An ecosystem of opposition to institutionalized injustice
Code for San Francisco
Active Project
Project Status: alpha
changing the world
user testing
Project Lead:
Project Members:
Want to help this project grow? Let us know!
Recent Github Activity (updates daily)
 2017-11-20T02:03:36Z  @ajvb Sounds good. From https://coreos.com/rkt/docs/latest/devel/architecture.html -- > ## Immutable vs. mutable pods > > rkt supports two kinds of pod runtime environments: an _immutable_ pod runtime environment, and a new, experimental mutable pod runtime environment. > > **The immutable runtime environment is currently the default**, i.e. when executing any `rkt prepare` or `rkt run` command. **Once a pod has been created in this mode, no modifications can be applied.** So regarding @ageis's idea of bootstrapping an immutable runtime environment, rkt seemingly has that covered. (Note that, like Kubernetes, rkt thinks in terms of pods -- a set of containers that jointly make up an app, like the Pursuance System -- so having a "pursuance" pod that consists of 3 containers -- (1) Go binary + static assets, (2) PostgREST binary, (3) Postgres database -- should be pretty simple to create.) By default `rkt` will only run images signed by a GPG key that belongs to a domain that `rkt` has been explicitly told to trust using [`rkt trust`](https://coreos.com/rkt/docs/latest/subcommands/trust.html). Image signing: https://coreos.com/rkt/docs/latest/signing-and-verification-guide.html . [This](https://coreos.com/rkt/docs/latest/signing-and-verification-guide.html#distributing-images-via-meta-discovery) is especially sick -- if at https://pursuanceproject.org/pursuance we host an HTML file with these meta tags ``` <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta name="ac-discovery" content="pursuanceproject.org/pursuance pursuanceproject.org/pursuance/images/{name}-{version}-{os}-{arch}.{ext}"> <meta name="ac-discovery-pubkeys" content="pursuanceproject.org/pursuance https://pursuanceproject.org/pubkeys.gpg"> </head> </html> ``` and host our GPG-signed container images in a folder at https://pursuanceproject.org/pursuance/images, then on a new server we spin up, we can simply run `# rkt trust --prefix=pursuanceproject.org/pursuance` `$ rkt run pursuanceproject.org/pursuance:0.1` to securely spin up an instance of version 0.1 of Pursuance! If the `pursuance` pod container images aren't signed by any of the keys in https://pursuanceproject.org/pubkeys.gpg , `rkt` will not run them.
share to: 

Pursuance is a software tool for effectively organizing individuals to achieve a shared mission.

Our free, open source, and secure Pursuance System software enables participants to create action-oriented groups called "pursuances", discuss how best to achieve their mission, rapidly record exciting strategies and ideas in an actionable form (namely as tasks), divvy up those tasks among one other, share files and documents, get summoned when relevant events occur (e.g., when they are assigned a task, or when mentioned), request help from others, receive social recognition for their contributions, and to delegate tasks to other pursuances in this ecosystem in order to harness its collective intelligence, passion, and expertise.

Pursuance can be used for a great many things. But we, its creators, have certain interests. Specifically, we are focused on organizing activists, journalists, and non-profits in order to solve serious problems we face as a society -- the surveillance state, the police state, the drug war, and many more.

Fundamentally, we aim to confront and correct, via an energetic, global network of forward-thinking individuals, the injustices imposed on society by corrupt institutions the world over.