The app stores API keys and preferences in an encrypted local vault. The key is derived from a user-provided master password with scrypt and used with Fernet authenticated encryption.
Conversation history is stored locally in SQLite. It is not uploaded by this app.
The Python code runner is disabled by default. If enabled, it executes snippets locally in a temporary directory. Treat model-generated code as untrusted.
Please open a GitHub issue with:
- A minimal reproduction.
- Operating system and Python version.
- Relevant log excerpts with API keys and private content removed.