Sealed law-layer execution appliance
Open-source enterprise appliance by SYFCORP.
| Directory | Description |
|---|---|
actuator-min/ |
hardened reference actuator source (Rust, Unix socket bridge) |
dashboard/ |
optional read-only observation server |
deploy/ |
FirePlank boot integrity and seal generation scripts |
adversarial/ |
adversarial validation suite |
installer/ |
install/uninstall scripts, systemd units, bundled binaries |
docs/ |
architecture, TCB, ABI, install, FAQ |
releases/ |
distributable appliance bundles and checksums |
The current repo-level packaging target is documented in:
docs/HELLO_WORLD_PACKAGING_CANDIDATE.md
This repository is the enterprise appliance layer around the public
SLIME canon.
The public SLIME repository provides:
- canonical specs
- formal core
- bounded public runner surface
This repository adds the appliance layer:
- bundled runner binary for the appliance
- bundled reference actuator
- systemd packaging and hardening
- FirePlank boot integrity scripts
- optional read-only dashboard
- adversarial validation material
It should not describe the public SLIME checkout as if the public repo itself
contained the private enterprise wiring.
For installation from this repository or its release bundle:
- Linux server (Ubuntu 22.04+ / Debian 12+)
- systemd
sudo- bundled binaries from
installer/bin/or a release tarball
The public SLIME repo remains the law/spec surface.
This appliance ships its own packaging surface.
From the repository root:
./installer/install.shsystemctl is-active actuator.service slime.service
ls -ld /run/slime
ls -l /run/slime/egress.sockIf dashboard assets are installed:
systemctl is-active slime-dashboard.service
curl -fsS http://127.0.0.1:8081/ >/dev/null