{"id":49429309,"url":"https://github.com/shiroonigami23-ui/aegisos","last_synced_at":"2026-04-29T11:05:19.541Z","repository":{"id":349321694,"uuid":"1201887087","full_name":"shiroonigami23-ui/AegisOS","owner":"shiroonigami23-ui","description":"AegisOS_security_first_lightweight_customizable_open_source_operating_system","archived":false,"fork":false,"pushed_at":"2026-04-14T05:43:09.000Z","size":527,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-14T06:30:53.732Z","etag":null,"topics":["customization","kernel","lightweight","open-source","operating-system","osdev","privacy","security","systems-programming"],"latest_commit_sha":null,"homepage":null,"language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/shiroonigami23-ui.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":"docs/ROADMAP.md","authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-04-05T09:51:03.000Z","updated_at":"2026-04-14T05:43:11.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/shiroonigami23-ui/AegisOS","commit_stats":null,"previous_names":["shiroonigami23-ui/aegisos"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/shiroonigami23-ui/AegisOS","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shiroonigami23-ui%2FAegisOS","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shiroonigami23-ui%2FAegisOS/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shiroonigami23-ui%2FAegisOS/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shiroonigami23-ui%2FAegisOS/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/shiroonigami23-ui","download_url":"https://codeload.github.com/shiroonigami23-ui/AegisOS/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shiroonigami23-ui%2FAegisOS/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32422602,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-29T06:29:02.080Z","status":"ssl_error","status_checked_at":"2026-04-29T06:29:00.631Z","response_time":110,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["customization","kernel","lightweight","open-source","operating-system","osdev","privacy","security","systems-programming"],"created_at":"2026-04-29T11:05:18.312Z","updated_at":"2026-04-29T11:05:19.531Z","avatar_url":"https://github.com/shiroonigami23-ui.png","language":"C","funding_links":[],"categories":[],"sub_categories":[],"readme":"# AegisOS\n\nSecure like iOS, lightweight and customizable like Linux, compatible like Windows, polished like macOS, and hardware-flexible like Android with adbanced and fastest kernel algorithm that supports att hardware lvl\n\n[![CI](https://github.com/shiroonigami23-ui/AegisOS/actions/workflows/ci.yml/badge.svg)](https://github.com/shiroonigami23-ui/AegisOS/actions/workflows/ci.yml)\n[![Docs](https://github.com/shiroonigami23-ui/AegisOS/actions/workflows/docs.yml/badge.svg)](https://github.com/shiroonigami23-ui/AegisOS/actions/workflows/docs.yml)\n\n## Mission\n\nBuild a modern, privacy-first operating system that combines the strongest qualities of existing ecosystems into one cohesive platform.\n\n## Core Goals\n\n- Strong security-by-default and verified software distribution.\n- Fast, lightweight runtime that works well on both modern and older hardware.\n- Deep customization without sacrificing stability.\n- Strong app compatibility strategy for users and developers.\n- Clean, premium user experience with predictable behavior.\n\n## Repo Layout\n\n- `kernel/` core kernel direction and interfaces.\n- `userland/` shell, services, package/runtime utilities.\n- `platform/` device abstraction and hardware support layers.\n- `tools/` developer tools, SDK/CLI direction.\n- `packages/` package definitions and core bundle manifests.\n- `build/` build system and release engineering notes.\n- `scripts/` helper scripts for local setup and CI.\n- `docs/` product, architecture, security, and roadmap docs.\n- `.github/` workflows, templates, and collaboration automation.\n\n## Quick Start\n\n1. Read [`docs/VISION.md`](docs/VISION.md).\n2. Read [`docs/ARCHITECTURE.md`](docs/ARCHITECTURE.md).\n3. Read [`docs/SECURITY_MODEL.md`](docs/SECURITY_MODEL.md).\n4. Follow milestone plan in [`docs/ROADMAP.md`](docs/ROADMAP.md).\n5. Use execution backlog in [`docs/IMPLEMENTATION_PLAN.md`](docs/IMPLEMENTATION_PLAN.md).\n6. Read contributor explainer in [`EXPLAIN.md`](EXPLAIN.md).\n7. Read branch governance profile in [`docs/BRANCH_PROTECTION.md`](docs/BRANCH_PROTECTION.md).\n8. Follow new contributor checklist in [`docs/ONBOARDING.md`](docs/ONBOARDING.md).\n9. Run bootstrap validation: `python scripts/onboarding_check.py`.\n10. Check hardware/profile mapping in [`docs/PROFILE_COMPATIBILITY.md`](docs/PROFILE_COMPATIBILITY.md).\n11. Use platform bootstrap scripts in [`scripts/README.md`](scripts/README.md) for first-time setup.\n\n## Current Status\n\nThis repository contains:\n\n- Product and architecture blueprint.\n- CI workflows and contribution templates.\n- Package metadata scaffold for core OS components.\n- Initial compilable kernel simulation target for pipeline validation.\n- Scheduler admission control primitives with per-priority limits, drop counters, and JSON snapshots.\n- Namespace isolation simulator with local/global PID translation and visibility checks.\n- Atomic update rollback-index monotonic guard store with tamper-checked persistence.\n- Syscall capability gate matrix with decision-cache fast path, enforcement counters, and JSON snapshot.\n- Syscall gate rule/process lookup-cache fast paths plus VM query lookup-cache telemetry for lower hot-path overhead.\n- IPC channel quota/backpressure simulator with inflight accounting and drop metrics.\n- Memory zone accounting with reclaim hooks and low-memory deny telemetry.\n- Update release channel pinning policy with downgrade rejection guardrails.\n- Compatibility runtime syscall allowlist scaffold with violation log export.\n- Delta update manifest schema validation (payload digest, base version, and fallback digest).\n- Telemetry privacy redaction engine for logs, metrics, and trace exports.\n- Device-profile boot budget enforcer with low-battery/thermal optimizer recommendations for CI gates.\n- Service restart budget supervisor with health-probe and metrics-export JSON endpoints for ops dashboards.\n- Kernel checkpoint journal persistence + replay path for crash-recovery boot restore.\n- Scheduler hot-path optimization via live priority/runnable-credit counters for faster dispatch bookkeeping.\n- Adaptive scheduler quantum autotuner for improved latency vs switch-overhead balance under load.\n- Scheduler admission/ready bitmaps + turbo candidate cache reuse for lower dispatch computation overhead.\n- Scheduler PID lookup-cache fast path for lower overhead on repeated control-plane process lookups.\n- Scheduler bulk operation API (add/remove/reprioritize) with execution telemetry for high-churn workloads.\n- Adaptive turbo scheduler reuse-budget tuning and stronger anti-runaway dispatch scoring under load.\n- Wait-latency safety clamps and enriched fairness/admission snapshot telemetry for tuning pipelines.\n- IPC channel and memory zone lookup-cache fast paths to reduce hot-ID linear scan overhead.\n- Syscall rule removal API with policy-churn telemetry (`removed_rule_count`) in syscall snapshots.\n- Checkpoint subsystem runtime/entry PID lookup-cache fast paths with expanded recovery counters.\n- Secure-time nonce lookup-cache telemetry and drift-budget clamp-event tracking for attestation observability.\n- Namespace translation lookup-cache and scheduler percentile-selection fast path for lower runtime metrics overhead.\n- Namespace attach/detach/translate/inspect failure counters plus cache-invalidation telemetry in namespace snapshots.\n- IPC unknown-channel request and drain-underflow clamp telemetry in channel snapshots.\n- IPC drop-reason breakdown counters (`quota`, `unknown_channel`, `policy_gate`) in channel snapshots.\n- IPC burst-budget autotune with up/down adjustment telemetry for sustained burst workloads.\n- Memory unknown-zone request, release-underflow clamp, and reclaim-shortfall telemetry in zone snapshots.\n- Memory-zone reclaim efficiency scoring (`current` + `EMA`) in zone telemetry.\n- Memory pressure level API (`low`/`medium`/`high`) for policy loops and adaptive throttling.\n- Scheduler PID lookup upgraded to dual-entry cache (primary + victim) to reduce repeated linear scans.\n- Scheduler dispatch scan-depth telemetry to quantify round-robin/turbo hot-path scan cost.\n- Scheduler ready-bitmap popcount fastpath for single-class runnable dispatch cycles.\n- Namespace requester/target inspect-pair cache fastpath with hit/miss telemetry.\n- Secure-time nonce-window saturation counters in attestor snapshots (`inserts`, `overwrites`, `high_watermark`).\n- Permission center policy diff endpoint plus policy-change audit exports (JSON/CSV).\n- Installer secure bootstrap state machine with recovery and attestation hook gates.\n\n## Feature Strategy\n\n- Secure by default (inspired by iOS trust chain and app isolation).\n- Lightweight and configurable (Linux-style modularity and control).\n- Compatibility-forward (Windows-like pragmatic app strategy).\n- Polished user flow (macOS-style consistency and efficiency).\n- Hardware profile flexibility (Android-like device breadth).\n\n## Automation\n\n- [`Auto Docs workflow`](.github/workflows/auto-docs.yml) updates `EXPLAIN.md` and `CHANGELOG.md`.\n  - supports configurable heatmap trend windows via `scripts/update_project_docs.py --heatmap-window weekly|monthly|custom --heatmap-days N`.\n- Recursion protection is enabled: updates to these markdown files are ignored by workflow triggers.\n- [`Package Validation workflow`](.github/workflows/packages.yml) enforces package/profile manifest integrity.\n- [`Clang Matrix workflow`](.github/workflows/clang-tests.yml) compiles/tests core modules across C standard variants.\n  - includes ASAN/UBSAN sanitizer jobs for memory and undefined behavior checks.\n  - sanitizer suppression baseline and policy docs: [`docs/SANITIZERS.md`](docs/SANITIZERS.md).\n  - includes trace JSON property smoke profiling for regression triage: [`docs/TRACE_JSON_PROPERTY.md`](docs/TRACE_JSON_PROPERTY.md).\n- [`Kernel Perf Budget workflow`](.github/workflows/perf-budget.yml) runs cross-module hotpath benchmark and fails CI on budget regressions.\n  - budget profile: [`docs/PERF_BUDGET.json`](docs/PERF_BUDGET.json).\n  - local benchmark CLI: `python scripts/kernel_hotpath_benchmark.py --iterations 200000`.\n  - local gate run: `python scripts/kernel_perf_budget_gate.py`.\n- Snapshot schema ledger is validated in CI to prevent silent snapshot-contract drift.\n  - ledger docs: [`docs/SNAPSHOT_SCHEMA_LEDGER.md`](docs/SNAPSHOT_SCHEMA_LEDGER.md).\n  - machine ledger: [`docs/SNAPSHOT_SCHEMA_LEDGER.json`](docs/SNAPSHOT_SCHEMA_LEDGER.json).\n\n## Collaboration\n\n- Contribution guide: [`CONTRIBUTING.md`](CONTRIBUTING.md)\n- Collaborator roles: [`COLLABORATORS.md`](COLLABORATORS.md)\n- Security policy: [`SECURITY.md`](SECURITY.md)\n- Code ownership: [`.github/CODEOWNERS`](.github/CODEOWNERS)\n- Project board: [AegisOS_Roadmap](https://github.com/users/shiroonigami23-ui/projects/2)\n\n## Project Board\n\nThe GitHub `Projects` tab is the execution board for roadmap tracking.\n\n- New/reopened issues are auto-added with `Todo` status.\n- Closed issues are auto-moved to `Done`.\n- Use it as the single queue for priorities, owners, and sprint slices.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fshiroonigami23-ui%2Faegisos","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fshiroonigami23-ui%2Faegisos","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fshiroonigami23-ui%2Faegisos/lists"}