Apohara Guard

Isolation primitives + ML-subprocess sandbox patterns for the Apohara PROBANT ecosystem.

Part of the cross-AI code verification trinity submitted to TechEx 2026:

apohara-probant — Backend + frontend for the 12-vendor adversarial ensemble (Apache-2.0)
apohara-aegis — Multi-vendor judge adapters (Apache-2.0)
Apohara_Context_Forge — INV-15 KV-cache isolation + Z3 SMT formal proof paper, Zenodo DOI 10.5281/zenodo.20114594 (Apache-2.0)
Apohara Guard (this repo) — Sandbox + scanner primitives (AGPL-3.0)

Why AGPL-3.0?

The other three repos ship under Apache-2.0 to lower friction for enterprise adoption of safety tooling. Apohara Guard is specifically AGPL-3.0 so that downstream improvements to the sandbox + scanner detection patterns flow back to the public commons.

Status

Hackathon-submission snapshot, 2026-05-18.

Tracked code surface in this repo (intentionally minimal — see git ls-files):

src/sandbox/index.ts — bwrap mount-ns + user-ns + RLIMIT_AS sandbox primitives (3-layer active)
src/scanner/index.ts — content scanner stub
tests/sandbox.test.ts — sandbox primitives test suite
docs/research/sandbox-design.md — design rationale
THIRD_PARTY_NOTICES.md — attribution to RAPTOR + bubblewrap

Honest disclosures (per Apohara AUDIT.md culture):

Sandbox is 3 active + 2 planned, not 5 active. The 5-layer kernel sandbox naming was corrected to honest framing in commit ed1539c. Landlock LSM + seccomp-bpf require libseccomp bpf-blob generation and are scheduled post-hackathon.
Build tooling (package.json, bun.lock, Dockerfile, biome.json) is not yet tracked. Full local-dev quickstart lands post-hackathon. For now: clone + read the 6 tracked files + cross-reference the design doc.
Content scanner is a stub. Real detection logic, training data attribution, and threat-model boundaries land post-hackathon.

Cross-references

INV-15 paper v3.0 (Z3 SMT formal proof, UNSAT in 10.08 ms): Apohara_Context_Forge/paper/inv15_paper.pdf
Apohara PROBANT submission docs: apohara-probant/docs/submissions/
Judge FAQ for the trinity: apohara-probant/docs/submissions/JUDGE-FAQ.md

License

GNU Affero General Public License v3.0 only — AGPL-3.0-only.

Contact

Maintainer: Pablo M. Suarez (@SuarezPM)
General: dimensionequix@gmail.com
Security: dimensionequix+security@gmail.com (see apohara-probant/SECURITY.md for the cross-ecosystem disclosure policy)

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
docs/research		docs/research
src		src
tests		tests
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
THIRD_PARTY_NOTICES.md		THIRD_PARTY_NOTICES.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Apohara Guard

Why AGPL-3.0?

Status

Cross-references

License

Contact

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Apohara Guard

Why AGPL-3.0?

Status

Cross-references

License

Contact

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages