[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-71216":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":10,"language":11,"languages":10,"totalLinesOfCode":10,"stars":12,"forks":13,"watchers":14,"openIssues":15,"contributorsCount":16,"subscribersCount":16,"size":16,"stars1d":17,"stars7d":18,"stars30d":19,"stars90d":16,"forks30d":16,"starsTrendScore":20,"compositeScore":21,"rankGlobal":10,"rankLanguage":10,"license":22,"archived":23,"fork":23,"defaultBranch":24,"hasWiki":23,"hasPages":23,"topics":25,"createdAt":10,"pushedAt":10,"updatedAt":26,"readmeContent":27,"aiSummary":28,"trendingCount":16,"starSnapshotCount":16,"syncStatus":29,"lastSyncTime":30,"discoverSource":31},71216,"pinokio","pinokiocomputer\u002Fpinokio","pinokiocomputer","AI Browser","https:\u002F\u002Fpinokio.co",null,"JavaScript",7548,763,101,428,0,14,32,110,42,110.65,"MIT License",false,"main",[],"2026-06-12 04:00:59","# Pinokio\n\nLaunch Anything.\n\n# Script Policy\n\nPinokio is a 1-click launcher for any open-source project. Think of it as a terminal application with a user-friendly interface that can programmatically interact with scripts.\n\nThis means:\n\n1. **Scripts can run anything:** Just like terminal apps can run shell scripts, Pinokio scripts can run any command, download files, and execute them. Essentially, Pinokio is a user-friendly terminal with a UI.\n2. **How scripts can be run:** There are two ways to run scripts on Pinokio:\n    1. **Write your own:** Just like writing and executing shell scripts in the terminal, you can create your own scripts and run them locally.\n    2. **Install from the \"Discover\" page:** Vetted scripts are manually listed in the directory, tracked via Git, and frozen under the official GitHub organization. These are guaranteed to be secure and safe to install.\n3. **Verified Scripts:** To be featured on the \"Discover\" page, scripts must go through the following strict process:\n    1. **Publisher Verification:** You must be personally verified to submit scripts for consideration. Contact the Pinokio admin (https:\u002F\u002Fx.com\u002Fcocktailpeanut) to request verification.\n    2. **Github Organization Invitation:** Once verified, you'll be invited to the official Pinokio Factory GitHub organization as a contributor. Only members of this organization can publish scripts eligible for the \"Discover\" page. Abusing publishing privileges may result in removal from the organization.\n    3. **Repository Transfer and Freeze** To apply for a feature, you must transfer your script repository to the Pinokio Factory GitHub organization. Follow this guide: https:\u002F\u002Fdocs.github.com\u002Fen\u002Frepositories\u002Fcreating-and-managing-repositories\u002Ftransferring-a-repository\n    4. **Feature Application:** Once your repository is fully transferred and controlled by the organization, it is considered \"frozen\". You can then request to feature it on the \"Discover\" page by contacting the admin.\n    5. **Review:** The script will be thoroughly reviewed and tested by the Pinokio admin. If verified as safe, it will be featured on the \"Discover\" page.\n    6. **Troubleshooting:** If any issues arise after a script is featured, the Pinokio admin may:\n        - Delist the script from the \"Discover\" page\n        - Modify the script to resolve the issue. Since the script is under the Pinokio Factory organization, the admin has the rights to make necessary fixes.\n\n# Security\n\n## Scripts are isolated by design\n\nBy default all Pinokio scripts are stored run under an isolated location (at `~\u002Fpinokio\u002Fapi`). Additionally, all binaries installed through the built-in package managers in Pinokio are installed within `~\u002Fpinokio\u002Fbin`. Basically, everything you do is stored inside `~\u002Fpinokio`. The risk factor is when a script intentionally tries to deviatte away from this.\n\nThe script verification process checks to make sure this doesn't happen.\n\nTh Pinokio script syntax was designed to make this process simpler, both by human and machines.\n\n## Scripts are open source\n\nAll scripts must be downloaded from public git repositories. The scripts are both human readable and machine readable (written in JSON syntax), so you can always check the source code before running it.\n\nHere's an example install screen, with an alert letting you know the downloaded 3rd party script is about to be run, as well as the URL to the original script repository where it was downloaded from.\n\n![install.png](install.png)\n\n## Script Verification\n\nVerified scripts are scripts that are explicitly reviewed and approved by the Pinokio admin. Because the scripts are designed to run isolated by default, and the syntax makes it easy to detect when a command intentionally tries to run things outside of the isolated environment, it is easy to detect any script that does things out of the ordinary. Here are some of the checks done by the Pinokio admin to make sure each script file is secure:\n\n1. **Path check:** When we verify the scripts, we look at the scripts to see if all commands are run inside each app's path. The script syntax was designed to make this process easy (with the `path` attribute, which declares the folder path from which to run a command, and by default the execution path is each app's path)\n2. **Venv check:** We also check to make sure every dependency installation is done within the context of each app using `venv`. This process is again made easy with the script syntax (with the `venv` attribute, which automatically activates a virtual environment and installs all dependencies there, inside each app's folder)\n3. **3rd Party Package check:** We also check that any 3rd party packages installed through Pinokio to make sure that they are installed inside the pinokio isolated environment. The built-in package mangagers (Conda, Homebrew, Pip, and NPM) install everything inside the isolated pinokio home path (`~\u002Fpinokio`) by default. Since everything runs isolated by default, verifying this is simple (by checking that there are no explicit declaration of additional code that tries to go outside of the isolated environment)\n\nHere's an example execution script that installs python dependencies:\n\n```json\n{\n  \"method\": \"shell.run\",\n  \"params\": {\n    \"message\": \"uv pip install -r requirements.txt\",\n    \"path\": \"server\",\n    \"venv\": \"venv\"\n  }\n}\n```\n\n1. First of all, by default the entire thing is run isolated in the pinokio activated conda environment, and the execution path is the downloaded app's path (for example `~\u002Fpinokio\u002Fapi\u002Fmyapp`)\n2. second, since the `path` is declared as `server`, the code will be run inside the `server` folder ofr the app (in this case `~\u002Fpinokio\u002Fapi\u002Fmyapp\u002Fserver`)\n3. Third, the `venv` attribute  is included, so the python dependencies are also installed in an app-isolated manner. If the app is located at `~\u002Fpinokio\u002Fapi\u002Fmyapp`, the The depenencies will be stored at `~\u002Fpinokio\u002Fapi\u002Fmyapp\u002Fvenv`\n\nThe script verification check makes sure that all these components are run locally within the constraints of each app.\n\nOf course, there are also additional checks such as:\n\n1. Checking the reputation of the repository and the developer of the original project\n2. Trhing out the app personally\n3. Making sure that the install and launch instructions actually follow the recommended instructions suggested in the original project's README.\n\nNo scripts are approved until rigorously tested.\n","Pinokio 是一个一键启动任何开源项目的工具，可以视为带有用户友好界面的终端应用程序。它支持运行任意命令、下载文件并执行，本质上是一个简化版的图形化终端。用户既可以通过编写自己的脚本来实现特定功能，也可以从“发现”页面安装经过审核的安全脚本。这些脚本需经过严格的发布流程，包括个人验证、GitHub 组织邀请、仓库转移及冻结等步骤，确保其安全性。此外，Pinokio 设计了隔离机制，默认将所有脚本和二进制文件存储在独立目录下，进一步增强了安全性。该工具适用于需要快速部署和管理开源项目或自动化任务的场景。",2,"2026-06-11 03:36:37","high_star"]