Snapshot date: 2026-03-30
This document is the authoritative snapshot of project maturity, implemented scope, and validation evidence at a point in time.
It is not the GitHub landing page. It is not the long-horizon roadmap.
- Stage: late alpha, pre-1.0
- Release posture: public pre-release
v0.1.0a2is published - Product posture: runtime-first and MCP-first
- Interface posture: MCP is the main external integration interface; CLI is the local administration interface; chat/providers are optional
- Install posture: source checkout plus
install.sh - Scope posture: single-host and local-first
- Packaging posture: no
.debpackage and no service-mode requirement yet - Repository posture: public Apache-2.0 repository with security/support/conduct docs, branch protection, Dependabot, and working
pre-commithooks
Master Control is a local-first runtime for controlled Linux host operations, with typed capabilities, approval boundaries, and auditability.
The core value today is the bounded runtime:
- typed tools
- policy and confirmation gates
- audit trail
- config safety
- repeatable validation
MCP is the main integration path for that runtime. CLI remains the local administration surface. Chat and planner providers remain optional layers on top of the same runtime.
- modular Python monolith with
src/layout - SQLite bootstrap and local state directory
- architecture, security, roadmap, and ADR documentation
- published repository governance docs:
LICENSE,SECURITY.md,SUPPORT.md, andCODE_OF_CONDUCT.md - audit trail for plans, executions, provider errors, and recommendation status changes
- operator bootstrap scripts for install and removal
- repeatable bootstrap validation harness with per-step logs and cleanup checks
- GitHub CI bootstrap smoke for the non-editable operator path
- GitHub CI matrix on Python 3.11 and 3.13, with lint, typecheck, Bandit, tests, wheel smoke, doctor, and bootstrap validation
- working
pre-commitbaseline for whitespace, formatting, lint, typecheck, and Bandit - host-validation bundle generation and community intake path
- typed inspection and controlled-action tools
- policy evaluation before every tool execution
- versioned operator policy loading with safe defaults, fail-closed errors, and doctor diagnostics
- explicit confirmation gates for mutating and privileged paths
- bounded subprocess execution with
shell=False, timeouts, and output truncation - managed config read, write, validation, backup, and restore for bounded targets
- service actions with scope-aware safety boundaries
- persistent audit events, sessions, observations, summaries, and recommendation state
system_infodisk_usagememory_usagetop_processesprocess_to_unitservice_statusfailed_servicesread_journalread_config_filewrite_config_filerestore_config_backupreload_servicerestart_service
- experimental MCP stdio bridge with approval-mediated write flow on top of the runtime
- standard JSON-RPC-compatible MCP stdio handshake for real MCP clients
- MCP approval tools exposed through the standard
tools/list/tools/callsurface - CLI commands for doctor, tools, audit, sessions, observations, recommendations, direct tool execution, and chat
- CLI-integrated
validate-host-profilecommand backed by reusable host-validation code - optional
systemdtimer installation for bounded recommendation reconciliation
- provider abstraction
- heuristic planner for offline development
- OpenAI Responses API adapter for structured planning
- Ollama chat adapter for local structured planning
- local-first auto provider resolution:
ollama -> openai -> heuristic - structured execution plans instead of free-form tool calls
- provider health reporting in
mc doctor
- MC is already useful as a bounded runtime for Linux inspection and controlled actions
- MCP is the main external interface direction, and the current experimental slice already supports approval-mediated write operations
- the official MCP Inspector CLI now validates that a real client can complete the approval-mediated mutation flow
- CLI is still the most complete operator surface today
- chat/provider paths are optional and should not define the product center
- a first operator-configurable policy slice is landed through versioned TOML, but broader validation and operator evidence are still ahead
- approval concurrency is now hardened against duplicate active requests and duplicate in-flight execution for the same action envelope
- the public repository baseline is now materially stronger: Apache-2.0 license, governance docs, branch protection,
pre-commit, Bandit, and Dependabot are in place - tool-schema governance and broader runtime ownership cleanup are still ahead of the current baseline
github/codeql-actionis temporarily excluded from Dependabot automation due an updater-side failure tracked in issue #20; CodeQL action bumps are currently manual maintainer work
The current execution focus is defined by docs/runtime-mcp-maturation-plan.md.
The next maturity steps are:
- tool-schema compatibility rules and release policy in issue #17
- narrower runtime ownership seams, especially around
core.runtime,session_store, andproviders/heuristicin issue #18 - lower-friction install and distribution paths in issue #21
- simpler product narrative around primary operator workflows in issue #19
- broader client and host validation evidence in issue #2
- unrestricted shell access
- web UI
- voice interface
- Slack or Discord integrations
- multi-user auth and remote deployment
- SaaS-style remote control infrastructure
At this snapshot, the project is validated by:
python3 -m ruff check .python3 -m mypy srcpython3 -m bandit -q --severity-level medium --confidence-level medium -c pyproject.toml -r src scriptsPYTHONPATH=src python3 -m unittest discover -s testsPYTHONPATH=src python3 -m pytest -q- explicit runtime/MCP integration coverage in
tests/test_runtime_policy_integration.pyandtests/test_mcp_stdio_integration.py python3 -m compileall srcpython3 -m pre_commit run --all-files- real-client MCP validation through
python3 scripts/validate_mcp_client.py - manual CLI smoke checks for chat, recommendations, recommendation-triggered actions, and
reconcile-timer render|install|remove - manual CLI smoke checks for managed config write with validation and backup
- manual CLI smoke checks for
process_to_unitandfailed_services - repeatable host-profile validation through
mc validate-host-profile - repeatable operator bootstrap validation through
python3 scripts/validate_operator_bootstrap.py - GitHub CI bootstrap smoke for the non-editable operator path
- clean-environment operator bootstrap validation via
./install.sh,mc doctor,mc validate-host-profile, and./uninstall.sh --purge-state - packaging sanity check via
python3 -m pip wheel . --no-deps -w /tmp/mc-dist - dedicated Debian VPS operator-path validation on 2026-03-20
- GitHub
mainprotection requiringAnalyze (python),test (python-3.11), andtest (python-3.13)after the 2026-03-30 repo-maturity publication pass
docs/status.md: reality snapshotdocs/roadmap.md: concise roadmapdocs/runtime-mcp-maturation-plan.md: canonical execution plandocs/architecture.md: system structure and boundariesdocs/security-model.md: safety and approval modeldocs/policy.md: operator policy guidedocs/operator-workflows.md: bounded operator journeysdocs/runtime-integration-testing.md: runtime and MCP validation guidedocs/mcp-client-validation.md: real MCP client validation guidedocs/host-profile-validation.md: validation harness guide
docs/alpha-validation-report.mddocs/vps-validation-report.mddocs/beta-readiness-gate.md
The following documents remain useful for traceability, but they are not the current product brief or roadmap:
docs/history/alpha-release-notes.mddocs/history/release-candidate-0.1.0a2.mddocs/history/beta-resume-plan.mddocs/history/mvp-plan.mddocs/history/mvp-evolution-plan.mddocs/history/mvp-closeout-backlog.mddocs/history/post-mvp-evolution-plan.md