Privacy & security

• CodeGrid is a native desktop app — there's no CodeGrid cloud, account, or server in the loop.
• Your source never leaves your machine except through the agents' own providers (the same as running their CLIs in a terminal).
• Sessions, workspaces, layouts, and settings live in a local database on your machine.

CodeGrid stores no API keys. Each agent authenticates with its own account exactly as it does on the command line. CodeGrid just launches the CLIs.

• The app is signed with an Apple Developer ID and notarized by Apple — it opens without Gatekeeper warnings.
• Auto-updates are cryptographically signed and verified before they're applied.

Agents don't get to read or modify .env files unless you explicitly allow it per workspace (Settings → .env editing), so secrets aren't exposed by default.

The Agent Bus talks to CodeGrid over a local Unix socket in your home directory — no network, no remote endpoint.

Found a security issue? Email admin@codegrid.dev or open a private report on GitHub.