Skip to content

cortexlinux/cortex-distro

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.github/workflows
.github/workflows
 
 
docs
docs
 
 
iso
iso
 
 
packages
packages
 
 
repository/scripts
repository/scripts
 
 
sbom
sbom
 
 
scripts
scripts
 
 
tests
tests
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

Cortex Distro

Debian-based Distribution Engineering for Cortex Linux

License Debian Build

Overview

cortex-distro handles everything related to building and distributing Cortex Linux as a Debian-based operating system. This includes ISO generation, package repository management, automated installation, and supply-chain security.

Cortex Linux is an AI-native operating system that translates natural language commands into Linux operations, eliminating traditional documentation complexity for server management.

Quick Start

Build ISO (Debian/Ubuntu host required)

# Clone repository
git clone https://github.com/cortexlinux/cortex-distro.git
cd cortex-distro

# Install dependencies (requires sudo)
sudo apt-get install -y live-build debootstrap squashfs-tools xorriso \
    isolinux syslinux-efi grub-pc-bin grub-efi-amd64-bin \
    mtools dosfstools dpkg-dev devscripts debhelper fakeroot gnupg

# Build offline ISO (recommended)
chmod +x scripts/build.sh
sudo ./scripts/build.sh offline

# Or use Makefile
make deps  # Install dependencies
make iso   # Build ISO

Output

After a successful build:

output/
├── cortex-linux-0.1.0-amd64-offline.iso      # Bootable ISO
├── cortex-linux-0.1.0-amd64-offline.iso.sha256
├── packages/
│   ├── cortex-archive-keyring_*.deb
│   ├── cortex-core_*.deb
│   └── cortex-full_*.deb
└── sbom/
    ├── cortex-linux-0.1.0.cdx.json           # CycloneDX SBOM
    └── cortex-linux-0.1.0.spdx.json          # SPDX SBOM

Architecture

cortex-distro/
├── iso/                        # ISO build configuration
│   ├── live-build/             # Debian live-build configs
│   │   ├── auto/               # Build automation scripts
│   │   └── config/             # Package lists, hooks, includes
│   └── preseed/                # Automated installation preseeds
├── packages/                   # Debian package definitions
│   ├── cortex-archive-keyring/ # GPG keyring package
│   ├── cortex-core/            # Minimal installation meta-package
│   └── cortex-full/            # Full installation meta-package
├── repository/                 # APT repository tooling
│   └── scripts/                # repo-manage.sh
├── sbom/                       # SBOM generation (CycloneDX/SPDX)
├── branding/                   # Plymouth theme, wallpapers
├── scripts/                    # Build automation
│   └── build.sh                # Master build script
├── tests/                      # Verification tests
│   ├── verify-iso.sh
│   ├── verify-packages.sh
│   └── verify-preseed.sh
├── .github/workflows/          # CI/CD pipelines
├── Makefile                    # Build targets
└── README.md

Key Components

Component Description
ISO Builder Reproducible ISO image pipeline using Debian live-build
APT Repository Signed package repository with GPG key management
Meta-packages cortex-core (minimal), cortex-full (complete)
First-boot Preseed automation and idempotent provisioning
SBOM Software Bill of Materials (CycloneDX/SPDX)

Installation Profiles

cortex-core (Minimal)

  • Base system with Python 3.11+
  • Security sandbox (Firejail, AppArmor)
  • SSH server
  • Cortex package manager dependencies

cortex-full (Recommended)

Everything in cortex-core plus:

  • Docker and container tools
  • Network security (nftables, fail2ban)
  • Monitoring (Prometheus node exporter)
  • Web server (nginx) and TLS (certbot)
  • GPU support prerequisites
  • Modern CLI tools (htop, btop, fzf, ripgrep, bat)

Automated Installation

Cortex Linux supports fully unattended installation via preseed:

# Boot parameter for automated install
preseed/file=/cdrom/preseed/cortex.preseed

Preseed Features

  • UEFI and BIOS support
  • LVM partitioning (default)
  • Optional LUKS encryption
  • SSH key injection
  • Admin user creation
  • Cortex repository configuration

APT Repository

Cortex uses a signed APT repository with deb822 format:

# /etc/apt/sources.list.d/cortex.sources
Types: deb
URIs: https://repo.cortexlinux.com/apt
Suites: cortex cortex-updates cortex-security
Components: main
Signed-By: /usr/share/keyrings/cortex-archive-keyring.gpg

Repository Management

# Initialize repository
./repository/scripts/repo-manage.sh init

# Add package
./repository/scripts/repo-manage.sh add packages/cortex-core_0.1.0-1_all.deb

# Publish (sign and generate metadata)
CORTEX_GPG_KEY_ID=ABCD1234 ./repository/scripts/repo-manage.sh publish

# Create snapshot
./repository/scripts/repo-manage.sh snapshot

# Export for offline use
./repository/scripts/repo-manage.sh export cortex-offline-repo

Security

Supply Chain

  • Signed ISO images (SHA256/SHA512)
  • Signed APT repository (GPG)
  • SBOM generation (CycloneDX, SPDX)
  • Reproducible builds (goal)

System Hardening

  • AppArmor profiles
  • Firejail sandboxing
  • Secure sysctl defaults
  • SSH hardening
  • nftables firewall

Build Targets

make help           # Show all targets
make iso            # Build full offline ISO
make iso-netinst    # Build minimal network installer
make package        # Build all Debian packages
make package PKG=cortex-core  # Build specific package
make sbom           # Generate SBOM
make test           # Run verification tests
make clean          # Remove build artifacts
make deps           # Install build dependencies

Topics Covered

This repository implements 9 major topics from the Cortex Linux planning:

  • Automated installation and first-boot provisioning
  • Cortex package repository and apt trust model
  • Debian base selection and compatibility contract
  • Debian packaging strategy for Cortex components
  • GPU driver enablement and packaging (NVIDIA/AMD)
  • ISO image build system (live-build)
  • Kernel, firmware, and hardware enablement plan
  • Reproducible builds, artifact signing, and SBOM outputs
  • Upgrade, rollback, and version pinning

Requirements

Build Host

  • Debian 12+ or Ubuntu 24.04+
  • 10GB+ free disk space
  • Internet connection (for package downloads)
  • Root/sudo access

Target Hardware

  • x86_64 (amd64) architecture
  • UEFI or Legacy BIOS
  • 2GB+ RAM (4GB+ recommended)
  • 20GB+ storage

Contributing

See CONTRIBUTING.md for guidelines.

Development Workflow

  1. Fork the repository
  2. Create a feature branch
  3. Make changes
  4. Run tests: make test
  5. Submit PR

Related Repositories

  • cortex - AI-powered package manager CLI
  • website - cortexlinux.com

License

Apache 2.0 - See LICENSE

Support

Copyright 2025 AI Venture Holdings LLC

About

The AI Layer for Linux — Custom ISO builder. Debian/Ubuntu base • Embedded LLM • NVIDIA variants

cortexlinux.com

Topics

firmware linux-kernel linux-distribution secure-boot reproducible-builds amd-gpu sbom nvidia-drivers ai-native ai-infrastructure iso-builder linux-ai-agent cortex-linux ai-linux-os ai-layer-linux ai-native-linux agentic-linux cortex-linux-ai ai-linux-distro embedded-llm-linux

Resources

Readme

License

View license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

v0.1.0 - Initial cortex-distro release Latest
Jan 9, 2026

Packages

No packages published

Contributors 2

  •  
  •  

Languages