Open-source infrastructure

Eunomia

Open-source eBPF infrastructure for runtime extension, GPU tracing, and AI Agents.

What Eunomia Provides

Runtime infrastructure, public resources, and AI agent systems define the work behind Eunomia.

Runtime extension

Move eBPF beyond kernel-only workflows

Run, instrument, and extend systems with userspace execution paths, GPU paths, JIT/AOT support, and deployment models that fit production tooling.

Resources

Publish reusable tutorials, docs, blogs, and papers

Maintain executable tutorials, documentation entry points, technical writing, and research artifacts for eBPF builders.

AI Agents

Observe and harness AI agents at the system layer

Zero-instrumentation, framework-agnostic visibility into what agents actually do — plus runtime guardrails on what they are allowed to do.

Published at OSDI 2025 MIT licensedBacked by systems research

Projects

Open-source platform projects and public resources grouped by how people use them.

Platform

Execution engines, toolchains, runtime components, and low-level extension paths.

Runtime

bpftime

A high-performance userspace eBPF runtime and extension framework for uprobes, USDT, syscall, XDP, GPU, and related workflows.

Docs GitHub OSDI 2025

GPU

gpu_ext

Extending eBPF programmability and observability to GPUs via dynamic PTX offload — part of bpftime.

GPU docs LPC 2025

Runtime core

llvmbpf

A userspace eBPF VM with LLVM JIT/AOT support, used as the compiler and execution core of bpftime.

Docs GitHub Blog

Toolchain

eunomia-bpf

Build, package, distribute, and run eBPF programs with JSON metadata and WebAssembly OCI workflows.

Docs GitHub Apsara 2022

WebAssembly

wasm-bpf

WebAssembly-based eBPF tooling and runtime support for lightweight sandboxing and cloud native deployment.

Docs GitHub KubeCon NA 2023

AI Agents

Tracing, observability, and safety work for AI agent systems.

Agent observability

AgentSight

Zero-instrumentation LLM and AI agent observability with eBPF, process monitoring, and TLS traffic correlation.

Docs GitHub PACMI 2025

AI tracing

GPTtrace

Generate eBPF tracing programs with natural language and use LLMs to explore Linux kernel behavior.

Docs GitHub eBPF 2024

Resources

Tutorials, documentation, blog posts, and research papers for eBPF builders.

Learn

Tutorials

Executable eBPF tutorials from hello world to sched-ext, networking, userspace tracing, and GPU scenarios.

Tutorials GitHub

Docs

Documentation

Curated entry points for runtime documentation, project references, and practical eBPF guides across the site.

Projects Platform

Writing

Blog

Technical posts on eBPF, userspace runtimes, AI tracing, systems research, and production engineering notes.

Papers & Research

Research artifacts and paper links covering bpftime, LLM-assisted tracing, AI agent safety, and GPU systems work.

Research OSDI 2025

Latest writing

All posts

ActPlane: Pushing Agent Harness Enforcement Down to Kernel eBPF

ActPlane is an eBPF-based policy engine that observes and enforces AI agent behavior at the OS kernel level. This post analyzes the systemic blind spots of prompt constraints, tool-layer guards, and sandboxes, and explains how ActPlane uses label propagation and temporal predicates to implement a deterministic agent harness.

May 31, 2026

Runtime Observability and Enforcement for Opaque AI Agents with eBPF: Beyond Sandboxes and Approvals

As AI coding agents run autonomously for hours inside harnesses and sandboxes the platform team may not own, approval-based control breaks down. This post argues for separating agent security into three layers (intent authorization, execution isolation, side-effect verification) and using eBPF-based observability (AgentSight) and enforcement (ActPlane) as an independent runtime observability and enforcement below the harness.

May 25, 2026

When CPU Noise Slows Down GPU Inference: Measuring Scheduler and IRQ Impact with eBPF

Quantitative eBPF tracing of CUDA kernel launches, scheduler context switches, and IRQs shows when CPU noise matters for GPU LLM inference and how CPU pinning recovers throughput.

May 24, 2026