Update README.md: restructure content, expand feature details, and clarify examples

dpsoft · dpsoft · commit 27bcd767cfe9 · 2026-02-17T12:51:25.000-03:00
- Enhanced branding with design principles, updated CI badges, and new headers.
- Refined feature overview with expanded descriptions of isolation and pipeline capabilities.
- Streamlined examples: clarified configurations and added runtime backend explanations.
- Removed outdated declarative spec section and reorganized Quick Start/demo sections.
diff --git a/README.md b/README.md
@@ -2,32 +2,54 @@
   <img src="assets/logo/void-box.png" alt="void-box" width="200">
   <h1>void-box</h1>
   <p><strong>Composable agent runtime with hardware isolation</strong></p>
-  <p><code>VoidBox = Agent(Skills) + Environment</code></p>
 
-  <a href="https://github.com/the-void-ia/void-box/actions/workflows/ci.yml"><img src="https://img.shields.io/github/actions/workflow/status/the-void-ia/void-box/ci.yml?branch=main&style=flat-square&label=CI" alt="CI"></a>
-  <a href="https://github.com/the-void-ia/void-box/blob/main/LICENSE"><img src="https://img.shields.io/badge/license-Apache--2.0-blue?style=flat-square" alt="License"></a>
+  <p>
+    <em>Design principle:</em> Skills are declared capabilities.<br>
+    They execute inside isolated micro-VM boundaries — not shared processes.
+  </p>
+
+  <p><code>VoidBox = Agent(Skills) + Isolation</code></p>
+
+  <!-- CI badge (official GitHub Actions badge) -->
+  <a href="https://github.com/the-void-ia/void-box/actions/workflows/ci.yml">
+    <img src="https://github.com/the-void-ia/void-box/actions/workflows/ci.yml/badge.svg?branch=master" alt="CI">
+  </a>
+
+  <a href="https://github.com/the-void-ia/void-box/blob/main/LICENSE">
+    <img src="https://img.shields.io/badge/license-Apache--2.0-blue?style=flat-square" alt="License">
+  </a>
   <img src="https://img.shields.io/badge/rust-1.83%2B-orange?style=flat-square&logo=rust" alt="Rust 1.83+">
 </div>
 
 <br>
 
 <p align="center">
   <a href="docs/architecture.md">Architecture</a> ·
-  <a href="#quick-start">Getting Started</a> ·
+  <a href="#quick-start">Quick Start</a> ·
   <a href="#observability">Observability</a>
 </p>
 
-> [!NOTE]
-> **v0 preview** — Functional, 222+ tests passing, KVM + Ollama E2E verified. API may change.
+<p align="center">
+  Local-first. Cloud-ready. Runs on any Linux host with <code>/dev/kvm</code>.
+</p>
+
+> **Status:** v0 (early release). Production-ready architecture; APIs are still stabilizing.
+
+---
 
 ## What You Get
 
-- **Hardware isolation** — KVM micro-VMs, not containers. Fresh VM per agent.
-- **Skill-native** — Procedural knowledge (SKILL.md), MCP servers, CLI tools. Compatible with [skills.sh](https://skills.sh) ecosystem.
-- **Composable pipelines** — Sequential `.pipe()`, parallel `.fan_out()`, streaming output.
-- **Multi-LLM** — Claude, Ollama, or any OpenAI-compatible endpoint. Per-box model selection.
-- **Observability built-in** — OTLP traces/metrics, structured logs, guest telemetry via procfs.
-- **No root required** — Usermode SLIRP networking via smoltcp, no TAP devices.
+- **Hardware isolation** — KVM micro-VMs, not containers. Fresh micro-VM per stage.
+- **Policy-enforced execution** — Command allowlists, rlimits, seccomp-BPF, and controlled network egress.
+- **Skill-native** — Procedural knowledge (SKILL.md), MCP servers, and CLI tools provisioned into the sandbox.
+- **Composable pipelines** — Sequential `.pipe()`, parallel `.fan_out()`, streaming output with stage-level failure domains.
+- **Model backend options** — claude-code runtime using Claude (default) or Ollama.
+- **Observability built-in** — OTLP traces/metrics, structured logs, and guest telemetry via procfs.
+- **No root required** — Usermode SLIRP networking via smoltcp (no TAP devices).
+
+Isolation is the primitive. Pipelines are compositions of bounded execution environments.
+
+---
 
 ## Quick Start
 
@@ -51,11 +73,11 @@ let hn_api = Skill::file("skills/hackernews-api.md")
 let reasoning = Skill::agent("claude-code")
     .description("Autonomous reasoning and code execution");
 
-// VoidBox = Agent(Skills) + Environment
+// VoidBox = Agent(Skills) + Isolation
 let researcher = VoidBox::new("hn_researcher")
     .skill(hn_api)
     .skill(reasoning)
-    .llm(LlmProvider::ollama("qwen3-coder"))
+    .llm(LlmProvider::ollama("qwen3-coder")) // claude-code runtime using Ollama backend
     .memory_mb(1024)
     .network(true)
     .prompt("Analyze top HN stories for AI engineering trends")
@@ -69,61 +91,20 @@ let result = researcher.run(None).await?;
 println!("{}", result.claude_result.result_text);
 ```
 
-## Declarative Spec
-
-```yaml
-api_version: v1
-kind: agent
-name: hn_researcher
-sandbox:
-  memory_mb: 1024
-  network: true
-llm:
-  provider: ollama
-  model: qwen3-coder
-agent:
-  prompt: "Analyze top HN stories for AI engineering trends"
-  skills:
-    - "file:skills/hackernews-api.md"
-    - "agent:claude-code"
-```
-
-```bash
-voidbox run --file hackernews_agent.yaml
-```
-
-## Pipeline Example
-
-```rust
-use void_box::pipeline::Pipeline;
-
-// Compose: sequential + parallel stages with streaming output
-let result = Pipeline::named("trading_analysis", data_box)
-    .pipe(quant_box)                                    // sequential
-    .fan_out(vec![sentiment_box, risk_box])              // parallel: both get quant output
-    .pipe(strategy_box)                                  // sequential: gets merged results
-    .run_streaming(|box_name, chunk| {
-        eprint!("[{}] {}", box_name, String::from_utf8_lossy(&chunk.data));
-    })
-    .await?;
-
-println!("Cost: ${:.4} | Tokens: {}in/{}out",
-    result.total_cost_usd(),
-    result.total_input_tokens(),
-    result.total_output_tokens());
-```
-
+---
 ## Architecture
 
 ```
 ┌─────────────────────────────────────────────┐
 │ Host                                         │
-│  VoidBox / Pipeline / Daemon                 │
+│  VoidBox Engine / Pipeline Orchestrator      │
+│                                              │
 │  ┌─────────────────────────────────────┐    │
 │  │ VMM (KVM)                           │    │
 │  │  vsock ←→ guest-agent (PID 1)       │    │
-│  │  SLIRP ←→ eth0 (10.0.2.15)         │    │
+│  │  SLIRP ←→ eth0 (10.0.2.15)           │    │
 │  └─────────────────────────────────────┘    │
+│                                              │
 │  Seccomp-BPF │ OTLP export                  │
 └──────────────┼───────────────────────────────┘
      Hardware   │  Isolation
@@ -132,30 +113,13 @@ println!("Cost: ${:.4} | Tokens: {}in/{}out",
 ┌──────────────▼───────────────────────────────┐
 │ Guest VM (Linux)                              │
 │  guest-agent: auth, allowlist, rlimits        │
-│  claude-code → Ollama / Claude API            │
-│  skills provisioned at ~/.claude/skills/      │
+│  claude-code runtime (Claude API or Ollama backend) │
+│  skills provisioned into isolated runtime     │
 └───────────────────────────────────────────────┘
 ```
 
 See [docs/architecture.md](docs/architecture.md) for the full component diagram, wire protocol, and security model.
 
-## Security Model
-
-- **Session secret** — 32-byte random token (getrandom), injected via kernel cmdline, required for all vsock messages
-- **Seccomp-BPF** — Restricts VMM thread to minimum syscalls for KVM operation
-- **Command allowlist** — Guest-agent only executes approved binaries
-- **Resource limits** — setrlimit on guest processes (memory, open files, processes, file size)
-- **SLIRP rate limiting** — Max concurrent connections, CIDR deny list
-- **No root required** — Usermode networking via smoltcp, no TAP devices
-
-## LLM Providers
-
-| Provider | Config | Notes |
-|---|---|---|
-| **Claude** (default) | `ANTHROPIC_API_KEY` | Production quality |
-| **Ollama** | `LlmProvider::ollama("model")` | Local, any model. Guest reaches host via SLIRP gateway (10.0.2.2) |
-| **Custom** | `LlmProvider::custom(url)` | OpenRouter, vLLM, any OpenAI-compatible endpoint |
-
 ## Observability
 
 - **OTLP traces** — Per-box spans, tool call events, pipeline-level trace
@@ -165,38 +129,6 @@ See [docs/architecture.md](docs/architecture.md) for the full component diagram,
 
 Enable with `--features opentelemetry` and set `VOIDBOX_OTLP_ENDPOINT`.
 
-## Project Structure
-
-```
-void-box/              Main crate (VMM, sandbox, pipeline, skills, observability)
-  src/
-    agent_box.rs       VoidBox: Agent(Skills) + Environment
-    pipeline.rs        Sequential + parallel composition
-    skill.rs           Skill types (MCP, CLI, file, remote, agent)
-    llm.rs             LLM provider configuration
-    runtime.rs         Spec file → execution
-    vmm/               KVM micro-VM monitor
-    sandbox/           Mock + local sandbox abstraction
-    observe/           OpenTelemetry integration
-    network/           SLIRP usermode networking (smoltcp)
-guest-agent/           PID 1 inside guest VMs (vsock, auth, rlimits)
-void-box-protocol/     Wire format types (host ↔ guest)
-claudio/               Mock claude-code for testing
-```
-
-## Examples
-
-| Example | Description |
-|---|---|
-| `quick_demo` | Two-stage analyst/strategist pipeline |
-| `trading_pipeline` | Four-stage sequential financial pipeline with local skills |
-| `parallel_pipeline` | Diamond topology with `fan_out`, per-box models, streaming |
-| `ollama_local` | Single box with local Ollama model |
-| `remote_skills` | Pulls skills from skills.sh repositories |
-| `claude_workflow` | Workflow plan/apply pattern |
-| `claude_in_voidbox_example` | Interactive Claude session in sandbox |
-| `boot_diag` | VM boot diagnostics |
-
 ## Running & Testing
 
 ### Mock mode (no KVM required)
@@ -251,14 +183,7 @@ VOID_BOX_INITRAMFS=/tmp/void-box-test-rootfs.cpio.gz \
 cargo test --test e2e_skill_pipeline -- --ignored --test-threads=1
 ```
 
-## Troubleshooting
-
-**`/dev/kvm` permission denied** — Add your user to the `kvm` group and re-login.
-
-**`Not logged in`** — Use `OLLAMA_MODEL=...` for local inference or set `ANTHROPIC_API_KEY`.
-
-**Parallel stages timeout** — Use the same Ollama model for all parallel boxes, or increase `STAGE_TIMEOUT_SECS=600`.
-
 ## License
 
 Apache-2.0 · [The Void Platform](https://github.com/the-void-ia)
+
