JOUNES // FORECASTS
Home  ·  Projects  ·  Essays  ·  GitHub  ·  LinkedIn  ·  Email
// RESEARCH-RATE FORECAST

Research-rate forecast

TimesFM 2.0 · zero-shot · 14-day horizon
Last 7 days: 21.29 bullets/day  ·  Next 14 days: 22.75/day  ·  +6.9%

What this is

A continuously-running pipeline reads recent AI-infrastructure research — arXiv abstracts, GitHub repos, HN threads, lobsters, OpenAlex — and extracts concrete "what to build" suggestions from each. Those suggestions are clustered nightly by topic (BERTopic over the embedded text). Each cluster's daily volume is fed through a zero-shot time-series model (TimesFM 2.0) which predicts the next 14 days.

The numbers below are bullets per day — one bullet is one extractable engineering suggestion from one source. Rising clusters indicate where the AI-infrastructure community is converging next; declining ones lose attention. Predictions made 2026-05-21, back-graded each Sunday against actuals.

  1. capability exec task replace0.25/day+253.4%
    What’s being proposed
    • Dynamic Argument Scoping Engine Building on the Aethelgard concept of a Capability Governor, a framework is needed to dynamically scope which CLI flags and mount options are available based on the task's "minimum viable capability set". This…
    • Capability-Based Access Replace the fs-bridge.ts canonical path validationand the apply_patch workspace logicwith a capability-based access model. This removes the need for repeated string parsing and prevents vulnerabilities like…
    • Runtime Isolation Implement a software-defined capability model to replace the current exec pipeline. This addresses the structural weakness where command identity is incorrectly assumed to be recoverable via lexical parsing.
  2. state recovery event knowledge0.2/day+204.7%
    What’s being proposed
    • Atomic state Recovery Runtimes Develop a runtime utilizing Clawstack's memory and disk snapshotting to enable deterministic rollbacks and "time-travel debugging" for autonomous agent failures.
    • Standardized State Transfer Protocols Replace lossy summarization with structured handoffs (e.g., YAML/JSON) to prevent "shift-change amnesia." This enables a "compounding" knowledge model where an Initializer Agent sets the environment and a coding…
    • Adaptive Event Encoder Build a dual-encoder system based on the PLEASING frameworkthat uses an adaptive gated mechanism to weigh historical events against global concurrent events.
  3. ebpf kernel bpftime programs0.2/day+199.3%
    What’s being proposed
    • Autonomous Capability Fuzzer Adapt the BRF (BPF Runtime Fuzzer)to stress-test the ebpf verifier against the specific syscall patterns generated by autonomous agents, ensuring that agent-driven runtime modifications do not introduce kernel…
    • User-Space ebpf Runtimes Implement binary rewriting via bpftime to execute uprobes and syscall hooks in user space by eliminating dual context switches.
    • Userspace ebpf Runtimes Integrate bpftime to implement syscall hooks in userspace to mitigate context-switch overhead.
  4. enforcement policy deterministic llm0.42/day+197.1%
    What’s being proposed
    • Deterministic Policy Layers Implement runtime engines using OPA/rego, Cedar, or YAML to intercept agent actions at sub-millisecond latency (<0.1ms p99), treating tool-calls as untrusted syscalls.
    • Deterministic Governance Kernel Implement a runtime enforcement layer for OpenClaw that replaces prompt-based guardrails with non-LLM policy engines to eliminate "ambient authority" and ensure sub-millisecond, deterministic policy enforcement.
    • Deterministic Pre-action Interceptor Develop a validation layer that shifts the security boundary from RLHF-based linguistic refusal to a structural check of functional intent [Thesis 2]. This interceptor must validate tool calls against strict schemas…
  5. proxy gvisor exfiltration credential0.16/day+158.6%
    What’s being proposed
    • Runtime Secret Scanners Develop security layers with lifecycle hooks that monitor for outbound secret patterns and enforce domain-tier restrictions on outbound requests to prevent credential exfiltration.
    • Hardened Argument Validation Layer Integrating gVisor kernel-level isolation with credential proxy sidecarsto ensure that agents cannot access raw secrets required for storage partition keys, effectively removing the raw material needed for privilege…
    • Defense-in-Depth Integration Combine gVisor for kernel-level workload isolation with credential proxy sidecars and strict network egress allowlists.
  1. byte tripwires nanotag granular0.13/day-85.2%
    What’s being proposed
    • Byte-Granular Secret Tripwires Integrate NanoTag's approach to provide byte-level overflow detection, preventing adversaries from leaking fragments of a secret within the same 16-byte MTE granule.
    • Hybrid Granularity Monitor Integrate "tripwire" granules to overcome the 16-byte hardware limit of MTE. Implementing a NanoTag approach allows the substrate to trigger software-based byte-granular detection only when a tripwire is hit…
    • Type-Isolated Heap Implement a HeMate-style allocator that isolates different primitive data types into distinct MTE-tagged regions. This creates a non-probabilistic barrier against intra-object overflows and use-after-free exploits.
  2. verification ebpf bytecode itself0.05/day-83.9%
    What’s being proposed
    • Continuous Attestation Loop A runtime layer utilizing SPIFFE/SPIRE for workload identity and ebpf-based telemetry to verify every network-socket transition in real-time against the original manifest.
    • Bytecode Verification Engine Integration of tools like Yaksha-Prashna to analyze third-party ebpf bytecode for functional correctness, ensuring that the security layer itself does not introduce hidden dependencies or backdoors.
    • Dynamic Sandbox for Verifiers To prevent the attestation gate itself from becoming a "God-Mode" attack surface, implement SandBPF to dynamically sandbox the ebpf programs performing the verification, preventing exploits that bypass static…
  3. tagging tag collision deterministic0.16/day-81.3%
    What’s being proposed
    • Deterministic Secret Tagging Implement compiler-level static analysis for deterministic taggingto ensure secret-bearing memory regions cannot be accessed via tag collision.
    • Deterministic Zoning for High-Assurance Modules Because ARM MTE is probabilistic, critical modules (e.g., cryptography, authentication) require deterministic zoning rather than random tagging to prevent adversaries from treating the defense as a hurdle.
    • Deterministic Tagging Engine Replace the standard 4-bit statistical taggingwith a zone-based assignment system. By pairing MTE tags with memory zones (zometag), the substrate can achieve deterministic spatial safety, eliminating the collision…
  4. steering fp8 mla deepseek0.06/day-79.7%
    What’s being proposed
    • Latent-Bottleneck Steering Kernels Build kernels that apply steering vectors directly to the compressed latent vector $c_{KV}$. This avoids the memory expansion required by traditional steering, maintaining the bandwidth efficiency that allows MLA to…
    • FP8 Steering Pipelines Develop a steering layer—similar to the EmoSteer architecture—that operates within the FP8 quantized PV computation pipeline. This is critical to prevent the steering process from becoming a memory-bandwidth bottleneck.
    • Native Integration Models like DeepSeek-V2 and DeepSeek-V3 use MLA to reduce KV cache size by 93.3%, enabling a 5.76x increase in maximum generation throughput.
  5. ampereone tag digit impact0.1/day-75.7%
    What’s being proposed
    • Intent-to-Tag Mapping Runtimes can map semantic agent intents to the 4-bit keys available in ARM64 virtual addresses. Assigning distinct tags to 'read' vs 'execute' intents utilizes MTE’s synchronous tag-checking to trigger a trap if a…
    • Memory Management Optimizer Since application memory management is the primary remaining source of overhead on AmpereOne, build a specialized allocator that aligns memory slices to MTE tag granules to minimize the performance penalties of…
    • Zero-Overhead Tag Storage Investigate tag storage architectures similar to the AmpereOne processor, which eliminates memory capacity overhead for tag storage while maintaining single-digit performance impact.
Provenance: Published 2026-05-21
// GENERATED FROM A LIVE OBSIDIAN VAULT · CLOUDFLARE PAGES · DRAFTED WITH AGENTS
← back to Forecasts