Nex

Forge templates are distributed by Armory and evaluated by Nex.

Armory treats forge templates as reviewed OCI packages. It indexes metadata, builds payload tarballs, emits API records, and applies public-safety linting. Nex remains the owner of the Pkl schema, evaluation semantics, image-build behavior, and destructive-operation controls.

Package layout

forge-templates/<slug>/
├── forge.toml   # Armory package metadata
├── forge.pkl    # canonical Nex payload
└── README.md

OCI shape

• Reference: ghcr.io/styrene-lab/omegon-armory/forge-templates/<slug>:<version>
• Media type: application/vnd.styrene.nex.forge-template.v1+tar
• Native runtime: Nex
• Degraded runtime: generic agent blueprint using forge.toml, forge.pkl, and README.md

Public safety gate

Public forge templates are scanned by the same payload lint gate as other Armory packages, plus forge-specific hazards. Public templates must not include fixed raw disk targets, private hostnames or IPs, join tokens, reusable first-server cluster initialization, or site-local deployment topology.

Current template

• Minimal Workstation
• All forge templates
• Full source document