Personal Jarvis / docs ← Back to site GitHub

Guides

Computer-Use & Risk Tiers

Letting Jarvis drive your screen safely — the four-tier risk system that fights confirmation fatigue.


Jarvis can act on your computer directly — open apps, click UI elements, type, run admin actions — through its computer-use and vision layers. Because that power is real, it is gated by a four-tier risk system.

The four tiers

TierBehaviour
safeRuns immediately, no prompt
monitorRuns, but is logged for review
askPauses and asks for your approval first
blockRefused outright

Priority: blacklist > whitelist > default

The tier for any action is resolved in a strict order: an explicit blacklist wins, then a whitelist, then the tool’s default tier. A whitelist entry downgrades an action to safe and records that it was approved by the whitelist.

The anti-confirmation-fatigue contract

A voice assistant that asks “are you sure?” before every action trains you to say yes without listening — and then a genuinely dangerous action sails through. Jarvis’s contract is the opposite: the whitelist silently approves routine work, so you are only ever asked when something genuinely warrants a decision. Fewer prompts, each one meaningful.

Elevation, per action

Administrative actions are elevated per action, never globally. Jarvis does not run as an administrator or a system service — it asks for elevation at the moment an action needs it, through your OS’s native prompt, and drops back down afterwards.

Cross-platform

Computer-use, app launching, UI-element clicking, the orb overlay, global hotkeys, and elevation have OS-specific implementations behind a shared capability seam. Windows is hardware-tested; the macOS and Linux desktop implementations are present in code but remain unverified on real desktop hardware. Where a capability is genuinely absent on your platform, it degrades to a logged no-op rather than crashing.