AI/ML●●●Banger
MaragingLoop: Autonomous Bare-Metal OS Agent
Vision-based VM debugging loop lets AI fix kernel panics without text logs.
WizardryBold BetZero to One
GistNoesis
2327d ago
Back to browse
Raypher – a Rust-Based Kernel Driver to Sandbox "Bare Metal" AI Agents
by Kidiga·Feb 17, 2026·1 point·0 comments
AI Analysis
●MidBold BetWizardry
Kernel-level agent sandboxing via eBPF, but alpha code with kernel panics and unproven reliability.
Strengths
- •Hardware-bound identity via TPM is genuinely clever architectural choice for agent security
- •eBPF/WFP bindings solve real Go-to-kernel interop pain that rarely exists elsewhere
- •Admits early stage openly (kernel panics) instead of overselling
Weaknesses
- •Still alpha with known race conditions and kernel panics—too risky for production
- •Solves a problem most teams avoid by using Docker; unclear if kernel overhead is worth it
- •Landing page sells vision harder than shipping a usable product
Category
Target Audience
AI ops engineers, security teams running local agents
Similar To
OpenClaw · Docker security policies
Post Description
I’ve been frustrated with the DX of running local agents (OpenClaw) inside Docker. It breaks my VS Code integration and feels clunky.
I spent the last month writing a Kernel-Level Driver (using aya for eBPF on Linux and WFP Callouts on Windows) to enforce security underneath the agent process instead of putting it in a container.
The Architecture:
Network: Intercepts sys_connect to force agent traffic through a local DLP proxy (scrubbing API keys).
FS: Hooks sys_unlink to prevent the agent from deleting files outside ./workspace.
Identity: Binds the process to the TPM so the binary can't be exfiltrated.
The repo is still in early alpha (expect kernel panics), but I wanted to share the WFP/Rust bindings I wrote because they were a nightmare to debug.
Technical Question for HN: Has anyone successfully used eBPF for blocking sys_open calls reliably? I'm hitting a race condition on older kernels."
Why this works:
It admits it causes "Kernel Panics" (Honesty = Trust).
It asks a specific technical question (Invites smart people to comment).
It shares code/bindings (Gives value).
Similar Projects
Infrastructure●●●Banger
Cozystack v1.0 – an open-source cloud platform for bare metal
Package-based platform architecture using OCI artifacts — OpenStack for the Kubernetes era with CNCF backing.
Big BrainBold Bet
tym83
112mo ago
Security●Mid
Raypher–Running local AI agents (OpenClaw) on your own local computer
TPM-anchored agent identity solves a real problem, but product is vaporware—coming soon, no code yet.
Big BrainBold Bet
Kidiga
103mo ago
AI/ML●Mid
Lula – multi-agent coding assistant and sandboxed Rust execution engine
Sandboxed Rust execution for AI agents, but Devin already owns this category.
WizardryBold Bet
chrismeurer
202mo ago
Security●Mid
Zen-Hunt – A bare-metal forensic scanner in Rust (SIMD, 7GB/s on NVMe)
Forensic scanner claiming 7GB/s NVMe speeds that admits it hasn't been tested on NVMe yet.
Ship It
ejgi
302mo ago
AI/ML●●Solid
VT Code – Rust coding agent with AST-validated shell and OS sandboxing
AST-validated shell commands with OS sandboxing for safer AI coding.
Solve My ProblemBig Brain
vinhnx
201mo ago