Thanks for contributing to EvidenceOS, a security-critical verification kernel.
cargo build --workspaceRun the daemon locally:
cargo run -p evidenceos-daemon -- --listen 127.0.0.1:50051 --data-dir ./data
--etl-pathis deprecated. Use--data-dirfor local and production launches.
Before opening a PR, run:
cargo fmt --check
cargo clippy --workspace --all-targets -- -D warnings
cargo test --workspaceOptional extended evidence:
make test-evidence- Add tests for any protocol-impacting change.
- Prefer black-box tests through public APIs and observable behavior.
- Add boundary and determinism checks for new numeric/configurable parameters.
- If you add or change a parameterized behavior, update the relevant row(s) in
docs/TEST_COVERAGE_MATRIX.mdin the same PR. - If you add new test assets or claims about behavior, update
docs/TEST_EVIDENCE.md.
- Keep scope narrow and security-relevant rationale explicit.
- Include docs updates for user-facing behavior/flags.
- Include a short validation section in the PR body with the commands you ran.
- Ensure no new daemon launch examples use deprecated
--etl-path.
Reviewers prioritize:
- nondeterminism in hashes, canonicalization, ordering,
- panic risk in request/runtime paths,
- input validation and fail-closed behavior,
- logging hygiene (no secrets/raw payloads), and
- evidence-backed claims.