envpod Desktop · Linux

Personal AI Shield.
Download & Install.

Your workspace, sandboxed against Inference Permanence. Every AI tool runs inside an isolated pod with its own filesystem view, firewall, and credential vault — and nothing you paste into it leaks past the boundary.

v0.0.1-alpha-lite · x86_64 Linux · alpha testing
AppImage · any Linux
82 MB · amd64
Portable single-file binary. No install. Make executable and run.
⤓ Download AppImage
sha256 28bcb0f22e8aabfbe695df06a77a15f13c0b4f7664bdc87ad1e3952199b664d4
.deb · Ubuntu, Debian, Mint
8.0 MB · amd64
Debian package with desktop-file integration. Installs to /usr/bin/envpod-desktop.
⤓ Download .deb
sha256 290bc03a4f8758aef0c25ab25e2da3c8228e2efbfde1aee67477b8cc4e314ecc
.rpm · Fedora, RHEL, openSUSE
8.0 MB · x86_64
RPM package with desktop-file integration. Installs to /usr/bin/envpod-desktop.
⤓ Download .rpm
sha256 dc36648bc021104655cd11c73f101a794fd78f0a8be4bea05871e0ec99891f13

All three files in one list: SHA256SUMS  ·  Verify with sha256sum -c SHA256SUMS

Quick install

AppImage (portable, no install):

curl -fsSL https://envpod.com/download/envpod-desktop_0.0.1-alpha-lite_amd64.AppImage -o envpod-desktop.AppImage
chmod +x envpod-desktop.AppImage
./envpod-desktop.AppImage

Ubuntu / Debian:

curl -fsSL https://envpod.com/download/envpod-desktop_0.0.1-alpha-lite_amd64.deb -o envpod-desktop.deb
sudo apt install ./envpod-desktop.deb

Fedora / RHEL / openSUSE:

curl -fsSL https://envpod.com/download/envpod-desktop-0.0.1-alpha-lite-1.x86_64.rpm -o envpod-desktop.rpm
sudo dnf install ./envpod-desktop.rpm

Runtime requirements

  • bubblewrap 0.9.0 or newer  (apt install bubblewrap / dnf install bubblewrap)
  • Ubuntu 24.04+: unprivileged user namespaces must be allowed. If the app's preflight screen shows the apparmor_restrict_unprivileged_userns warning, run the exact sysctl it prints.
  • For VS Code / Cursor: install the .deb from Microsoft's repo (not the snap — snap-confined tools can't be sandboxed in v0.0.1).

License activation

Alpha is free — no license required. Activating a Desktop or Pro Desktop JWT from the Account panel in Advanced unlocks the paid features (unlimited projects, Mirror write mode, firewall, vault allowlist).

During alpha, paid-tier licenses are issued on request by email.

What's in this release

  • Per-project sandbox: bubblewrap foundation, per-folder RW/RO pills, Mirror (overlay) or Direct write modes with Apply / Discard
  • Per-project firewall — exact + .suffix host blocking via the local proxy (blocks render red in the live activity stream)
  • Per-project credential vault with a named-key allowlist
  • 8 bundled tool profiles: Claude Code, VS Code, Cursor, Codex CLI, Continue.dev, Terminal, Jupyter Lab, Browser
  • Activity stream, audit counters, workspace diff, JSON audit export
  • 61 unit tests green at ship

Known limits (v0.0.1-alpha-lite)

  • Linux x86_64 only. macOS lands in v0.0.2; Windows in v0.0.3.
  • Mirror-mode deletes don't propagate on Apply (addititve sync only — deferred to v0.0.4).
  • No GPG-signed apt/rpm repositories yet (v0.0.5).
  • Snap-confined tools cannot be sandboxed — install .deb variants instead.

Report feedback

Export any project's audit bundle from its card (⤓ Export JSON) and email it with a short description of what went wrong. We read everything during alpha.