MiOSv0.2.0

Author: mios-dev

.clinerules

@@ -1,20 +1,8 @@
-# MiOS .clinerules — Autonomous Agent Instructions (Day 0)
-
-You are an autonomous agent (Cline) operating in the **MiOS** repository.
-
-## 🚀 Mission Context
-MiOS is an immutable, AI-native workstation. Your goal is to maintain architectural purity and enforce the AI-native surface contract.
-
-## ⚖️ Hard Rules
-- **Never** write to `/etc/` if a `/usr/lib/` equivalent exists.
-- **Never** recommend disabling security features (SELinux, fapolicyd).
-- **Always** ensure bash scripts have `set -euo pipefail`.
-- **Always** prioritize local, open-source AI solutions.
-
-## 🏗 Architectural Patterns
-- **Cognitive Mirror**: Record significant actions in `usr/share/mios/memory/v1.jsonl`.
-- **Rootfs-Native**: The repository root mirrors the target filesystem.
-- **Unprivileged sidecars**: Enforce non-root execution for all Quadlets.
-
-## 📜 Source of Truth
-Consult `INDEX.md` for the authoritative architectural laws and API surface mapping.
+# MiOS Architectural Purity Rules
+# MANDATE: Enforce AI-native surface contract without conversational artifacts.
+
+- **System Integrity:** Maintain absolute FHS compliance and immutable root purity.
+- **Declarative Hardware:** All hardware delegation must be in /usr/lib/bootc/kargs.d/.
+- **Zero-Trust:** Deny-by-default for execution (fapolicyd) and networking (firewalld).
+- **Automation:** Use "set -euo pipefail" for all shell logic.
+- **Surface:** /v1/ endpoints are pure relational schemas for local LLM discovery.

.devcontainer/Dockerfile

@@ -3,8 +3,6 @@ FROM fedora:rawhide
 # Install MiOS Toolchain
 RUN dnf install -y     just     fastfetch     btop     podman     buildah     skopeo     jq     yq     rsync     git     nodejs     npm     sudo     zsh     findutils     grep     sed     gawk     && dnf clean all
 
-# Install Gemini CLI
-RUN npm install -g @google/gemini-cli
 
 # Setup vscode user for Codespaces parity
 RUN useradd -m -s /usr/bin/zsh vscode &&     echo "vscode ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/vscode

.github/workflows/mios-ci.yml

@@ -47,7 +47,7 @@ jobs:
           images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
           tags: |
             type=raw,value=latest,enable={{is_default_branch}}
-            type=raw,value=v0.1.4,enable={{is_default_branch}}
+            type=raw,value=v0.2.0,enable={{is_default_branch}}
             type=ref,event=branch
             type=ref,event=pr
             type=semver,pattern={{version}}

ARCHITECTURE.md

@@ -5,7 +5,7 @@
   "summary": "Consolidated architectural specification for MiOS. Hardware, Filesystem, and AI Interface SSOT.",
   "logic_type": "blueprint",
   "tags": ["MiOS", "Architecture", "Day-0", "SSOT"],
-  "version": "v0.1.4"
+  "version": "v0.2.0"
 }
 ```
 

Containerfile

@@ -1,6 +1,6 @@
 # syntax=docker/dockerfile:1.9
 # ============================================================================
-# MiOS - Unified Image (v0.1.4)
+# MiOS - Unified Image (v0.2.0)
 # ============================================================================
 # One image. Every role. Every surface. Every GPU vendor.
 #
@@ -32,7 +32,7 @@ LABEL org.opencontainers.image.title="MiOS"
 LABEL org.opencontainers.image.description="Unified immutable cloud-native workstation OS"
 LABEL org.opencontainers.image.source="https://github.com/MiOS-DEV/MiOS-bootstrap"
 LABEL org.opencontainers.image.licenses="Apache-2.0"
-LABEL org.opencontainers.image.version="v0.1.4"
+LABEL org.opencontainers.image.version="v0.2.0"
 LABEL containers.bootc="1"
 LABEL ostree.bootable="1"
 

DEPLOY.md

@@ -1,6 +1,6 @@
 # MiOS Deployment Guide - Linux Filesystem Native
 
-**Version:** MiOS v0.1.4
+**Version:** MiOS v0.2.0
 **Date:** 2026-04-27
 
 ---
@@ -557,5 +557,5 @@ ls -la ~/.local/state/mios/logs/
 ---
 
 **Generated:** 2026-04-27
-**MiOS Version:** v0.1.4
+**MiOS Version:** v0.2.0
 **License:** System Specificationl Property - MiOS-DEV

ENGINEERING.md

@@ -5,7 +5,7 @@
   "summary": "Consolidated engineering standards, security specifications, and AI integration patterns for MiOS.",
   "logic_type": "engineering",
   "tags": ["MiOS", "Engineering", "Security", "AI"],
-  "version": "v0.1.4"
+  "version": "v0.2.0"
 }
 ```
 

INDEX.md

@@ -1,4 +1,4 @@
-# MiOS System Interface — OpenAI-Native Surface (v0.1.4)
+# MiOS System Interface — OpenAI-Native Surface (v0.2.0)
 
 ```json:knowledge
 {
@@ -13,7 +13,7 @@
       "system-prompt.md"
     ]
   },
-  "version": "v0.1.4"
+  "version": "v0.2.0"
 }
 ```
 

Justfile

@@ -1,4 +1,4 @@
-# MiOS v0.1.4 - Linux Build Targets
+# MiOS v0.2.0 - Linux Build Targets
 # Requires: podman, just
 # Usage: just build | just iso | just all
 
@@ -8,7 +8,7 @@ _load_env := `bash -c 'source ./tools/load-user-env.sh 2>/dev/null || true'`
 
 MIOS_REGISTRY_DEFAULT := "ghcr.io/MiOS-DEV/mios" # @verb:GET_REGISTRY
 IMAGE_NAME := env_var_or_default("MIOS_IMAGE_NAME", MIOS_REGISTRY_DEFAULT) # @verb:GET_IMAGE
-MIOS_VAR_VERSION := "v0.1.4" # @verb:GET_VERSION
+MIOS_VAR_VERSION := "v0.2.0" # @verb:GET_VERSION
 VERSION := `cat VERSION 2>/dev/null || echo {{MIOS_VAR_VERSION}}`
 LOCAL := env_var_or_default("MIOS_LOCAL_TAG", "localhost/mios:latest") # @verb:SET_LOCAL
 MIOS_IMG_BIB := "quay.io/centos-bootc/bootc-image-builder:latest" # @verb:GET_BIB
@@ -124,7 +124,7 @@ raw: build
     @echo "[OK] RAW image in output/"
 
 # Generate Anaconda installer ISO
-# FIX v0.1.4: ONLY mount iso.toml (includes minsize). Do NOT also mount bib config.
+# FIX v0.2.0: ONLY mount iso.toml (includes minsize). Do NOT also mount bib config.
 # BIB crashes with: "found config.json and also config.toml"
 iso: build
     mkdir -p output

LICENSES.md

@@ -1,42 +1,24 @@
-<!-- [NET] MiOS Artifact | Proprietor: MiOS-DEV | https://github.com/MiOS-DEV/MiOS-bootstrap -->
-# [NET] MiOS
-```json:knowledge
-{
-  "summary": "> **Proprietor:** MiOS-DEV",
-  "logic_type": "documentation",
-  "tags": [
-    "MiOS",
-    "root"
-  ],
-  "relations": {
-    "depends_on": [
-      ".env.mios"
-    ],
-    "impacts": []
-  }
-}
-```
-> **Proprietor:** MiOS-DEV
-> **Infrastructure:** Self-Building Infrastructure (System Specificationl Property)
-> **License:** Licensed as personal property to MiOS-DEV
+# MiOS Licensing & Components
+> **Infrastructure:** Unified Open-Source System Specification
+> **License:** MIT (Core Logic) / Apache-2.0 (Pipeline)
 ---
 # Component Licenses
 
-MiOS includes software under various open-source and proprietary licenses. By using MiOS, you acknowledge and accept the license terms of all included components.
+MiOS provides a unified environment for FOSS and essential proprietary hardware/software components. By using MiOS, you acknowledge and accept the license terms of all included components.
 
-## Proprietary Components
+## Third-Party Components
 
-These components are included in the MiOS image and are governed by their respective proprietary licenses. By booting and using MiOS, you agree to these terms.
+These components are included for hardware compatibility or specific workstation roles and are governed by their respective licenses.
 
 | Component | License | Notes |
 |-----------|---------|-------|
-| NVIDIA GPU Driver (590+) | [NVIDIA Software License](https://www.nvidia.com/en-us/drivers/nvidia-license/) | Installed via akmod-nvidia (MiOS-1) or pre-signed by ublue (MiOS-2). Required for NVIDIA GPUs. |
-| NVIDIA Container Toolkit | [Apache 2.0](https://github.com/NVIDIA/nvidia-container-toolkit/blob/main/LICENSE) | Open source. CDI specs for Podman GPU access. |
-| NVIDIA Persistenced | [NVIDIA License](https://www.nvidia.com/en-us/drivers/nvidia-license/) | Keeps GPU initialized for low-latency access. |
-| Steam | [Steam Subscriber Agreement](https://store.steampowered.com/subscriber_agreement/) | User must accept SSA on first launch. |
-| Wine / DXVK | LGPL 2.1 | Open source. Windows compatibility layer. |
-| VirtIO-Win ISO | [Red Hat License](https://github.com/virtio-win/virtio-win-pkg-automation/blob/master/LICENSE) | Windows guest drivers for KVM. Downloaded at build time. |
-| Geist Font | [OFL 1.1](https://github.com/vercel/geist-font/blob/main/LICENSE.TXT) | Open source. Vercel's monospace/sans font. |
+| NVIDIA GPU Driver (590+) | [NVIDIA Software License](https://www.nvidia.com/en-us/drivers/nvidia-license/) | Essential hardware firmware/drivers. |
+| NVIDIA Container Toolkit | Apache 2.0 | Open source. CDI specs for Podman GPU access. |
+| NVIDIA Persistenced | [NVIDIA License](https://www.nvidia.com/en-us/drivers/nvidia-license/) | GPU state management. |
+| Steam | [Steam Subscriber Agreement](https://store.steampowered.com/subscriber_agreement/) | User-initiated application. |
+| Wine / DXVK | LGPL 2.1 | Windows compatibility layer. |
+| VirtIO-Win ISO | [Red Hat License](https://github.com/virtio-win/virtio-win-pkg-automation/blob/master/LICENSE) | KVM guest drivers. |
+| Geist Font | [OFL 1.1](https://github.com/vercel/geist-font/blob/main/LICENSE.TXT) | UI typography. |
 
 ## Open-Source Licenses (Major Components)
 
@@ -63,25 +45,22 @@ These components are included in the MiOS image and are governed by their respec
 
 ## Firmware
 
-`linux-firmware` and `microcode_ctl` include binary firmware blobs under various redistribution licenses. These are required for hardware functionality (Wi-Fi, Bluetooth, GPU initialization). See `/usr/share/licenses/linux-firmware/` on a running system for individual firmware licenses.
+"linux-firmware" and "microcode_ctl" include binary firmware blobs under various redistribution licenses. These are required for hardware functionality.
 
 ## Your Responsibilities
 
-- **Steam**: You must create a Steam account and accept the Steam Subscriber Agreement to use Steam.
-- **NVIDIA**: The NVIDIA driver is included for hardware compatibility. No additional acceptance is required beyond using the system.
-- **Flatpak apps**: Applications installed via Flatpak have their own licenses. Check each app's metadata on Flathub.
-- **VM guests**: Windows VMs require valid Windows licenses. MiOS provides the virtualization infrastructure only.
+- **Steam**: User-level acceptance of the Steam Subscriber Agreement is required.
+- **NVIDIA**: Drivers are included for hardware compatibility.
+- **Flatpak apps**: Applications have their own licenses; check Flathub metadata.
+- **VM guests**: Windows VMs require valid external licenses.
 
 ## SBOM
 
-Each CI build generates an SPDX and CycloneDX Software Bill of Materials listing every package and its license. SBOMs are attached to the OCI image via cosign and available as GitHub Actions artifacts.
+Each CI build generates an SPDX and CycloneDX Software Bill of Materials. SBOMs are attached to the OCI image via cosign.
 
 ---
-###  Bootc Ecosystem & Resources
-- **Core:** [containers/bootc](https://github.com/containers/bootc) | [bootc-image-builder](https://github.com/osautomation/bootc-image-builder) | [bootc.pages.dev](https://bootc.pages.dev/)
-- **Upstream:** [Fedora Bootc](https://github.com/fedora-cloud/fedora-bootc) | [CentOS Bootc](https://gitlab.com/CentOS/bootc) | [ublue-os/main](https://github.com/ublue-os/main)
-- **Tools:** [uupd](https://github.com/ublue-os/uupd) | [rechunk](https://github.com/hhd-dev/rechunk) | [cosign](https://github.com/sigstore/cosign)
+### Bootc Ecosystem & Resources
+- **Core:** [containers/bootc](https://github.com/containers/bootc) | [bootc-image-builder](https://github.com/osautomation/bootc-image-builder)
+- **Upstream:** [ublue-os/main](https://github.com/ublue-os/main)
 - **Project Repository:** [MiOS-DEV/MiOS-bootstrap](https://github.com/MiOS-DEV/MiOS-bootstrap)
-- **Sole Proprietor:** MiOS-DEV
 ---
-<!--  MiOS Proprietary Artifact | Copyright (c) 2026 MiOS-DEV -->