JourdanLabs Install OMNIS

OMNIS KEY V1

One key.
Every engine.

A governed runtime for local, receipt-backed engineering intelligence. Every model and tool call passes the gate first; every action earns a hash-chained receipt. Secure, local, architectural โ€” not a chatbot cosplaying as an OS.

Install OMNIS KEY

OMNIS ยท governed action

intent model or tool request enters

gate BIFROST โ€” deterministic brake on policy

tool VANTAGE ยท CADMUS ยท governed MCP

envelope VELLUM โ€” signed action receipt

ledger LUNA โ€” hash-chained, re-runnable

RELEASED

alt BRAKED before execution when policy refuses

The gate is the product โ€” nothing executes on a vibe.

Why it exists

Agents and copilots can drift, leak, or take destructive actions with no audit trail. OMNIS KEY runs engineering work locally behind a deterministic gate: specify, verify, discover, remember โ€” with the same input producing the same verdict and the same hash every run.

Four engines

Specify โ†’ Verify โ†’ Discover โ†’ Remember. PROSPECTOR and LUNA ship live underneath; full OMNIS orchestration is V1.

CADMUSBrain dump โ†’ buildable spec. Acceptance tests, non-goals, constraints, and release blockers โ€” intent before code.SPECIFY
VANTAGECode verification โ€” deterministic findings and fix-ready release gates. Nine fixture suites cleared on the public receipt wall.VERIFY
PROSPECTORSoftware-estate discovery โ€” what is good, what is risky, what is missing, and what to fix first.DISCOVER
LUNAActivity โ†’ work brief. Persistent memory with evidence boundaries and export-ready receipts.REMEMBER

What makes it different

The brakeMutating or destructive actions are refused before they run, against per-agent policy. A drifting agent cannot quietly take an unsanctioned action.gate
Hash-chained receiptsEvery action is enveloped in VELLUM and chained into the LUNA ledger. Compliance can re-run and verify any decision after the fact.ledger
Governed MCP hostConnects to MCP servers and runs every tool call through the gate โ€” read-only calls clear; destructive calls brake before they reach the server.MCP
Air-gapped lockdownLockdown mode refuses every cloud model lane at the adapter โ€” not a status flag. The deterministic workbench runs fully offline.offline
Zero LLM decision pathGovernance verdicts are deterministic. Models may assist; they do not own the release decision.deterministic
Signed distributionMac app is Developer ID signed and Apple-notarized. Python wheel ships through the standard supply chain.signed

Governed MCP

Every MCP call through the gate โ€” proven on the real protocol, not a mock.

Read-only toolBrake clears โ†’ tool runs โ†’ result released โ†’ hashed into the ledger.approved
Destructive toolBrake refuses before execution โ†’ the tool never runs โ†’ the refusal is still ledgered.braked

Install

Two ways in โ€” local server on loopback, workbench in your browser. Requires Node.js 18+ on PATH.

OMNIS KEY ยท 0.1.4

pip pip install --upgrade omnis-key==0.1.4

run omnis โ€” full workbench

flag omnis --lockdown โ€” air-gapped, no cloud lanes

flag omnis --no-agents โ€” deterministic tools only

mac signed Developer ID ยท notarized ยท macOS 13+

Download & install guide Mac DMG 0.1.4

Full install steps, checksum, and proofs live on omniskey.ai.

Plain English

OMNIS KEY is one local keyring for serious engineering work. You ask it to spec a build, audit code, map a messy repo, or remember what happened last sprint โ€” but nothing dangerous runs until the gate says yes, and everything that does run leaves a receipt you can verify later. Same question, same answer, same hash.

Boundaries

OMNIS is the engineering OS layer inside MIRRORVERSE โ€” not HYGEIA clinical safety, not BACCHUS hospitality ops. Governance claims are re-runnable artifacts; we do not ship what we cannot prove on the receipt wall.

โ† Products MIRRORVERSE โ†’ Install guide โ†’