructure runtimes.

Secure execution substrate for immutable agent skills with explicit capabilities, cryptographic provenance, and auditable deterministic runs.

Memkeeper: Warden — a capability broker and execution gate for AI coding agents. Deny-by-default policy over filesystem, exec, and network actions, with an audit log. A guardrail, not a sandbox.

Rust microkernel for GPU-isolated AI inference

Rust microkernel OS targeting x86‑64 and RISC-V

A capability-based, Rust-native kernel for the AI agent era. The agent is the interface. The kernel is the guard.

Edge computing demo with Rust + WASM. Features URL shortener, rate limiter, and capability-based security—all running on Cloudflare Workers. Interactive Leptos dashboard with live stats. Demonstrates Workers KV, edge-based rate limiting, and WASI security patterns.

C, but safe and agent-friendly.

A compiled language whose author is a coding agent and whose auditor is a human: explicit effects & capabilities, inferred error sets, content-addressed reuse, and layered verification (runtime contracts + SMT). Built as an agent-driven query service.