Create an open-source lightweight 'OpenShell' equivalent that provides a hardened runtime for autonomous agents. It should enforce least-privilege access to local files and system tools using kernel-level sandboxing.