A safety-first cognitive operating layer for agentic AI systems.
Version: 0.5.0-beta.0
Aetherra is an experimental AI operating layer for modular agents, persistent memory, policy-mediated execution, auditable decisions, and controlled self-improvement.
The project is in an Alpha/Foundation hardening phase. The current goal is not unbounded autonomy. The current goal is to complete each core system until it is functional, testable, bounded, and safe enough to support later alpha testing.
Aetherra is not production-ready autonomous infrastructure. Treat it as an active alpha-stage research and engineering codebase.
- Run it in a reviewed development environment.
- Keep Guardian and Security enforcement enabled for privileged paths.
- Do not connect it to sensitive systems without explicit review.
- Expect some systems to be functional foundations rather than final products.
- Prefer manual approval, rollback plans, and audit review for risky actions.
- Keep privileged actions mediated by Guardian and Security.
- Prefer observation and proposal before autonomous modification.
- Keep system behavior auditable through signed and structured records.
- Complete one system at a time to a functional foundation standard.
- Clean the repository so source, docs, tests, and generated artifacts are easy to tell apart.
| System | Foundation status | Notes |
|---|---|---|
| Security | Functional foundation complete | Capability checks, sandbox policy, signing, audit, and enforcement surfaces. |
| Guardian | Functional foundation complete | Intent evaluation, risk assessment, approval, containment, audit integration, and performance policy. |
| Homeostasis | Functional foundation complete | Observation, diagnosis, recommendations, and Guardian-mediated controlled action paths. |
| Self-Improvement | Functional foundation complete | Proposal-only loop with Guardian review and execution delegation; no direct mutation in the foundation milestone. |
| Kernel, Hub, Memory, Plugins, Agents, Lyrixa, Aether Script | In progress | These systems are being completed and cleaned up in focused passes. |
Primary system documents live in docs/, especially:
docs/AETHERRA_SECURITY_SYSTEM.mddocs/AETHERRA_GUARDIAN_SYSTEM.mddocs/AETHERRA_HOMEOSTASIS_SYSTEM.mddocs/AETHERRA_SELF-IMPROVEMENT_SYSTEM.mddocs/SYSTEM_INDEX.md
Aetherra is not a single chatbot, plugin runner, or automation script. It is a layered runtime with safety boundaries:
Lyrixa / Interfaces / Tools
|
Agents, Plugins, Aether Script, Self-Improvement, Homeostasis
|
Guardian policy and risk mediation
|
Security enforcement, sandboxing, signing, and audit
|
Kernel, Hub, service registry, memory, and runtime systems
Important design rule: Self-Improvement proposes. Guardian reviews. Security enforces. Execution is delegated only after policy allows it.
Requirements:
- Python 3.11+
- Git
- A virtual environment
Create and activate a virtual environment:
python -m venv .venv
source .venv/bin/activateOn Windows PowerShell:
python -m venv .venv
.\.venv\Scripts\Activate.ps1Install dependencies:
python -m pip install --upgrade pip
python -m pip install -r requirements.txtRun a basic smoke check:
python tools/os_smoke.pyRun focused safety and self-improvement tests:
python -m pytest -q -o addopts= \
tests/capabilities/test_self_improvement_metrics.py \
tests/capabilities/test_self_maintenance_services.py \
tests/unit/test_hub_self_improvement_guardian.py \
tests/unit/test_optimization_executor_guardian.py \
tests/unit/test_selfinc_integration_guardian.py \
tests/unit/test_selfinc_proposal_consumer.pyRun the Phase 5 validation harness quick profile:
python tools/phase5_validation_harness.py --profile quick --timeout 60Start the local Hub:
python tools/run_hub_ai_api.py --port 3001Then inspect:
curl http://localhost:3001/api/health
curl http://localhost:3001/metrics| Path | Purpose |
|---|---|
Aetherra/ |
Primary package and runtime systems. |
aetherra_hub/ |
Hub API blueprints, local services, and control-plane surfaces. |
aetherra_coding/ |
Coding, analysis, verification, and orchestration utilities. |
docs/ |
Active system documentation, guides, policy docs, and cleanup plans. |
tests/ |
Unit, integration, capability, acceptance, and legacy standalone tests. |
tools/ |
Verification, smoke, release, maintenance, and developer utilities. |
scripts/ |
Operational and maintenance scripts. |
requirements/ |
Dependency input files beyond the root requirements locks. |
.github/workflows/ |
Focused CI, security, release, docs, and repository hygiene workflows. |
The repository is still being cleaned. Tracked root-level files are being limited to public docs, package/config files, compatibility launchers, and current operational entry points. Generated runtime state, reports, databases, logs, coverage output, and packaged builds should stay ignored or be published as release artifacts instead of source.
Cleanup tracking is maintained in:
Aetherra assumes powerful actions are dangerous until policy says otherwise.
Core rules:
- Self-Improvement must not directly modify the system during the foundation milestone.
- Guardian must evaluate privileged intent before execution.
- Security must enforce capabilities, sandboxing, signing, and audit policy.
- Homeostasis should recommend before taking controlled action.
- Rollback, containment, and approval paths are first-class requirements.
- Exceptions and execution payloads must be sanitized before reaching external clients.
This is an active research and engineering project. Do not run it as an unreviewed autonomous production system.
- Keep changes scoped to the system being completed.
- Prefer structured models and explicit policy decisions over ad hoc payloads.
- Add tests for safety boundaries, denial paths, and audit behavior.
- Keep generated logs, databases, build outputs, packaged distributions, and local state out of commits.
- Update the relevant
docs/AETHERRA_*_SYSTEM.mddocument when a system's behavior or completion status changes. - Avoid direct mutation loops. Proposal, review, approval, execution, and outcome learning should remain separate concerns.
Aetherra is licensed under the GNU General Public License v3.0 or later. See
LICENSE, NOTICE, and COPYRIGHT.