OS worlds (run-os and run-os-sandboxed)
OS worlds exist to run X07 as a real general-purpose language.
They are not deterministic, and are never used in deterministic evaluation.
run-os
Capabilities may include:
- real filesystem
- real network
- real time
- environment variables
- subprocess spawning
run-os-sandboxed
Same as run-os, but enforced by policy:
- allowlists for network destinations
- allowlists for executable paths
- max live processes / connections
- byte caps / timeouts
Platform support
X07 should treat these as Tier-1 OS platforms:
- Linux
- macOS
- Windows
And Tier-2:
- Debian/Ubuntu variants
- Alpine (musl)
- FreeBSD (optional)
(Your exact tiering is documented in the core repo’s CI scripts.)
Security note
run-os-sandboxed is “policy gating + resource limits”.
It is not a hardened sandbox against hostile code.
For untrusted code, use additional OS-level sandboxing (containers, VMs, seccomp, etc.) around X07.