Operating Systems

Security by Compartmentalization

Operating systems:

• Chrome OS:
  • Crostini [docs]
• Qubes OS
• Spectrum [unfinished, experimental]

Experiments:

• Qubes-lite with KVM and Wayland [github]

Tools:

• libkrun - A dynamic library providing Virtualization-based process isolation capabilities
  • muvm - run programs from your system in a microVM
• MicroVM.nix - NixOS MicroVMs

Casual

• https://getaurora.dev/
• https://universal-blue.org/
• https://fedoraproject.org/atomic-desktops/ - silverblue, kinoite
• https://bazzite.gg/
• https://projectbluefin.io/
• https://www.reddit.com/r/Fedora/comments/1ecxg0z/how_many_of_you_have_faith_in/

Network devices (firmware)

• https://www.liminix.org/
• https://vyos.io/vyos-universal-router

NAS / self-hosting OS:

• Sandstorm
• YunoHost
• TrueNAS
• openmediavault
• Rockstor

Android-like

• fydeOS
• BlissOS [github, blisslabs, blisscolabs]