Local-first means the security model has to be rethought too
Kition’s security stance is not "we protect your data" — it is "your data was already on your machine. We expose every lever you can control."
Data storage
Documents are Markdown files in your vault directory. Tables are `.kitable` files, also inside the vault. Kition itself does not replicate your content to the cloud. Backup strategy (iCloud, OneDrive, Time Machine, Git) is your choice.
API keys and credentials
AI provider API keys live in the OS keychain (macOS Keychain, Windows Credential Vault), not in the vault and not inside documents. Logs are redacted by default.
Auditable agent tool calls
Every agent tool call is visible in the transcript. Hooks let you intercept calls before they fire. Write a PreToolUse hook to ship every file write to a remote log, or block agent access to a path.
Network egress control
Kition only goes online when you trigger it (sync, AI call, web fetch). You can firewall the browser agent or MCP egress at the OS level. Hooks can also intercept web_fetch and browser_open.
Vulnerability disclosure
Found a vulnerability? Email [email protected]. We commit to responding within 5 business days and follow standard CVD practices.
Ready when you are.
Kition is a local-first AI workspace. Markdown documents, structured tables, and an AI agent — running on your own machine, against the model provider you choose.