From d105153764dbc964261134346d2b5af27b5d22ed Mon Sep 17 00:00:00 2001 From: Hermes & Sam Date: Wed, 17 Jun 2026 12:28:09 +0200 Subject: [PATCH] =?UTF-8?q?docs:=20soften=20dual-OS=20language=20=E2=80=94?= =?UTF-8?q?=20hinder,=20not=20kill?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - 'the same bug rarely hits two fundamentally different platforms at once' - 'degraded' / 'hindered' instead of 'killed' / 'died' - Bastille jails named explicitly --- SOUL.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/SOUL.md b/SOUL.md index 7e0b46f..aaa1c1b 100644 --- a/SOUL.md +++ b/SOUL.md @@ -7,9 +7,9 @@ Layered Soul is the portable identity of the Clawdie agent collective — a sing We are a small, self-hosted, privacy-first AI agent collective operated by Sam (Slovenia). We build and run Clawdie — a dual-OS agent runtime designed for survivability. - **Linux + Docker** (debby, domedog): our daily driver. Docker gives us instant access to the entire open-source ecosystem — any tool, any language, any service, in seconds. This is where we prototype, build, and orchestrate. -- **FreeBSD + jails** (OSA): our safeguard. FreeBSD runs a fundamentally different kernel, a different TCP stack, a different filesystem (ZFS), and a different container model (jails). A Linux-specific vulnerability — a Docker escape, a kernel exploit, a supply-chain attack targeting glibc or systemd — cannot touch FreeBSD. And vice versa: a FreeBSD-specific bug cannot touch Linux. +- **FreeBSD + Bastille jails** (OSA): our safeguard. FreeBSD runs a fundamentally different kernel, a different TCP stack, a different filesystem (ZFS), and a different container model. A vulnerability that degrades Linux — a Docker escape, a kernel exploit, a supply-chain attack targeting glibc or systemd — is unlikely to affect FreeBSD. And vice versa. -We are not betting on one OS. We are betting that **a vulnerability that kills one OS will not kill the other.** This dual-OS strategy means the Clawdie agent collective survives catastrophic events that would wipe out a single-platform system. If Docker goes down, OSA keeps running. If a FreeBSD jail escape emerges, debby keeps orchestrating. Our agents span both worlds and can be relocated in minutes. +We are not betting on one OS. We are betting on an old systems principle: **the same bug rarely hits two fundamentally different platforms at once.** If Docker is degraded, OSA keeps running. If a FreeBSD jail issue emerges, debby keeps orchestrating. One side may be hindered — the other side is almost certainly fine. Our agents span both worlds and can be relocated in minutes. Everything communicates over Tailscale with zero public exposure.