GertySystems

Membership lesson · Build Your Jarvis · Module 7 — Machine operator

The allowlist — commands it may run

The headline of the module, and the most protected tool in the whole project. Jarvis gets a command runner — real commands, on the member's actual machine — built so the dangerous version is impossible rather than discouraged. The allowlist holds exact, complete commands — binary plus frozen arguments, never patterns, never prefixes, never "anything starting with" — each added by the member with a plain-English label. The runner executes only an exact match, spawns it directly with no shell in the path (so ; && | > are inert text, not tricks), and every single run goes through the 6.4 approval card showing the verbatim command — the runner never goes on always-allow in this module, full stop. Not on the list means it does not run — the model asking nicely changes nothing, and the member proves it by asking for something dangerous and watching the honest refusal. The read step teaches why exact commands matter with the argument-smuggling problem that burned real products in 2026.

This lesson ships with the paid path. Checkout isn't live yet — start with the free projects (Ground Zero + Off the Grid), or join the waitlist.

Free: Off the GridJoin waitlistCurriculum

Warning

Real power. Educational use only.

What we teach you to build is genuinely powerful — uncensored assistants, agents, and automations on your own hardware. In the wrong hands, that is as dangerous as malicious code in the wrong hands. We do not teach illegal, malicious, or harmful use. You are responsible for what you deploy.

See what we mean →