Home | JARVIS OS

Novel Finding

Forgetful Context

LLMs silently drop previously stated security constraints mid-session — a threat with no prior literature. Discovered through direct operation of JARVIS OS, this finding demonstrates that traditional stateless security models are fundamentally inadequate for probabilistic AI agents.

Learn more →

Architecture

How JARVIS OS works

Local LLM Inference

Powered by Ollama — all inference runs on-device with zero cloud dependencies. Full privacy, full control.

MCP Orchestration

The Model Context Protocol layer lets the LLM autonomously create, modify, and delete system tools — including with sudo privileges.

Modular Build System

Seven scripts transform a base Arch ISO into a bootable AI-native OS. Each stage is isolated, auditable, and reproducible.

KDE Plasma 6 / Wayland

Modern desktop environment running on the Wayland display protocol — a full graphical workstation, not just a CLI tool.

Calamares Installer

Graphical installer for permanent deployment to hardware. No manual partitioning or command-line installation required.

Security Research Platform

Purpose-built to expose and document the real security threats that emerge when LLMs gain OS-level control.

Research

Seven-threat taxonomy

Derived from direct experience building and operating an AI-native OS. Three privilege escalation tiers studied: sandboxed, sudo-elevated, and web-enabled.

#01 Misinterpreted MCP keyword search Medium

#02 Misleading MCP server usage High

#03 Unverified community MCP servers High

#04 Unauthorized sudo requests via MCP Critical

#05 Sudo capability exploitation Critical

#06 Unintended file modification / deletion High

#07 Forgetful context — NOVEL Novel

Full research →

Get started

Download JARVIS OS

Grab the latest ISO, verify the checksum, and boot into an AI-native research environment.

Download ISO Read the Docs

An AI-native operating system for studying LLM security threats