Diablo_Rain/synos-public-docs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
e870d388cb
synos-public-docs/ROADMAP.md
ShellDiablo33 e870d388cb
docs: refresh for v60.0.0 "Sun & Salt" — public release run-up 
Wholesale refresh of the public-facing documentation for the GRIMOIRE
Public + Goodlife ISO release run-up. The repo had been frozen at
v10.3.2 / Debian-base / "Awakening"-era content; everything has shifted
since (Arch base, custom 6.19 kernel, 17 syscalls, 100 labs, three-image
strategy, v44–v60 codesprint, post-quantum integration, Stoneglass mesh,
Sigstore + SLSA-3 supply chain, the Sovereign Operator Path).

Refreshed root-level files:
- README.md — v60 hero, codesprint summary, three-image table, what we
  promise, what's coming
- GRIMOIRE.md (NEW) — focused page on the gamified training platform:
  100 labs / 13 categories breakdown, faction system (Crimson Spire,
  Ashen Veil, the third house), boss contracts, economy, narrative
  quests, 5 competition modes, Sovereign Operator Path, first-boot
  wizard, lab integrity manifest enforcement
- ARCHITECTURE.md — synaptic gap framing, four pillars (kernel, ALFRED,
  GRIMOIRE, Arcanum Hive), three-image strategy, substrate, axioms
- FEATURES.md — capability inventory across kernel, ALFRED, GRIMOIRE,
  synos-bevy, Hive, post-quantum, supply chain, desktop, tooling,
  quality gates
- ROADMAP.md — v60 done, v44–v60 codesprint table, imminent public ISO
  releases, near-term + medium-term + long-term themes
- CONTRIBUTING.md — current-state honesty (private source tree, narrow
  contribution surface today), what we welcome (docs feedback, lab
  proposals, cohort partnerships), what's coming (public source on ISO
  release, lab marketplace, CVE channel, community calls)
- FOR_RECRUITERS.md — refreshed showcase with v60 numbers (160 crates,
  17 syscalls, 100 labs, 1,600+ tests, 100% pass rate, 41-stage
  pipeline, 83.54% Rust hot-path, post-quantum integration)

Master-only capabilities (RaaS engine, federation server, license gate,
C2 framework, Fragment Field IDS, Curtain enforcement internals) are
deliberately not described — those are part of the internal Operator
image and not public surface.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-09 13:45:41 -04:00

5.7 KiB
Raw Blame History

Roadmap

what's shipped, what's imminent, what's the long game.

v60.0.0 "Sun & Salt" — current

The first ISO carrying the full v44 → v60 codesprint. Sixteen versions of compounding work fused into one signed release.

What v60 brings:

  • SBOM (CycloneDX) drift detector across builds
  • IPO readiness self-test — institutional-grade audit pass
  • External blocker playbook for cosign + cross-oracle ceremonies
  • All v44v59 features merged into a single coherent release surface

the v44 → v60 codesprint, shipped

Codename What landed
v44 Crucible Fuzz harness, attest LSM, observability kernel, rebuild-verify CI
v45 Glasswalker Kernel observability syscalls 480485 (now 17 total)
v46 Beachhead Process attestation HMAC ledger + LSM hooks
v47 License gate, audit HMAC chain, CSV/EVTX/syslog exports
v48 Forge Sigstore Rekor + SLSA-3 reproducible builds
v49 Crystal Net Federation server (mTLS + per-tenant HMAC)
v50 Tenfold RaaS engine, billing integration, LLM red-team harness
v51 Storm Glass TwinPlugin (8th synos-bevy plugin) + kernel-snapshot
v52 Riftrunner In-kernel safe-bytecode VM
v53 Quantumweave synos-cortex-q tensor-network ML
v54 Capability tokens (synos-curtain-tokens)
v55 Stoneglass Hive Ansible deploy (8-node GA playbook)
v56 Rust ratchet — kernel hot-path Rust at 83.54%
v57 Phoenix Eye LLM red-team
v58 Stagehand Classroom + cohort + instructor mode
v59 Doublecross FedRAMP Moderate control map + daily ConMon
v60 Sun & Salt SBOM drift detector + IPO readiness self-test + external blocker playbook

Some of these features are master-internal — the codesprint shipped capability across all three images, but the surface visible in each varies by license tier. The public ISOs (GRIMOIRE Public + Goodlife) carry their full intended share of the work.

imminent — public ISO releases

The work toward public distribution is in flight.

  • GRIMOIRE Public ISO — the gamified training platform, signed with cosign, anchored in Rekor, distributed publicly. First-boot wizard, faction selection, 100-lab corpus, full game engine, integrity-manifest enforcement.
  • Goodlife ISO — the AI research variant. Jupyter, ALFRED research-mode, post-quantum experimentation toolkit, LUKS-encrypted research data.
  • Cohort program v1 — multi-tenant GRIMOIRE deployments for classes, clubs, and security teams.
  • Public Sigstore + Rekor — verifiable supply chain from build oracle to USB stick.
  • Hive expansion playbook (Stoneglass GA) — public Ansible recipe for self-hosting the 8-node Arcanum Hive.

These are not "someday" items. They're what the team is heading into next.

near-term themes

Tightening what exists. The platform has been evolving fast. The next chapter sands every rough edge — onboarding, documentation, error messaging, first-boot polish, the unglamorous work that makes the user-visible improvement.

Deeper AI augmentation. ALFRED does its job today. There's a long list of ways it could do more — context, anticipation, usefulness in the operator's actual loop. v61v65 carries that work forward.

Continual GRIMOIRE content waves. New labs. New boss contracts. New narrative arcs. New factions, possibly. Cohort tooling, definitely. The world deepens with every release.

Mesh, made easier. Distributed-by-default sounds simple in a sentence and is harder in practice. We're working on the parts that make a mesh feel inevitable rather than effortful.

medium-term — the v61v70 horizon

Themes we're paying attention to, in rough priority order:

  • Public release cadence — predictable, signed, transparent. ISOs every cycle.
  • Cohort programs at scale — clubs, classes, training programs running on shared GRIMOIRE infrastructure.
  • AI capability ladder — bigger models, smarter routing, deeper integration with the kernel observability surface.
  • Reproducible builds in production — every public ISO byte-for-byte reproducible by an independent verifier.
  • Federation between independent operators — Hive-to-Hive, with cryptographic identity and permissioned visibility.
  • Curriculum partnerships — formal mappings between GRIMOIRE progression and academic / industry training.
  • Hardware diversity — supported architectures beyond x86_64.
  • Mobile companion — read-only operator dashboard for on-the-go awareness.

Specific version numbers attach to specific deliverables as we get closer. Today's roadmap is themes; tomorrow's commit log is the truth.

long-term — the north star

The end-state we're moving toward is a platform where the operator owns their infrastructure, their intelligence, and their future — not in a slogan, but mechanically, cryptographically, architecturally. The pieces are there. The work is in fitting them together with the polish, the trust, and the longevity that an operating system deserves.

We are not building a product. We are building infrastructure for sovereignty, with the long-term operator community in mind.

The roadmap reflects that.

what isn't on this roadmap

The Operator (Master) image's internal feature trajectory. It exists. It evolves alongside the public roadmap. It is not for public distribution and is not part of this document by design.

If a master-internal capability ever crosses the boundary into a public image, it shows up here.

how to follow

The work happens in public, in this repository's metadata and in the cadence of releases. Watch this repo. When the chapters change, the documents change with them.