Blake Burns Technologies Inc.  ·  v2.0  ·  Phase 10

Nearest Star.
Infinite
Reach.

// a capability-secure language, now with a complete standard library

Centauri is a compiled, capability-secure, actor-concurrent programming language built in Rust. v2.0 rounds out the core language with dictionaries, functional list operations, graphics, sound, and LaunchControl — a fully capability-gated interface to the operating system.

0Phases ShippedPhase 0 – Phase 10
0Built-in Modulesfs · net · time · proc · math · gfx · audio · LaunchControl
0Capability GatesEvery I/O call is permit-checked
0RASP LayersStatic analysis · runtime checks · sandboxing
0Install Commandcargo run
The Language

A Starship
for Your Programs

Centauri compiles your source to bytecode and runs it on a Rust-native VM with a mark-sweep GC, an M:N actor scheduler, and a RASP security engine that intercepts every I/O call. capsules for objects, orbit for loops, explore/divert for errors.

v2.0 closes out the standard library: top-level fn functions, dictionaries, full string/list method sets, chainable .map()/.filter()/.reduce(), a math module, a gfx graphics canvas, an audio tone engine, and LaunchControl for permit-gated OS access.

Ph.0 Foundation Ph.1 Functions & Lists Ph.2 Capsules Ph.3 Error Handling Ph.4 RASP I/O Ph.5 Actors Ph.6 Datetime Ph.7 Chamber & Proc Ph.8 Core Expansion Ph.9 Collections & Media Ph.10 LaunchControl
telemetry.cnt
// Centauri v2.0 — capability-secure language · Phase 10
system Telemetry {
  permit os.read("/data")
  permit net.transmit

  launch() {
    sensors = {"core": 5790, "hull": 12, "fuel": 88.4}

    for name in sensors.keys() {
      transmit(name + ": " + str(sensors.get(name)))
    }

    total = sensors.values().reduce(fn(a, b) { return a + b }, 0)
    transmit("avg: " + str(math.round(total / 3)))

    log = LaunchControl.ReadFile("/data/mission.log")
    transmit(log)
  }
}
v2.0 Release

What's New

Three phases, shipped together: the core language is now expression-complete, the standard library covers collections and media, and the runtime can talk to the operating system without giving up capability security.

Phase 8

Core Expansion

Top-level fn functions, full arithmetic and string-concat operators, and/or/not logic, for...in iteration, and a set of built-in functions you can call without a namespace prefix.

Phase 9

Collections & Media

if/else if/else chaining, dictionary literals with .has()/.get()/.keys()/.values(), a full string and list method set, chainable .map()/.filter()/.reduce(), plus math, gfx, and audio modules.

Phase 10

LaunchControl

A capitalized-method OS interface — Move, WriteFile, ReadFile, Run, Download, and more — gated by os.read/os.write/os.exec/os.net permits and screened through RASP's path checker.

Why Centauri

Built for Capability, Not Chaos

Every language decision traces back to one idea: code should only be able to do what it was explicitly permitted to do.

🛡️
Capability Security
Every fs, net, and os call requires an explicit permit declaration, checked statically before your program runs.
core
🔬
RASP Engine
A runtime self-protection layer normalizes every path and argument, blocking traversal and injection even when a permit is held.
security
⚛️
Actor Concurrency
Every program runs on an M:N actor scheduler — spawn, send, receive — with no shared mutable state to race on.
concurrency
📦
Capsules
Objects with methods, inheritance, and super calls — a familiar OOP surface backed by a fast bytecode VM.
syntax
🗂️
Dictionaries & Lists
Dict literals with .has()/.get()/.keys()/.values(), plus chainable .map()/.filter()/.reduce() on lists.
phase 9
🎮
Graphics & Sound
A built-in gfx canvas and audio tone engine — open a window, draw pixels, and play tones with no external dependencies.
phase 9
🖥️
LaunchControl
A permit-gated, capitalized-method interface to the OS — file moves, process launches, and HTTP, all screened through RASP.
phase 10
🧵
OS Threads & Pools
The proc module exposes real OS threads, thread pools, and lock-free atomics for CPU-heavy workloads.
runtime
⚙️
Native AOT Compile
Ahead-of-time compilation to a native binary when you're ready to ship — no VM startup cost in production.
performance
Defense in Depth

Three Layers,
Zero Trust

RASP — Runtime Application Self-Protection — sits between your code and the operating system. It doesn't just check that a permit exists; it inspects every argument that crosses the boundary.

Path Traversal Sensitive Files Glob Injection Command Injection Prefix-Matched Grants
01Static Analysiscompile time
02Permit Resolutioncapability check
03check_path Normalizationruntime
04Syscall Executionsandboxed
Syntax Sampler

Speaks Centauri

A vocabulary you can hold in your head. The full glossary lives in the docs.

permitCapability GrantAuthorizes a specific fs/net/os call before it can run.
capsuleObject BlueprintDefines a type with methods, fields, and inheritance.
spawnNew ActorStarts a function running as an independent actor.
explore / divertTry / CatchStructured error handling without exceptions leaking state.
chamberFile ImportImports another .cnt file, de-duplicating diamond deps.
for...inIterationPhase 8 — iterate lists, dict keys, or ranges.
LaunchControlOS InterfacePhase 10 — capitalized-method, permit-gated OS access.
.reduce()Functional FoldPhase 9 — chainable with .map() and .filter().

The Nearest Star.
The Greatest Speeds.

Centauri v2.0 — Engineered by Blake Burns Technologies Inc.

Read the Docs Download now