Local-first evidence
Clawpy is built around local profiles, local runtime configuration, local audit logs, and local evidence exports by default.
Trust & Safety
Clawpy is designed as a local-first AI workspace with explicit controls for high-impact actions. Our current trust and safety work focuses on practical engineering evidence: approval gates, audit logs, runtime cards, supplier and data inventories, incident review, and repeatable evidence exports.
Clawpy is built around local profiles, local runtime configuration, local audit logs, and local evidence exports by default.
Alfred and Lucius use authority modes and action gates to separate advice from mutations that need approval or blocking.
Secret writes, workspace archive, autonomy changes, MCP/federation changes, communications config, browser config, and Marketplace installs are tracked in an operator action matrix.
Evidence exports can include control mappings, test results, security baseline checks, incident reviews, runtime cards, and audit hash-chain evidence.
What we track
Current local result
The latest internal local evidence review reports no local engineering blockers. The remaining warnings are intentionally limited to target-environment deployment checks and paused paid Marketplace commerce.
Important boundaries