chore(scaffold): initial SilverMetal program scaffold
Cross-platform privacy-hardening program. Two-layer product: - SilverLABS Application Stack (cross-platform spine) - Platform Hardening Profiles (per-OS, tier-honest) Platforms: Linux (Debian/Kicksecure), Android (Pixel/Samsung/Moto/generic), Windows (LTSC IoT), macOS (profile), iOS (MDM profile). Each flavour has both a preflashed hardware SKU path and a self-apply "harden your existing device" path. Includes umbrella docs (README + threat-model, design-principles, platform-matrix, roadmap, trust-model), per-platform and per-stack- component README stubs, .gitignore, LICENSE. Linux v1 ships first; Stack v1 = Browser + VPN + Sync. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
74
README.md
Normal file
74
README.md
Normal file
@@ -0,0 +1,74 @@
|
||||
# SilverMetal
|
||||
|
||||
> **Privacy-hardened devices for users who want their privacy back — on whatever platform they have.**
|
||||
|
||||
SilverMetal is SilverLABS' cross-platform privacy-hardening program. We don't believe in "one true OS" — we believe in meeting users on the platform they actually use, and giving them the strongest hardening that platform physically allows. Honestly labelled, no marketing fluff.
|
||||
|
||||
## What you get
|
||||
|
||||
Every SilverMetal device — whether you bought one preflashed or you're hardening your own — ships two layers:
|
||||
|
||||
1. **The SilverLABS Stack** — a suite of cross-platform privacy apps that replace the cloud services your device normally talks to (Google, Apple, Microsoft):
|
||||
- **SilverBrowser** — de-Googled, telemetry-free, fingerprint-resistant
|
||||
- **SilverVPN** — always-on, no-logs, our own infrastructure
|
||||
- **SilverSync** — private replacement for iCloud / Google Drive / OneDrive
|
||||
- **SilverChat** — end-to-end encrypted messenger *(v1.1)*
|
||||
- **SilverDuress** — duress password / panic-wipe *(v1.1)*
|
||||
- **SilverKeys** — zero-knowledge password manager *(v1.1)*
|
||||
|
||||
2. **A Platform Hardening Profile** — OS-level changes tailored to what your platform allows:
|
||||
- On **Linux** we ship a full custom OS
|
||||
- On **Android** we ship a custom ROM (or a profile, depending on your device)
|
||||
- On **Windows** we ship an installer that transforms LTSC IoT into a hardened build
|
||||
- On **macOS** and **iOS** we ship signed configuration profiles + setup scripts
|
||||
|
||||
## Two ways to get SilverMetal
|
||||
|
||||
### "I'm choosing a new device"
|
||||
Buy a **preflashed SilverMetal SKU** — a Pixel with SilverMetal Droid, a Coreboot laptop with SilverMetal Linux, etc. We've done all the work; it arrives ready.
|
||||
|
||||
### "I already own a device and want to harden it"
|
||||
Download the **free SilverLABS Stack** + the **hardening profile / installer / ROM** for your existing platform. Apply it yourself. Same software, same hardening, no hardware lock-in.
|
||||
|
||||
Every platform supports both modes. Nothing is premium-only; nothing is DIY-only.
|
||||
|
||||
## Platform matrix
|
||||
|
||||
| Platform | Hardening tier | What ships | Best for |
|
||||
|---|---|---|---|
|
||||
| **SilverMetal Linux** | A — full control | Custom Debian/Kicksecure-based ISO | Maximum privacy; users whose work is browser/office/dev/comms |
|
||||
| **SilverMetal Droid (Pixel)** | B — verified boot ours | GrapheneOS-based ROM | "Secure phone" buyers, journalists, high-risk users |
|
||||
| **SilverMetal Droid (Samsung / Motorola)** | C — varies | LineageOS/DivestOS-based ROM where supported, profile + stack elsewhere | Users with existing non-Pixel Android |
|
||||
| **SilverMetal Droid (generic)** | D — app + profile only | Stack install + work-profile hardening | "I have an Android, harden it" |
|
||||
| **SilverMetal Windows** | C — config layer | LTSC IoT installer + Stack + Group Policy hardening | Users locked into Windows-only software |
|
||||
| **SilverMetal macOS** | C-D — config + Stack | Signed config profile + setup script + Stack | Mac-committed users |
|
||||
| **SilverMetal iOS** | D — profile + curated apps | MDM profile + Stack from App Store | iPhone users wanting maximum-feasible hardening |
|
||||
|
||||
For honest pros/cons of each, see [`docs/platform-matrix.md`](docs/platform-matrix.md).
|
||||
|
||||
## Status
|
||||
|
||||
| Component | Status |
|
||||
|---|---|
|
||||
| Documentation + roadmap | **In progress** (this scaffold) |
|
||||
| SilverMetal Linux v1 | Planning → milestone 2 (build pipeline) |
|
||||
| SilverLABS Stack v1 (Browser + VPN + Sync) | Planning |
|
||||
| Other platforms | Planning, post-Linux v1 |
|
||||
|
||||
See [`docs/roadmap.md`](docs/roadmap.md) for the milestone-driven plan.
|
||||
|
||||
## Documentation
|
||||
|
||||
- [`docs/threat-model.md`](docs/threat-model.md) — who we defend against, who we don't
|
||||
- [`docs/design-principles.md`](docs/design-principles.md) — privacy-by-default, verifiability, honesty
|
||||
- [`docs/platform-matrix.md`](docs/platform-matrix.md) — what each platform can and cannot deliver
|
||||
- [`docs/roadmap.md`](docs/roadmap.md) — milestones, ship order, scope
|
||||
- [`docs/trust-model.md`](docs/trust-model.md) — signing keys, reproducible builds, governance
|
||||
|
||||
## License
|
||||
|
||||
Components carry their own licenses (most are GPL/MIT/Apache-derived from upstream forks). See individual directories.
|
||||
|
||||
## SilverLABS
|
||||
|
||||
SilverMetal is built by [SilverLABS](https://silverlabs.uk) — privacy-first infrastructure and applications.
|
||||
Reference in New Issue
Block a user