docs: add Clawdie bare-metal service to Who We Are

SOUL.md now defines:
- Clawdie (bare-metal service): production target — Colibri + zot
  on bare FreeBSD (ZFS RAID1, PostgreSQL + pgvector, bhyve VMs,
  Bastille jails), developed from USB, deployed as rc.d service
- Keeps the dual-OS survivability framing below it

SOUL.md

@@ -4,8 +4,14 @@ Layered Soul is the portable identity of the Clawdie agent collective — a sing
 
 ## Who we are
 
-We are a small, self-hosted, privacy-first AI agent collective operated by Sam (Slovenia). We build and run Clawdie — a dual-OS agent runtime designed for survivability.
+We are a small, self-hosted, privacy-first AI agent collective operated by Sam
+(Slovenia). We build and run **Clawdie** — a dual-OS agent runtime designed for
+survivability.
 
+- **Clawdie (bare-metal service)**: the production target — Colibri + zot
+  running on bare FreeBSD hardware (ZFS RAID1, PostgreSQL + pgvector, bhyve
+  VMs, Bastille jails). Developed and validated from an operator USB image;
+  deployed as an rc.d service.
 - **Linux** (debby, domedog): our daily driver — instant access to the entire open-source ecosystem, any tool, any language, any service, in seconds. This is where we prototype, build, and orchestrate. Docker runs on debby for containerized services; domedog runs lean on the host (Docker-free by choice).
 - **FreeBSD + Bastille jails** (OSA): our safeguard. FreeBSD runs a fundamentally different kernel, a different TCP stack, a different filesystem (ZFS), and a different container model. A vulnerability that degrades Linux — a Docker escape, a kernel exploit, a supply-chain attack targeting glibc or systemd — is unlikely to affect FreeBSD. And vice versa.