Skip to content
eunomia
中文

ActPlane Artifact Layout

This document records how ActPlane keeps product code, paper artifacts, and raw experiment history separate. It is intentionally an index, not an experiment result directory.

Branch Roles

ActPlane uses three long-lived artifact refs:

RefPurposeContents
masterOpen-source product branchActPlane source, product docs, tests, this artifact index, curated empirical-study summaries, and minimal benchmark scripts under docs/. It should not contain raw experiment outputs, tuning logs, Docker workspaces, or paper-only datasets.
artifact-readyReviewer-facing paper artifactReproducible scripts, frozen inputs, selected policies, canonical summaries, and the smallest result files needed to verify paper claims. This branch should exclude scratch runs and raw logs unless the artifact README explicitly marks them as required.
backup/2026-06-14-masterRaw historical backupFull historical docs, experiments, intermediate runs, raw data, and local research records as they existed before cleanup. Use this branch for forensic recovery, not for paper claims.

The current raw backup is already pushed:

ActPlane remote: https://github.com/eunomia-bpf/ActPlane
Raw backup ref: refs/heads/backup/2026-06-14-master
Raw backup commit: cceaee6be878eeff4b42caf9a069d535699ecf69

OpenAgentSafety's nested checkout was backed up separately:

OpenAgentSafety remote: https://github.com/eunomia-bpf/OpenAgentSafety.git
Raw backup ref: refs/heads/backup/2026-06-14-actplane-submodule
Raw backup commit: 8cb4131211435a933d44942479e79418972f8f9b

Restore Raw History

Inspect the ActPlane raw branch without changing the current checkout:

git fetch origin backup/2026-06-14-master
git show origin/backup/2026-06-14-master --stat

Restore the nested OpenAgentSafety checkout if needed:

rm -rf docs/OpenAgentSafety/OpenAgentSafety
git clone --branch backup/2026-06-14-actplane-submodule \
  https://github.com/eunomia-bpf/OpenAgentSafety.git \
  docs/OpenAgentSafety/OpenAgentSafety
git -C docs/OpenAgentSafety/OpenAgentSafety rev-parse HEAD

Expected nested checkout commit:

8cb4131211435a933d44942479e79418972f8f9b

Main Branch Policy

The master branch should keep only assets that help users build, test, or understand ActPlane as a policy engine.

Keep in master:

  • ActPlane source code and tests.
  • Product documentation.
  • Paper draft and paper-writing assets under docs/papers/.
  • docs/ARTIFACT.md.
  • Curated empirical-study summaries and aggregate artifacts under docs/empirical-study/.
  • Minimal benchmark scripts under docs/, currently docs/rq2-performance/.
  • Benchmark READMEs and .gitignore files that explain how to regenerate results.

Keep out of master:

  • docs/eval_runs/
  • docs/corpus/
  • docs/corpus-raw-full/
  • docs/corpus-test/
  • docs/corpus-evaluated/
  • docs/OctoBench/
  • docs/OpenAgentSafety/
  • Raw logs, Docker mounts, generated workspaces, model server logs, and historical tuning runs outside the retained paper draft and documented benchmark fixture areas.
  • docs/tmp/

Historical working notes, raw corpus workspaces, and scratch outputs live on the raw backup ref listed above, not on master.

Benchmark Scripts Kept Under Docs

Performance benchmark scripts should stay under docs/, not at repository root. The product-facing path is:

docs/rq2-performance/

This directory may keep:

  • README.md
  • run_perf.py
  • run_macro.py
  • plot_rq2.py
  • syscall_microbench.c
  • agent_trace_replay.py
  • linux_build_once.py
  • .gitignore

It should not keep generated results in master. Result directories belong in artifact-ready if they are canonical and small, or in the raw backup branch if they are historical, large, or not paper-facing.

Artifact-Ready Policy

The artifact-ready branch should be enough for an artifact evaluator to understand and rerun the paper's main claims without pulling the full raw history.

Keep in artifact-ready:

  • A top-level artifact README under docs/.
  • Frozen input manifests and selected policies.
  • Minimal scripts for each reported RQ.
  • Canonical result summaries and metadata.
  • Exact commands, commit IDs, model/backend settings, kernel information, and environment assumptions.

Do not keep in artifact-ready:

  • one_trace_tuning directories.
  • smoke/debug runs.
  • old failed runs.
  • raw model server logs.
  • Docker runtime workspaces or mount directories.
  • result directories that are not cited or explicitly marked as historical.

Canonical Result Candidates

Before cleanup, these were the main candidate result directories worth preserving or summarizing in artifact-ready:

Claim areaCandidate pathNotes
RQ1 expressivenessdocs/eval_runs/rq1-expressiveness/full-607-subagents/Full 607-policy compile result.
RQ2 compliancedocs/eval_runs/full/deepseek_rq1_20260607T193612Z_v4_pro/190 trace-conditioned decisions across five systems.
Performance microbenchdocs/rq2-performance/results/rq2-micro-2026-06-02T-osdi/Small aggregate and metadata files. Metadata records a dirty git tree, so rerun on a clean commit if this becomes the final paper artifact.
Performance macrobenchdocs/rq2-performance/results/rq2-macro-2026-06-02T-osdi-v2/Small aggregate and metadata files. Metadata records a dirty git tree, so rerun on a clean commit if this becomes the final paper artifact.
FN repair slicedocs/eval_runs/policy_revision/20260609T-rq1-fn-llamacpp-grouped/Useful as a scoped follow-up experiment, not a replacement for main RQ2.

Any other result directory should be treated as historical until explicitly promoted in the artifact README.

Non-Cite Rule

If an experiment output does not have all of the following, it should not appear in the paper or artifact-ready branch as a result:

  • Fixed command line or script entrypoint.
  • Commit ID.
  • Input manifest.
  • Environment metadata.
  • Result summary.
  • Clear status: canonical, exploratory, failed, or historical.

Exploratory data can stay in the raw backup branch, but it should not remain in master where users or reviewers could mistake it for a maintained result.

Continue exploring

Back to index

ActPlane: eBPF-Based IFC Policy Engine for AI Agent Harnesses

![License: MIT](https://opensource.org/licenses/MIT)

Previous

Agent Integrations

ActPlane can protect an agent in two ways:

Next

ActPlane Compared with Existing Products

This page positions ActPlane against products that teams already use for AI guardrails, sandboxes, observability, and runtime security.

Last updated
Jun 26, 2026
First published
Jun 26, 2026
Contributors
云微
Edit this pageShare on XShare on FacebookJoin discussionRSS feed

Was this page helpful?