noisyloop · noisyloop · May 19, 2026 · May 19, 2026 · May 19, 2026 · May 19, 2026
diff --git a/.gitignore b/.gitignore
@@ -13,3 +13,6 @@ everythingos-audit.jsonl
 everythingos-decisions.jsonl
 agent-revocations.jsonl
 model-guard/violations.jsonl
+
+# e2e proof-of-life artifacts
+.e2e-proof/
diff --git a/README.md b/README.md
@@ -17,6 +17,8 @@ EverythingOS was built to ask those questions first — and answer them structur
 
 EverythingOS is a TypeScript multi-agent framework for autonomous systems where **security, auditability, and containment** are non-negotiable. It is not a toy or a research prototype. It is the infrastructure layer for agents that make real decisions with real consequences.
 
+It also ships a kernel-level defense most agent frameworks don't have: the [**Glasswally integration**](#glasswally-integration--kernel-level-distillation-attack-detection) detects model-distillation/extraction campaigns via eBPF and routes pre-classified enforcement decisions into the agent SOC stack — see the section below.
+
 ---
 
 ## Architecture
@@ -272,15 +274,15 @@ These are real gaps. If you have ideas, open a discussion or a PR.
 ## Quick Start
 
 ```bash
-git clone https://github.com/noisyloop/everythingos
-cd everythingos
+git clone https://github.com/noisyloop/EverythingOS
+cd EverythingOS
 npm ci          # use ci, not install — lockfile is law
 
-cp .env.example .env
-# Set EOS_AGENT_SECRET (required in production):
-#   node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"
+# Create .env and set EOS_AGENT_SECRET (required in production):
+echo "EOS_AGENT_SECRET=$(node -e "console.log(require('crypto').randomBytes(32).toString('hex'))")" > .env
 
-npm test        # run the full test suite
+npm test        # run the full test suite (126 tests)
+npm run e2e:proof  # prove the full stack works end-to-end, no mocks
 npm run dev     # start with hot reload
 ```
 
@@ -299,6 +301,38 @@ npm run dev     # start with hot reload
 
 ---
 
+## Build your first agent
+
+Scaffold a new agent from the secure template — no source-reading required:
+
+```bash
+npx everythingos new my-agent
+# or, equivalently:
+npx eos new my-agent
+```
+
+It prompts for a **risk tier** (LOW / MEDIUM / HIGH) and a **description**, then writes `src/agents/my-agent/index.ts` from `src/agents/_scaffold` — with a Zod-validated manifest and **explicit per-channel publish/subscribe allowlists** (no wildcards). A generated agent goes through the exact same security pipeline as a built-in one; nothing is bypassed. (HIGH-tier agents require a registered `ApprovalGateAgent` before they will start — by design.)
+
+Register and run it (same pattern as [`examples/demo-simple.ts`](examples/demo-simple.ts)):
+
+```ts
+import MyAgentAgent from './src/agents/my-agent';
+import { agentRegistry } from './src';
+
+agentRegistry.register(new MyAgentAgent());
+await agentRegistry.start('my-agent');
+```
+
+Want proof the whole stack works as a system before you build on it? Run the end-to-end example — it registers a custom MEDIUM-tier agent, runs untrusted input through the injection-sanitization pipeline, performs an observable side effect, emits over the EventBus, and independently verifies the tamper-evident decision-ledger entry. **No mocks** — if any layer is broken it names it and exits non-zero:
+
+```bash
+npm run e2e:proof
+```
+
+See [`examples/e2e-proof.ts`](examples/e2e-proof.ts).
+
+---
+
 ## Contributing
 
 EverythingOS is built on the premise that agentic security is a hard, unsolved problem. The Known Limitations section above is not a list of bugs — it's a list of open research and engineering problems that the community is better positioned to solve together.

diff --git a/cli/bin.js b/cli/bin.js
@@ -1,2 +1,34 @@
 #!/usr/bin/env node
-import('./index.js');
+// EverythingOS CLI launcher.
+// The CLI is authored in TypeScript (cli/index.ts) and the project build
+// is noEmit, so run it through the local `tsx` runtime that ships as a
+// dev dependency. This makes `npx everythingos ...` work from a cloned
+// repo after `npm ci` with no separate build step.
+
+import { spawn } from 'node:child_process';
+import { fileURLToPath } from 'node:url';
+import { dirname, resolve } from 'node:path';
+import { existsSync } from 'node:fs';
+
+const here = dirname(fileURLToPath(import.meta.url));
+const cliEntry = resolve(here, 'index.ts');
+const localTsx = resolve(
+  here,
+  '..',
+  'node_modules',
+  '.bin',
+  process.platform === 'win32' ? 'tsx.cmd' : 'tsx',
+);
+
+const runner = existsSync(localTsx) ? localTsx : 'tsx';
+
+const child = spawn(runner, [cliEntry, ...process.argv.slice(2)], {
+  stdio: 'inherit',
+});
+
+child.on('exit', (code) => process.exit(code ?? 0));
+child.on('error', (err) => {
+  console.error('[everythingos] failed to launch CLI:', err.message);
+  console.error('[everythingos] ensure dependencies are installed: npm ci');
+  process.exit(1);
+});