Security
Trust through control — what leaves your machine and what does not.
Local-first editing
Your code stays on disk in your workspace. The editor, terminal, and LSP work without cloud dependency.
OS keychain for secrets
API keys and session tokens are stored in the platform keychain — not plain text in settings files.
Gateway validation
Requests are normalized and validated before reaching providers. Tool history is repaired on provider errors where possible.
No silent agent writes
Agent file changes are proposed for Keep, Undo, or Review — not applied without your action by default.
Transparent AI data flow
When AI is enabled, prompts and relevant context are sent to the configured LLM provider. You can disable AI entirely in settings.