ltcai 5.0.0 → 5.1.0

package/README.md

@@ -7,24 +7,33 @@
 [![CI Status](https://github.com/TaeSooPark-PTS/LatticeAI/actions/workflows/ci.yml/badge.svg?branch=main)](https://github.com/TaeSooPark-PTS/LatticeAI/actions/workflows/ci.yml)
 [![License](https://img.shields.io/badge/license-MIT-green)](LICENSE)
 
-**Lattice AI v5.0.0 is the local-first Living Brain multilingual foundation release.**
-It keeps the v4 Brain Core, StorageEngine, FastAPI localhost API, Tauri shell,
-backup, restore, model runtime, graph, and portability architecture intact while
-making the normal user surface easier for non-technical users: safer login,
-clearer model setup, one-click Memory/Topic/Relationship/Graph views, visible feedback when conversation becomes Brain memory, and Korean/English language choice across first-run and Brain screens. Admin logs, role
-permissions, security events, retention posture, and Brain operations remain in
-the separate Admin Console.
-
-The product opens by stating the core reason to exist: models will change, but
-the user's knowledge should not. It creates a private local profile, studies the
-computer, recommends a replaceable model voice, asks before install/download/load
-work, then lands in Brain Chat with starter prompts for durable decisions,
-projects, documents, and context. The Brain home now gives direct buttons for
-memory, topics, relationships, and the full graph, so the graph is still real
-and searchable without becoming the first screen or a separate dashboard.
+**Your private AI memory layer. Keep your knowledge. Switch any model.**
+
+**모델은 바꿔도, 내 지식은 남는 로컬 AI 브레인.**
+
+Lattice AI is a local-first Digital Brain for your conversations, documents,
+decisions, project history, relationships, and workflows. It is not a ChatGPT
+clone, a model launcher, a graph database, or a note app. The model is the voice
+you use today. The Brain is the durable asset you keep.
+
+Use Lattice AI when you want to:
+
+- remember project decisions across weeks or months and see the source later;
+- preserve context when switching between local, cloud, or future models;
+- connect documents, conversations, files, notes, and decisions into one Brain;
+- export, backup, inspect, verify, and move the Brain as an encrypted
+  `.latticebrain` archive;
+- avoid cloud lock-in and keep knowledge local by default;
+- get an honest unavailable state instead of a fake answer when no model or
+  evidence is available.
+
+By default, Lattice binds to localhost, stores the Brain on your machine, keeps
+model downloads and cloud calls behind explicit consent, and separates normal
+Brain use from the Admin Console. Korean and English UI copy share the same
+underlying Brain, so language preference changes the interface, not your data.
 
 External package registries are owner-published and can lag behind this GitHub
-Release. Release uploads must use the exact v5.0.0 artifact filenames below.
+Release. Release uploads must use the exact v5.1.0 artifact filenames below.
 
 ## Living Brain Flow
 
@@ -33,17 +42,17 @@ Release. Release uploads must use the exact v5.0.0 artifact filenames below.
 First launch opens to Login only. The local profile is the beginning of the
 Brain, not a dashboard, graph, or setup grid. The first screen frames Lattice as
 a durable knowledge home where models are replaceable and ownership stays with
-the user. v5.0.0 also prevents an email typo or wrong saved-user password from
+the user. v5.1.0 also prevents an email typo or wrong saved-user password from
 silently creating a new empty Brain.
 
-![Login](output/release/v5.0.0/screenshots/01-login.png)
+![Login](output/release/v5.1.0/screenshots/01-login.png)
 
 ### 2. Environment Analysis
 
 Lattice reads the machine locally and summarizes what kind of Brain this
 computer can support.
 
-![Environment Analysis](output/release/v5.0.0/screenshots/02-environment-analysis.png)
+![Environment Analysis](output/release/v5.1.0/screenshots/02-environment-analysis.png)
 
 ### 3. Recommended Models
 
@@ -51,7 +60,7 @@ The model step is a short recommendation list. It avoids catalog noise and keeps
 runtime/install details behind clear user consent. Users who do not know which
 model to choose can start with the recommended model in one click.
 
-![Recommended Models](output/release/v5.0.0/screenshots/03-recommended-models.png)
+![Recommended Models](output/release/v5.1.0/screenshots/03-recommended-models.png)
 
 ### 4. Install And Load
 
@@ -60,7 +69,7 @@ and load progress. No model download or runtime install starts silently, and the
 screen explains that large downloads may take minutes without inventing fake ETA
 data.
 
-![Install and Load](output/release/v5.0.0/screenshots/04-install-load-progress.png)
+![Install and Load](output/release/v5.1.0/screenshots/04-install-load-progress.png)
 
 ### 5. Brain Chat
 
@@ -69,7 +78,7 @@ stays present while the user types, recalls context, and receives responses. The
 home now includes a compact Brain overview for recent memories, older memories,
 and major topics, plus saved-to-memory feedback after chat.
 
-![Brain Chat Home](output/release/v5.0.0/screenshots/05-brain-chat-home.png)
+![Brain Chat Home](output/release/v5.1.0/screenshots/05-brain-chat-home.png)
 
 ## Brain Depths
 
@@ -78,26 +87,26 @@ while revealing more structure.
 
 | Depth | Experience | Evidence |
 | --- | --- | --- |
-| Level 1 | Living Brain presence | ![Living Brain Level 1](output/release/v5.0.0/screenshots/06-living-brain-level-1.png) |
-| Level 2 | Memory Layer | ![Memory Layer](output/release/v5.0.0/screenshots/07-memory-layer.png) |
-| Level 3 | Knowledge Layer | ![Knowledge Layer](output/release/v5.0.0/screenshots/08-knowledge-layer.png) |
-| Level 4 | Relationship Layer | ![Relationship Layer](output/release/v5.0.0/screenshots/09-relationship-layer.png) |
-| Level 5 | Knowledge Graph with nodes, edges, search, and focus detail | ![Knowledge Graph Layer](output/release/v5.0.0/screenshots/10-knowledge-graph-layer.png) |
+| Level 1 | Living Brain presence | ![Living Brain Level 1](output/release/v5.1.0/screenshots/06-living-brain-level-1.png) |
+| Level 2 | Memory Layer | ![Memory Layer](output/release/v5.1.0/screenshots/07-memory-layer.png) |
+| Level 3 | Knowledge Layer | ![Knowledge Layer](output/release/v5.1.0/screenshots/08-knowledge-layer.png) |
+| Level 4 | Relationship Layer | ![Relationship Layer](output/release/v5.1.0/screenshots/09-relationship-layer.png) |
+| Level 5 | Knowledge Graph with nodes, edges, search, and focus detail | ![Knowledge Graph Layer](output/release/v5.1.0/screenshots/10-knowledge-graph-layer.png) |
 
 Walkthrough:
 
-![v5.0.0 Living Brain walkthrough](output/release/v5.0.0/gifs/v5.0.0-living-brain-walkthrough.gif)
+![v5.1.0 Living Brain walkthrough](output/release/v5.1.0/gifs/v5.1.0-living-brain-walkthrough.gif)
 
 Model setup status evidence:
 
-![Model setup status](output/release/v5.0.0/screenshots/11-model-setup-status.png)
+![Model setup status](output/release/v5.1.0/screenshots/11-model-setup-status.png)
 
 Separate admin console evidence:
 
-![Admin Console](output/release/v5.0.0/screenshots/12-admin-console.png)
+![Admin Console](output/release/v5.1.0/screenshots/12-admin-console.png)
 
 Screenshot index and capture notes:
-[output/release/v5.0.0/SCREENSHOT_INDEX.md](output/release/v5.0.0/SCREENSHOT_INDEX.md)
+[output/release/v5.1.0/SCREENSHOT_INDEX.md](output/release/v5.1.0/SCREENSHOT_INDEX.md)
 
 ## Architecture At A Glance
 
@@ -127,7 +136,7 @@ Screenshot index and capture notes:
   rebuild controls live under the separate `#/admin` console. Admin history,
   audit, stats, and sensitivity reads honor the active workspace when present.
 
-See [ARCHITECTURE.md](ARCHITECTURE.md) for the detailed v5.0.0 architecture.
+See [ARCHITECTURE.md](ARCHITECTURE.md) for the detailed v5.1.0 architecture.
 
 ## Installation
 
@@ -159,13 +168,13 @@ pip install "ltcai[local]"
 
 ## Release Artifacts
 
-Validated v5.0.0 artifacts:
+Validated v5.1.0 artifacts:
 
-- `dist/ltcai-5.0.0-py3-none-any.whl`
-- `dist/ltcai-5.0.0.tar.gz`
-- `ltcai-5.0.0.tgz`
-- `dist/ltcai-5.0.0.vsix`
-- `src-tauri/target/release/bundle/dmg/Lattice AI_5.0.0_aarch64.dmg`
+- `dist/ltcai-5.1.0-py3-none-any.whl`
+- `dist/ltcai-5.1.0.tar.gz`
+- `ltcai-5.1.0.tgz`
+- `dist/ltcai-5.1.0.vsix`
+- `src-tauri/target/release/bundle/dmg/Lattice AI_5.1.0_aarch64.dmg`
 
 Attach only those exact files to the GitHub Release. Do not upload `dist/*`.
 
@@ -194,7 +203,7 @@ npm run test:unit
 npm run test:integration
 npm run test:visual
 npm run desktop:tauri:check
-node scripts/run_python.mjs scripts/wheel_smoke.py --wheel dist/ltcai-5.0.0-py3-none-any.whl
+node scripts/run_python.mjs scripts/wheel_smoke.py --wheel dist/ltcai-5.1.0-py3-none-any.whl
 npm pack --dry-run
 npm run docs:check-links
 ```
@@ -210,13 +219,14 @@ npm run docs:check-links
 - Agent/workflow simulation without a loaded LLM is deterministic and does not call a model.
   It is labeled as LLM-free/model-free rather than presented as autonomous model
   success.
-- Historical artifacts can remain in `dist/`; uploads must use exact v5.0.0
+- Historical artifacts can remain in `dist/`; uploads must use exact v5.1.0
   filenames.
 
 ## Release History
 
 | Version | Theme |
 | --- | --- |
+| 5.1.0 | Product Trust & Clarity Release: clarifies the private AI memory-layer promise, hardens CSP/secret/auto-read/download gates, adds trust/privacy docs, and refreshes v5.1.0 evidence |
 | 5.0.0 | Multilingual Brain Foundation Release: adds persisted Korean/English language choice across first-run onboarding, Brain home, graph exploration, and Admin Console while preserving the v4 runtime foundations |
 | 4.7.2 | Intuitive Brain UX Release: safer login, one-click recommended setup, direct Brain views, memory-save feedback, and exact v4.7.2 artifacts |
 | 4.7.0 | Admin Separation Release: added the separate Admin Console for users/logs/security/Brain operations, refreshed screenshots/GIFs, synchronized release docs, and built exact v4.7.0 artifacts |
@@ -237,19 +247,23 @@ npm run docs:check-links
 
 ## Current Documentation
 
-- [ARCHITECTURE.md](ARCHITECTURE.md) - v5.0.0 architecture.
+- [ARCHITECTURE.md](ARCHITECTURE.md) - v5.1.0 architecture.
+- [docs/WHY_LATTICE.md](docs/WHY_LATTICE.md) - why Lattice AI exists.
+- [docs/TRUST_MODEL.md](docs/TRUST_MODEL.md) - local-first trust model.
+- [PRIVACY.md](PRIVACY.md) - privacy and external communication policy.
 - [docs/PRODUCT_DIRECTION_REVIEW.md](docs/PRODUCT_DIRECTION_REVIEW.md) -
   Brain-first product direction review.
 - [FEATURE_STATUS.md](FEATURE_STATUS.md) - current feature status and historical
   status ledger.
 - [RELEASE_NOTES.md](RELEASE_NOTES.md) - release notes index.
-- [RELEASE_NOTES_v5.0.0.md](RELEASE_NOTES_v5.0.0.md) - v5.0.0 intuitive Brain UX release notes.
+- [RELEASE_NOTES_v5.1.0.md](RELEASE_NOTES_v5.1.0.md) - v5.1.0 Product Trust & Clarity release notes.
+- [RELEASE_NOTES_v5.0.0.md](RELEASE_NOTES_v5.0.0.md) - v5.0.0 multilingual foundation history.
 - [RELEASE_NOTES_v4.6.1.md](RELEASE_NOTES_v4.6.1.md) - v4.6.1 release refresh history.
 - [RELEASE_NOTES_v4.6.0.md](RELEASE_NOTES_v4.6.0.md) - v4.6.0 Living Brain history.
 - [RELEASE.md](RELEASE.md) - release checklist and exact artifact guidance.
 - [SECURITY.md](SECURITY.md) - security posture.
 - [docs/CHANGELOG.md](docs/CHANGELOG.md) - changelog.
-- [docs/V4_7_1_ADMIN_OPERATIONS_REPORT.md](docs/V4_7_1_ADMIN_OPERATIONS_REPORT.md) - v5.0.0 admin operations report.
+- [docs/V4_7_1_ADMIN_OPERATIONS_REPORT.md](docs/V4_7_1_ADMIN_OPERATIONS_REPORT.md) - v4.7.1 admin operations history.
 - [docs/V4_7_0_ADMIN_SEPARATION_REPORT.md](docs/V4_7_0_ADMIN_SEPARATION_REPORT.md) - v4.7.0 admin separation history.
 - [docs/V4_6_1_RELEASE_REFRESH_REPORT.md](docs/V4_6_1_RELEASE_REFRESH_REPORT.md) - v4.6.1 release refresh report.
 - [docs/V4_6_0_LIVING_BRAIN_EXPERIENCE_REPORT.md](docs/V4_6_0_LIVING_BRAIN_EXPERIENCE_REPORT.md) - v4.6.0 Living Brain design notes.

package/docs/CHANGELOG.md

@@ -3,6 +3,67 @@
 The top entry is the current release-preparation target. Older entries are
 historical and may describe behavior as it existed at that release.
 
+## [5.1.0] - 2026-06-14
+
+> Product Trust & Clarity Release. v5.1.0 clarifies Lattice AI as a
+> local-first private AI memory layer / Digital Brain, then adds security,
+> privacy, honesty, and architecture gates so the product does not overclaim.
+
+### Changed
+
+- Rewrote the README first screen around the positioning lines
+  `Your private AI memory layer. Keep your knowledge. Switch any model.` and
+  `모델은 바꿔도, 내 지식은 남는 로컬 AI 브레인.`
+- Added practical use cases for preserving project decisions, switching models,
+  connecting documents/conversations/files/notes/decisions, encrypted Brain
+  archive portability, cloud lock-in avoidance, and honest no-model states.
+- Added and refreshed trust documentation: `PRIVACY.md`, `docs/WHY_LATTICE.md`,
+  `docs/TRUST_MODEL.md`, `SECURITY.md`, `ARCHITECTURE.md`, and
+  `FEATURE_STATUS.md`.
+- Removed `csp:null` from Tauri production config and added an app-shell CSP
+  response header.
+- Centralized secret redaction for logs, audit payloads, security exports, and
+  builtin hook packets.
+- Changed chat auto-file handling so `LATTICEAI_AUTO_READ_CHAT_PATHS` remains
+  off by default and does not silently read arbitrary local paths even if
+  enabled.
+- Added explicit `allow_download=true` consent for model download requests.
+- Added config, security, and Brain runtime builder seams in `app_factory.py`
+  while preserving the existing API shape.
+- Hardened release artifact cleanup so `release:artifacts` removes stale
+  `dist/ltcai-*` and root `ltcai-*.tgz` files before rebuilding exact v5.1.0
+  artifacts only.
+- Made `npm run test:integration` self-contained by starting a local uvicorn
+  server, waiting for `/health`, running the integration suite, and shutting the
+  server down.
+- Fixed a SQLite Brain restore TOCTOU race where transient `-wal` / `-shm`
+  siblings could disappear between probe and copy during archive restore.
+- Bumped synchronized package/runtime/static versions to `5.1.0`, including
+  Python metadata, npm package metadata, VSIX metadata, Tauri metadata,
+  `latticeai`, `lattice_brain`, runtime constants, and static asset metadata.
+
+### Added
+
+- v5.1 trust validation tests for CSP, secret redaction, audit redaction,
+  auto-file-read blocking, public/network auth posture, `shell=True`
+  production-path scanning, and Brain Core import isolation.
+- A deterministic regression test for restore-time WAL sibling disappearance.
+- v5.1 release evidence paths under `output/release/v5.1.0`.
+
+### Preserved
+
+- v5.0.0 and older sections remain historical.
+- External package publishing remains owner-run; this release prepares exact
+  artifacts and GitHub Release assets without registry publish automation.
+
+### Artifacts
+
+- `dist/ltcai-5.1.0-py3-none-any.whl`
+- `dist/ltcai-5.1.0.tar.gz`
+- `dist/ltcai-5.1.0.vsix`
+- `ltcai-5.1.0.tgz`
+- `src-tauri/target/release/bundle/dmg/Lattice AI_5.1.0_aarch64.dmg`
+
 ## [5.0.0] - 2026-06-14
 
 > Multilingual Brain Foundation Release. v5.0.0 starts the major-version cleanup

package/docs/TRUST_MODEL.md

@@ -0,0 +1,66 @@
+# Lattice AI Trust Model
+
+Lattice AI's trust model is local-first, opt-in for external communication, and
+honest when something is unavailable.
+
+## Local By Default
+
+By default, Lattice AI binds the API to `127.0.0.1`, stores Brain data under the
+local data directory, and does not send prompts, documents, graph content, or
+archives to Lattice-owned servers.
+
+Local data includes:
+
+- local profile and sessions;
+- conversations and memory records;
+- Knowledge Graph nodes, edges, provenance, and search indexes;
+- uploaded document blobs;
+- audit and admin operation logs;
+- backups and encrypted `.latticebrain` archives.
+
+## Explicit External Paths
+
+Some features can contact third parties, but they require explicit user/admin
+action or configuration:
+
+- model downloads from model registries;
+- cloud model API calls after keys are configured and a cloud model is chosen;
+- Telegram bridge after the integration is enabled;
+- Brain Network peer actions after pairing/initiating network flows;
+- Docker/Postgres setup after opt-in scale configuration;
+- update checks only when update checking is enabled;
+- remote marketplace/registry refreshes only through explicit user actions.
+
+Token presence alone must not start external communication.
+
+## Consent And Honesty Gates
+
+Lattice AI should fail closed or report unavailable state for:
+
+- no model loaded;
+- local model not installed;
+- installed model not loaded;
+- missing cloud key;
+- deterministic/model-free preview;
+- dry-run versus real execution;
+- no graph/context evidence available;
+- unavailable external integration;
+- wrong archive passphrase;
+- archive path traversal or tampering.
+
+## Admin Boundary
+
+The normal user product is Brain Chat, memory, topics, relationships, graph
+exploration, model state, and Brain ownership. Admin Console is for users,
+roles, audit logs, security events, retention, and operations. Admin visibility
+does not mean secrets should appear in clear text.
+
+## Known Limitations
+
+- Local files are only as protected as the user's machine, account, backups, and
+  disk encryption.
+- Cloud model prompts follow the selected provider's policy.
+- A local admin can inspect local files and process memory outside Lattice AI.
+- Marketplace and model registries are third-party services when explicitly
+  contacted.
+

package/docs/WHY_LATTICE.md

@@ -0,0 +1,54 @@
+# Why Lattice AI Exists
+
+**Your private AI memory layer. Keep your knowledge. Switch any model.**
+
+**모델은 바꿔도, 내 지식은 남는 로컬 AI 브레인.**
+
+AI models change quickly. A model you use today may be replaced next month, and
+the conversation history, project context, decisions, and sources you built
+around it can become scattered across tools. Lattice AI exists so the durable
+asset is not the model. The durable asset is your Brain.
+
+## The Problem
+
+Most AI products begin with a model and treat your context as temporary prompt
+material. That works for short questions, but it fails for long-running work:
+
+- project decisions disappear into old chats;
+- documents and notes are disconnected from conversations;
+- switching models often means losing useful context;
+- graph or database tools expose implementation details before user value;
+- cloud-only products make it hard to inspect, back up, or move your knowledge.
+
+## The Lattice Answer
+
+Lattice AI is a local-first private AI memory layer. It keeps conversations,
+documents, decisions, relationships, and project history in a Brain that belongs
+to the user. Models can be local, cloud, current, or future. The Brain remains.
+
+The graph is real, but it is not the product identity. Users start with Brain
+Chat, memory, topics, relationships, ownership, backup, and graph exploration.
+Advanced admin logs, roles, hooks, workflows, Telegram, Brain Network, Docker,
+Postgres, and plugin details stay outside the normal user flow.
+
+## Practical Reasons To Use It
+
+- Ask what the team decided last week and see the source.
+- Drop in documents and build a searchable personal memory.
+- Prepare for a meeting from past notes, project decisions, and files.
+- Preserve context when moving from one model to another.
+- Export or back up the Brain as an encrypted `.latticebrain` archive.
+- Use Korean or English without changing the underlying Brain.
+- Avoid fake answers when no model or evidence is available.
+
+## What Lattice AI Is Not
+
+- Not a hosted SaaS by default.
+- Not just a model launcher.
+- Not just a graph viewer.
+- Not a generic dashboard.
+- Not a note-taking clone.
+- Not a ChatGPT or Claude clone.
+
+Lattice AI is for people who want their knowledge to survive model changes.
+

package/frontend/src/App.tsx

@@ -245,7 +245,7 @@ function BrainHome({
       if (result.error) {
         setMessages((items) => {
           const next = [...items];
-          next[next.length - 1] = { role: "assistant", content: `Unavailable: ${result.error}` };
+          next[next.length - 1] = { role: "assistant", content: `${t(language, "brain.unavailable")}: ${result.error}` };
           return next;
         });
       } else {

package/frontend/src/components/primitives.tsx

@@ -316,7 +316,7 @@ export function ModeGate({
           <div className="text-lg font-semibold">{title}</div>
           <p className="mt-1 max-w-2xl text-sm leading-6 text-muted-foreground">{detail}</p>
         </div>
-        <Button onClick={() => setMode(target)}>{target === "admin" ? "Switch to Admin" : "Switch to Advanced"}</Button>
+        <Button onClick={() => setMode(target)}>{target === "admin" ? "Switch to Admin Console" : "Switch to Advanced"}</Button>
       </CardContent>
     </Card>
   );

package/frontend/src/i18n.ts

@@ -27,7 +27,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.local": "로컬 우선",
     "brain.portable": "이동 가능",
     "brain.private": "개인 소유",
-    "brain.admin": "관리자",
+    "brain.admin": "관리자 콘솔",
     "brain.empty.kicker": "내 오래가는 기억",
     "brain.empty.title": "잊으면 안 되는 일부터 말해 주세요.",
     "brain.empty.body": "문서, 대화, 프로젝트, 결정이 Brain에 쌓이고 나중에 주제와 관계로 다시 보입니다.",
@@ -36,6 +36,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.prompt.plan": "이 프로젝트 맥락을 계획으로 바꿔줘: ",
     "brain.placeholder": "Brain에게 말하기...",
     "brain.image": "이미지",
+    "brain.unavailable": "지금은 답할 수 없음",
     "brain.imageAttached": "이미지 첨부됨",
     "brain.send": "보내기",
     "brain.saved": "기억에 저장됨 · 연결된 주제 {topics}개 · 관련 기억 {memories}개",
@@ -74,7 +75,7 @@ export const COPY: Record<Language, TextMap> = {
     "admin.kicker": "분리된 관리자 작업공간",
     "admin.title": "Admin Console",
     "admin.body": "사용자, 로그, 보안, Brain 상태는 일반 사용자 화면과 분리됩니다.",
-    "flow.shell": "내 Brain 깨우기",
+    "flow.shell": "내 로컬 Brain 만들기",
     "flow.login.title": "내 Brain을 시작합니다.",
     "flow.login.body": "모델은 바뀔 수 있지만, 내 문서와 대화, 결정, 기억은 사라지면 안 됩니다. Lattice는 이 지식을 내가 소유하는 개인 Brain으로 모읍니다.",
     "flow.name": "이름",
@@ -139,7 +140,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.local": "Local-first",
     "brain.portable": "Portable",
     "brain.private": "Private",
-    "brain.admin": "Admin",
+    "brain.admin": "Admin Console",
     "brain.empty.kicker": "Durable memory",
     "brain.empty.title": "Start with what should not be forgotten.",
     "brain.empty.body": "Documents, conversations, projects, and decisions accumulate in your Brain, then reappear as topics and relationships.",
@@ -148,6 +149,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.prompt.plan": "Turn this project context into a plan: ",
     "brain.placeholder": "Talk to your Brain...",
     "brain.image": "Image",
+    "brain.unavailable": "Unavailable",
     "brain.imageAttached": "Image attached",
     "brain.send": "Send",
     "brain.saved": "Saved to memory · {topics} linked topics · {memories} related memories",
@@ -186,7 +188,7 @@ export const COPY: Record<Language, TextMap> = {
     "admin.kicker": "Separate admin workspace",
     "admin.title": "Admin Console",
     "admin.body": "Users, logs, security, and Brain health stay out of the normal user experience.",
-    "flow.shell": "Awaken your Brain",
+    "flow.shell": "Create your local Brain",
     "flow.login.title": "Start your Brain.",
     "flow.login.body": "Models can change, but your documents, conversations, decisions, and memories should stay yours. Lattice gathers them into a personal Brain you control.",
     "flow.name": "Name",

package/frontend/src/pages/System.tsx

@@ -19,7 +19,7 @@ const tabs: Array<{ id: SystemTab; label: string }> = [
   { id: "activity", label: "History" },
   { id: "network", label: "Devices" },
   { id: "settings", label: "Preferences" },
-  { id: "admin", label: "Admin" },
+  { id: "admin", label: "Admin Console" },
 ];
 
 export function SystemPage({ initialTab }: { initialTab?: string }) {

package/lattice_brain/__init__.py

@@ -26,7 +26,7 @@ from .storage import (
     storage_from_env,
 )
 
-__version__ = "5.0.0"
+__version__ = "5.1.0"
 
 __all__ = [
     "AgentRuntime",

package/lattice_brain/portability.py

@@ -75,8 +75,8 @@ def _sqlite_siblings(db_path: Path) -> tuple[Path, Path, Path]:
 def _restore_sibling(path: Path, backup: Path) -> None:
     if backup.exists():
         shutil.copy2(backup, path)
-    elif path.exists():
-        path.unlink()
+    else:
+        path.unlink(missing_ok=True)
 
 
 def _replace_sqlite_atomically(src: Path, dest: Path, backup_dir: Path) -> None:
@@ -85,14 +85,18 @@ def _replace_sqlite_atomically(src: Path, dest: Path, backup_dir: Path) -> None:
     shutil.copyfile(src, tmp)
     backups: dict[Path, Path] = {}
     try:
+        # -wal/-shm are transient: another live connection can checkpoint and
+        # remove them between exists() and the copy/unlink. Treat a vanished
+        # sibling as "nothing to preserve" instead of crashing the restore.
         for sibling in _sqlite_siblings(dest):
-            if sibling.exists():
-                backup = backup_dir / sibling.name
+            backup = backup_dir / sibling.name
+            try:
                 shutil.copy2(sibling, backup)
-                backups[sibling] = backup
+            except FileNotFoundError:
+                continue
+            backups[sibling] = backup
         for sibling in _sqlite_siblings(dest)[1:]:
-            if sibling.exists():
-                sibling.unlink()
+            sibling.unlink(missing_ok=True)
         os.replace(tmp, dest)
     except Exception:
         if tmp.exists():

package/lattice_brain/runtime/multi_agent.py

@@ -14,7 +14,7 @@ from datetime import datetime
 from typing import Any, Callable, Dict, List, Optional
 
 
-MULTI_AGENT_VERSION = "5.0.0"
+MULTI_AGENT_VERSION = "5.1.0"
 
 AGENT_ROLES = ("researcher", "planner", "executor", "reviewer", "release")
 CORE_PIPELINE = ("planner", "executor", "reviewer")

package/latticeai/__init__.py

@@ -1,3 +1,3 @@
 """Lattice AI - modular server package."""
 
-__version__ = "5.0.0"
+__version__ = "5.1.0"

package/latticeai/api/chat.py

@@ -27,7 +27,7 @@ from latticeai.core.document_generator import DocumentGenerationSession, detect_
 from lattice_brain.runtime.hooks import dispatch_tool
 from latticeai.services.app_context import AppContext
 from latticeai.services.tool_dispatch import build_agent_runtime, collect_created_files
-from tools import AGENT_ROOT, ToolError, ensure_agent_root, execute_tool, knowledge_save, local_read, network_status
+from tools import AGENT_ROOT, ToolError, ensure_agent_root, execute_tool, knowledge_save, network_status
 
 class ChatRequest(BaseModel):
     message: str
@@ -42,6 +42,7 @@ class ChatRequest(BaseModel):
     user_email: Optional[str] = None
     user_nickname: Optional[str] = None
     image_data: Optional[str] = None
+    allow_file_context: bool = False
 
 
 class AgentRequest(BaseModel):
@@ -450,16 +451,23 @@ def create_chat_router(context: AppContext) -> APIRouter:
     
         if CONFIG.auto_read_chat_paths:
             _file_path_re = re.compile(r'(?:^|[\s\'\"(])((~|/[\w.])[^\s\'")\]]*)', re.MULTILINE)
-            for _m in _file_path_re.finditer(req.message or ""):
-                _fpath = _m.group(1).strip()
-                try:
-                    _result = local_read(_fpath)
-                    _fcontent = _result.get("content", "")
-                    if _fcontent:
-                        context += f"\n\n[FILE: {_fpath}]\n```\n{_fcontent[:6000]}\n```"
-                        print(f"📂 Auto-injected file context: {_fpath}")
-                except Exception:
-                    pass
+            requested_paths = [_m.group(1).strip() for _m in _file_path_re.finditer(req.message or "")]
+            if requested_paths:
+                append_audit_event(
+                    "auto_file_context_blocked",
+                    user_email=effective_email,
+                    path_count=len(requested_paths),
+                    allow_file_context=req.allow_file_context,
+                    reason="local file context requires an explicit approved file/tool flow",
+                )
+                if req.allow_file_context:
+                    raise HTTPException(
+                        status_code=400,
+                        detail=(
+                            "Automatic local file reads are disabled in chat. "
+                            "Attach the file, upload it, or use an approved local-file tool flow."
+                        ),
+                    )
     
         trace_seed = CHAT_SERVICE.build_graph_trace(
             req.message,

package/latticeai/api/models.py

@@ -77,6 +77,7 @@ class SetApiKeyRequest(BaseModel):
 
 class PullModelRequest(BaseModel):
     model: str
+    allow_download: bool = False
 
 
 class PrepareModelRequest(BaseModel):
@@ -291,6 +292,11 @@ def create_models_router(
     @router.post("/engines/pull-model")
     async def pull_ollama_model(req: PullModelRequest, request: Request):
         require_user(request)
+        if not req.allow_download:
+            raise HTTPException(
+                status_code=403,
+                detail="Model downloads require explicit user consent (allow_download=true).",
+            )
         model_ref = normalize_local_model_request(req.model, None)
         if not model_ref:
             raise HTTPException(status_code=400, detail="모델 식별자가 비어 있습니다.")