ltcai 5.0.0 → 5.2.0

package/docs/TRUST_MODEL.md

@@ -0,0 +1,66 @@
+# Lattice AI Trust Model
+
+Lattice AI's trust model is local-first, opt-in for external communication, and
+honest when something is unavailable.
+
+## Local By Default
+
+By default, Lattice AI binds the API to `127.0.0.1`, stores Brain data under the
+local data directory, and does not send prompts, documents, graph content, or
+archives to Lattice-owned servers.
+
+Local data includes:
+
+- local profile and sessions;
+- conversations and memory records;
+- Knowledge Graph nodes, edges, provenance, and search indexes;
+- uploaded document blobs;
+- audit and admin operation logs;
+- backups and encrypted `.latticebrain` archives.
+
+## Explicit External Paths
+
+Some features can contact third parties, but they require explicit user/admin
+action or configuration:
+
+- model downloads from model registries;
+- cloud model API calls after keys are configured and a cloud model is chosen;
+- Telegram bridge after the integration is enabled;
+- Brain Network peer actions after pairing/initiating network flows;
+- Docker/Postgres setup after opt-in scale configuration;
+- update checks only when update checking is enabled;
+- remote marketplace/registry refreshes only through explicit user actions.
+
+Token presence alone must not start external communication.
+
+## Consent And Honesty Gates
+
+Lattice AI should fail closed or report unavailable state for:
+
+- no model loaded;
+- local model not installed;
+- installed model not loaded;
+- missing cloud key;
+- deterministic/model-free preview;
+- dry-run versus real execution;
+- no graph/context evidence available;
+- unavailable external integration;
+- wrong archive passphrase;
+- archive path traversal or tampering.
+
+## Admin Boundary
+
+The normal user product is Brain Chat, memory, topics, relationships, graph
+exploration, model state, and Brain ownership. Admin Console is for users,
+roles, audit logs, security events, retention, and operations. Admin visibility
+does not mean secrets should appear in clear text.
+
+## Known Limitations
+
+- Local files are only as protected as the user's machine, account, backups, and
+  disk encryption.
+- Cloud model prompts follow the selected provider's policy.
+- A local admin can inspect local files and process memory outside Lattice AI.
+- Marketplace and model registries are third-party services when explicitly
+  contacted.
+

package/docs/V4_1_VALIDATION_REPORT.md

@@ -43,5 +43,5 @@ FastAPI backend compatibility, release artifacts, and installed-wheel smoke.
   `block v0.1.6`; the current Tauri 2.0 build passes on Rust 1.96.
 - Release artifact validation warns that historical artifacts remain in
   `dist/`; this is expected and reinforces the rule to upload only exact
-  v4.1.0 filenames, never `dist/*`.
+  v4.1.0 filenames, never a wildcard from the `dist` directory.
 - No external registry publish was performed.

package/docs/V4_3_PRODUCT_HARDENING_REPORT.md

@@ -44,8 +44,8 @@ architecture.
 - Release artifact validation now checks the exact Tauri DMG path.
 - Release artifact build script cleans only target-version outputs before
   rebuilding.
-- Historical artifacts remain visible so `dist/*` upload mistakes are still
-  detectable.
+- Historical artifacts remain visible so wildcard upload mistakes from `dist`
+  are still detectable.
 
 ## Registry Policy
 

package/docs/V4_5_1_VALIDATION_REPORT.md

@@ -51,4 +51,5 @@ Expected exact-version artifacts:
 
 `npm run release:validate` confirmed all exact-version RC artifacts are present.
 It also warned that historical artifacts remain in `dist/`, so publish commands
-must continue to use explicit v4.5.1 filenames rather than a `dist/*` glob.
+must continue to use explicit v4.5.1 filenames rather than a wildcard from the
+`dist` directory.

package/docs/WHY_LATTICE.md

@@ -0,0 +1,54 @@
+# Why Lattice AI Exists
+
+**Your private AI memory layer. Keep your knowledge. Switch any model.**
+
+**모델은 바꿔도, 내 지식은 남는 로컬 AI 브레인.**
+
+AI models change quickly. A model you use today may be replaced next month, and
+the conversation history, project context, decisions, and sources you built
+around it can become scattered across tools. Lattice AI exists so the durable
+asset is not the model. The durable asset is your Brain.
+
+## The Problem
+
+Most AI products begin with a model and treat your context as temporary prompt
+material. That works for short questions, but it fails for long-running work:
+
+- project decisions disappear into old chats;
+- documents and notes are disconnected from conversations;
+- switching models often means losing useful context;
+- graph or database tools expose implementation details before user value;
+- cloud-only products make it hard to inspect, back up, or move your knowledge.
+
+## The Lattice Answer
+
+Lattice AI is a local-first private AI memory layer. It keeps conversations,
+documents, decisions, relationships, and project history in a Brain that belongs
+to the user. Models can be local, cloud, current, or future. The Brain remains.
+
+The graph is real, but it is not the product identity. Users start with Brain
+Chat, memory, topics, relationships, ownership, backup, and graph exploration.
+Advanced admin logs, roles, hooks, workflows, Telegram, Brain Network, Docker,
+Postgres, and plugin details stay outside the normal user flow.
+
+## Practical Reasons To Use It
+
+- Ask what the team decided last week and see the source.
+- Drop in documents and build a searchable personal memory.
+- Prepare for a meeting from past notes, project decisions, and files.
+- Preserve context when moving from one model to another.
+- Export or back up the Brain as an encrypted `.latticebrain` archive.
+- Use Korean or English without changing the underlying Brain.
+- Avoid fake answers when no model or evidence is available.
+
+## What Lattice AI Is Not
+
+- Not a hosted SaaS by default.
+- Not just a model launcher.
+- Not just a graph viewer.
+- Not a generic dashboard.
+- Not a note-taking clone.
+- Not a ChatGPT or Claude clone.
+
+Lattice AI is for people who want their knowledge to survive model changes.
+

package/frontend/src/App.tsx

@@ -245,7 +245,7 @@ function BrainHome({
       if (result.error) {
         setMessages((items) => {
           const next = [...items];
-          next[next.length - 1] = { role: "assistant", content: `Unavailable: ${result.error}` };
+          next[next.length - 1] = { role: "assistant", content: `${t(language, "brain.unavailable")}: ${result.error}` };
           return next;
         });
       } else {

package/frontend/src/components/primitives.tsx

@@ -316,7 +316,7 @@ export function ModeGate({
           <div className="text-lg font-semibold">{title}</div>
           <p className="mt-1 max-w-2xl text-sm leading-6 text-muted-foreground">{detail}</p>
         </div>
-        <Button onClick={() => setMode(target)}>{target === "admin" ? "Switch to Admin" : "Switch to Advanced"}</Button>
+        <Button onClick={() => setMode(target)}>{target === "admin" ? "Switch to Admin Console" : "Switch to Advanced"}</Button>
       </CardContent>
     </Card>
   );

package/frontend/src/i18n.ts

@@ -27,7 +27,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.local": "로컬 우선",
     "brain.portable": "이동 가능",
     "brain.private": "개인 소유",
-    "brain.admin": "관리자",
+    "brain.admin": "관리자 콘솔",
     "brain.empty.kicker": "내 오래가는 기억",
     "brain.empty.title": "잊으면 안 되는 일부터 말해 주세요.",
     "brain.empty.body": "문서, 대화, 프로젝트, 결정이 Brain에 쌓이고 나중에 주제와 관계로 다시 보입니다.",
@@ -36,6 +36,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.prompt.plan": "이 프로젝트 맥락을 계획으로 바꿔줘: ",
     "brain.placeholder": "Brain에게 말하기...",
     "brain.image": "이미지",
+    "brain.unavailable": "지금은 답할 수 없음",
     "brain.imageAttached": "이미지 첨부됨",
     "brain.send": "보내기",
     "brain.saved": "기억에 저장됨 · 연결된 주제 {topics}개 · 관련 기억 {memories}개",
@@ -74,7 +75,7 @@ export const COPY: Record<Language, TextMap> = {
     "admin.kicker": "분리된 관리자 작업공간",
     "admin.title": "Admin Console",
     "admin.body": "사용자, 로그, 보안, Brain 상태는 일반 사용자 화면과 분리됩니다.",
-    "flow.shell": "내 Brain 깨우기",
+    "flow.shell": "내 로컬 Brain 만들기",
     "flow.login.title": "내 Brain을 시작합니다.",
     "flow.login.body": "모델은 바뀔 수 있지만, 내 문서와 대화, 결정, 기억은 사라지면 안 됩니다. Lattice는 이 지식을 내가 소유하는 개인 Brain으로 모읍니다.",
     "flow.name": "이름",
@@ -139,7 +140,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.local": "Local-first",
     "brain.portable": "Portable",
     "brain.private": "Private",
-    "brain.admin": "Admin",
+    "brain.admin": "Admin Console",
     "brain.empty.kicker": "Durable memory",
     "brain.empty.title": "Start with what should not be forgotten.",
     "brain.empty.body": "Documents, conversations, projects, and decisions accumulate in your Brain, then reappear as topics and relationships.",
@@ -148,6 +149,7 @@ export const COPY: Record<Language, TextMap> = {
     "brain.prompt.plan": "Turn this project context into a plan: ",
     "brain.placeholder": "Talk to your Brain...",
     "brain.image": "Image",
+    "brain.unavailable": "Unavailable",
     "brain.imageAttached": "Image attached",
     "brain.send": "Send",
     "brain.saved": "Saved to memory · {topics} linked topics · {memories} related memories",
@@ -186,7 +188,7 @@ export const COPY: Record<Language, TextMap> = {
     "admin.kicker": "Separate admin workspace",
     "admin.title": "Admin Console",
     "admin.body": "Users, logs, security, and Brain health stay out of the normal user experience.",
-    "flow.shell": "Awaken your Brain",
+    "flow.shell": "Create your local Brain",
     "flow.login.title": "Start your Brain.",
     "flow.login.body": "Models can change, but your documents, conversations, decisions, and memories should stay yours. Lattice gathers them into a personal Brain you control.",
     "flow.name": "Name",

package/frontend/src/pages/Library.tsx

@@ -103,7 +103,7 @@ function ModelsPanel() {
   return (
     <div className="grid gap-4 xl:grid-cols-[1.2fr_0.8fr]">
       <div className="space-y-4">
-        <DataPanel title="Guided model setup" description="Analyze this Mac, recommend a model, install only with consent, validate it, then load it." result={recs.data}>
+        <DataPanel title="Guided model setup" description="5.2 registry: hardware-fit multimodal models with HF verification, download/load strategies, and clear RAM notes. Analyze, consent, download only on click." result={recs.data}>
           {(data) => {
             const recommendation = (data as Record<string, unknown>).recommendations as Record<string, unknown> | undefined;
             const profile = (data as Record<string, unknown>).profile as Record<string, unknown> | undefined;
@@ -160,6 +160,13 @@ function ModelsPanel() {
               const loadId = String(model.recommended_load_id || id);
               const engine = String(model.recommended_engine || model.engine || "");
               const recommendation = recommendationById.get(id) || recommendationById.get(loadId) || {};
+              const modelVerification = asRecord(model.verification);
+              const recommendationVerification = asRecord(recommendation.verification);
+              const modelHardware = asRecord(model.hardware);
+              const recommendationHardware = asRecord(recommendation.hardware);
+              const hardwareNote = modelHardware.notes || recommendationHardware.notes || (modelHardware.recommended_ram_gb ? `~${modelHardware.recommended_ram_gb}GB RAM rec` : "");
+              const safetyNotes = model.safety_notes || recommendation.safety_notes;
+              const licenseText = model.license || recommendation.license;
               const compatibility = (model.runtime_compatibility || recommendation.runtime_compatibility || {}) as Record<string, unknown>;
               const fallbackAvailable = String(compatibility.status || "") === "fallback_available";
               const unsupported = model.load_status === "unsupported" || compatibility.supported === false;
@@ -176,7 +183,9 @@ function ModelsPanel() {
                   <div className="min-w-0">
                     <div className="flex flex-wrap items-center gap-2">
                         <div className="text-base font-semibold">{String(model.name || id)}</div>
-                      {topPick?.id === id ? <Badge variant="success">recommended</Badge> : null}
+                      {topPick?.id === id || model.recommended_default ? <Badge variant="success">recommended</Badge> : null}
+                      {String(model.modality || recommendation.modality || "").includes("multi") || String(model.modality || "") === "multimodal" ? <Badge variant="muted">multimodal</Badge> : null}
+                      {modelVerification.verified || recommendationVerification.verified ? <Badge variant="success" title="HF verified (config+tokenizer present)">✓ HF</Badge> : null}
                     </div>
                     <div className="mt-1 text-sm text-muted-foreground">
                       {mode === "basic"
@@ -186,6 +195,11 @@ function ModelsPanel() {
                         ].filter(Boolean).map(String).join(" · ")
                         : [model.family || recommendation.family || "local", model.size || recommendation.size].filter(Boolean).map(String).join(" · ")}
                     </div>
+                    {(model.hardware || recommendation.hardware) ? (
+                      <div className="mt-1 text-[11px] text-muted-foreground/80">
+                        {String(hardwareNote)}
+                      </div>
+                    ) : null}
                     {unsupported ? (
                       <div className="mt-3 rounded-lg border border-amber-500/30 bg-amber-500/10 p-3 text-sm">
                         <div className="font-medium">{mode === "basic" ? "Needs attention before loading" : actionLabel}</div>
@@ -198,8 +212,15 @@ function ModelsPanel() {
                       </div>
                     ) : !loaded && !loadAvailable ? <div className="mt-1 text-xs text-muted-foreground">{unavailableReason}</div> : null}
                     {mode !== "basic" ? (
-                      <div className="mt-2 text-xs text-muted-foreground">
-                        {runtimeLabel} · {loadId}
+                      <div className="mt-2 space-y-1 text-xs text-muted-foreground">
+                        <div>
+                          {runtimeLabel} · {loadId}
+                          {model.load_strategy || recommendation.load_strategy ? ` · ${String(model.load_strategy || recommendation.load_strategy)}` : ""}
+                          {modelVerification.notes ? ` · ${String(modelVerification.notes).slice(0,60)}` : ""}
+                        </div>
+                        {safetyNotes || licenseText ? (
+                          <div>{[licenseText ? `License: ${String(licenseText)}` : "", safetyNotes ? String(safetyNotes) : ""].filter(Boolean).join(" · ")}</div>
+                        ) : null}
                       </div>
                     ) : null}
                     {unsupported || fallbackAvailable ? <AlternativeModels compatibility={compatibility} /> : null}
@@ -277,6 +298,10 @@ function ModelRecovery({ error }: { error: Record<string, unknown> }) {
   );
 }
 
+function asRecord(value: unknown): Record<string, unknown> {
+  return value && typeof value === "object" && !Array.isArray(value) ? value as Record<string, unknown> : {};
+}
+
 function SkillsPanel() {
   const qc = useQueryClient();
   const skills = useQuery({ queryKey: ["skills"], queryFn: latticeApi.skills });

package/frontend/src/pages/System.tsx

@@ -19,7 +19,7 @@ const tabs: Array<{ id: SystemTab; label: string }> = [
   { id: "activity", label: "History" },
   { id: "network", label: "Devices" },
   { id: "settings", label: "Preferences" },
-  { id: "admin", label: "Admin" },
+  { id: "admin", label: "Admin Console" },
 ];
 
 export function SystemPage({ initialTab }: { initialTab?: string }) {

package/lattice_brain/__init__.py

@@ -26,7 +26,7 @@ from .storage import (
     storage_from_env,
 )
 
-__version__ = "5.0.0"
+__version__ = "5.2.0"
 
 __all__ = [
     "AgentRuntime",

package/lattice_brain/portability.py

@@ -75,8 +75,8 @@ def _sqlite_siblings(db_path: Path) -> tuple[Path, Path, Path]:
 def _restore_sibling(path: Path, backup: Path) -> None:
     if backup.exists():
         shutil.copy2(backup, path)
-    elif path.exists():
-        path.unlink()
+    else:
+        path.unlink(missing_ok=True)
 
 
 def _replace_sqlite_atomically(src: Path, dest: Path, backup_dir: Path) -> None:
@@ -85,14 +85,18 @@ def _replace_sqlite_atomically(src: Path, dest: Path, backup_dir: Path) -> None:
     shutil.copyfile(src, tmp)
     backups: dict[Path, Path] = {}
     try:
+        # -wal/-shm are transient: another live connection can checkpoint and
+        # remove them between exists() and the copy/unlink. Treat a vanished
+        # sibling as "nothing to preserve" instead of crashing the restore.
         for sibling in _sqlite_siblings(dest):
-            if sibling.exists():
-                backup = backup_dir / sibling.name
+            backup = backup_dir / sibling.name
+            try:
                 shutil.copy2(sibling, backup)
-                backups[sibling] = backup
+            except FileNotFoundError:
+                continue
+            backups[sibling] = backup
         for sibling in _sqlite_siblings(dest)[1:]:
-            if sibling.exists():
-                sibling.unlink()
+            sibling.unlink(missing_ok=True)
         os.replace(tmp, dest)
     except Exception:
         if tmp.exists():

package/lattice_brain/runtime/multi_agent.py

@@ -14,7 +14,7 @@ from datetime import datetime
 from typing import Any, Callable, Dict, List, Optional
 
 
-MULTI_AGENT_VERSION = "5.0.0"
+MULTI_AGENT_VERSION = "5.2.0"
 
 AGENT_ROLES = ("researcher", "planner", "executor", "reviewer", "release")
 CORE_PIPELINE = ("planner", "executor", "reviewer")

package/latticeai/__init__.py

@@ -1,3 +1,3 @@
 """Lattice AI - modular server package."""
 
-__version__ = "5.0.0"
+__version__ = "5.2.0"

package/latticeai/api/chat.py

@@ -27,7 +27,7 @@ from latticeai.core.document_generator import DocumentGenerationSession, detect_
 from lattice_brain.runtime.hooks import dispatch_tool
 from latticeai.services.app_context import AppContext
 from latticeai.services.tool_dispatch import build_agent_runtime, collect_created_files
-from tools import AGENT_ROOT, ToolError, ensure_agent_root, execute_tool, knowledge_save, local_read, network_status
+from tools import AGENT_ROOT, ToolError, ensure_agent_root, execute_tool, knowledge_save, network_status
 
 class ChatRequest(BaseModel):
     message: str
@@ -42,6 +42,7 @@ class ChatRequest(BaseModel):
     user_email: Optional[str] = None
     user_nickname: Optional[str] = None
     image_data: Optional[str] = None
+    allow_file_context: bool = False
 
 
 class AgentRequest(BaseModel):
@@ -450,16 +451,23 @@ def create_chat_router(context: AppContext) -> APIRouter:
     
         if CONFIG.auto_read_chat_paths:
             _file_path_re = re.compile(r'(?:^|[\s\'\"(])((~|/[\w.])[^\s\'")\]]*)', re.MULTILINE)
-            for _m in _file_path_re.finditer(req.message or ""):
-                _fpath = _m.group(1).strip()
-                try:
-                    _result = local_read(_fpath)
-                    _fcontent = _result.get("content", "")
-                    if _fcontent:
-                        context += f"\n\n[FILE: {_fpath}]\n```\n{_fcontent[:6000]}\n```"
-                        print(f"📂 Auto-injected file context: {_fpath}")
-                except Exception:
-                    pass
+            requested_paths = [_m.group(1).strip() for _m in _file_path_re.finditer(req.message or "")]
+            if requested_paths:
+                append_audit_event(
+                    "auto_file_context_blocked",
+                    user_email=effective_email,
+                    path_count=len(requested_paths),
+                    allow_file_context=req.allow_file_context,
+                    reason="local file context requires an explicit approved file/tool flow",
+                )
+                if req.allow_file_context:
+                    raise HTTPException(
+                        status_code=400,
+                        detail=(
+                            "Automatic local file reads are disabled in chat. "
+                            "Attach the file, upload it, or use an approved local-file tool flow."
+                        ),
+                    )
     
         trace_seed = CHAT_SERVICE.build_graph_trace(
             req.message,

package/latticeai/api/marketplace.py

@@ -88,7 +88,7 @@ def create_marketplace_router(
     @router.get("/marketplace/templates/registry")
     async def template_registry(request: Request):
         require_user(request)
-        gate_read(request)
-        return {"registry": store.list_template_registry()}
+        scope = gate_read(request)
+        return {"registry": store.list_template_registry(workspace_id=scope)}
 
     return router

package/latticeai/api/models.py

@@ -77,6 +77,7 @@ class SetApiKeyRequest(BaseModel):
 
 class PullModelRequest(BaseModel):
     model: str
+    allow_download: bool = False
 
 
 class PrepareModelRequest(BaseModel):
@@ -291,6 +292,11 @@ def create_models_router(
     @router.post("/engines/pull-model")
     async def pull_ollama_model(req: PullModelRequest, request: Request):
         require_user(request)
+        if not req.allow_download:
+            raise HTTPException(
+                status_code=403,
+                detail="Model downloads require explicit user consent (allow_download=true).",
+            )
         model_ref = normalize_local_model_request(req.model, None)
         if not model_ref:
             raise HTTPException(status_code=400, detail="모델 식별자가 비어 있습니다.")
@@ -419,6 +425,12 @@ def create_models_router(
             loaded_ids=_router.loaded_model_ids,
             current_id=_router.current_model_id,
         )
+        # 5.2.0: surface structured registry info (verified status, hf, hardware, strategies) for UX
+        try:
+            from latticeai.services.model_catalog import get_verified_models
+            verified = get_verified_models()
+        except Exception:
+            verified = []
         return {
             "recommended": recommended,
             "cloud": _router.detected_cloud_models(),
@@ -427,6 +439,12 @@ def create_models_router(
             "current": _router.current_model_id,
             "compat_profiles": _list_compat_profiles(),
             "vision": _vision_capability(_router.current_model_id, engines),
+            # 5.2+ transparent model capability registry
+            "registry": {
+                "version": "5.2.0",
+                "verified_count": len(verified),
+                "verified": verified[:12],  # compact; full via /models/recommendations or future dedicated
+            },
         }
 
     @router.get("/models/compat-profiles")
@@ -488,9 +506,8 @@ def create_models_router(
     async def model_recommendations(request: Request, engine: str = "local_mlx"):
         """Hardware-aware tri-state model recommendation for this machine.
 
-        Detects the system profile (OS/RAM/CPU/GPU/disk) and classifies the
-        ``engine`` catalog into recommended / compatible / not_recommended,
-        grouped by family. Used by the onboarding and model-picker UIs.
+        5.2.0: now includes rich capability fields (hf_repo_id, verification,
+        hardware, load_strategy, license, safety_notes) from the structured registry.
         """
         require_user(request)
         from auto_setup import probe as auto_setup_probe
@@ -498,6 +515,11 @@ def create_models_router(
 
         profile = await asyncio.to_thread(lambda: auto_setup_probe().to_json())
         catalog = recommend_catalog(profile, engine=engine)
-        return {"profile": profile, "recommendations": catalog}
+        try:
+            from latticeai.services.model_catalog import get_verified_models
+            reg_meta = {"version": "5.2.0", "verified_total": len(get_verified_models())}
+        except Exception:
+            reg_meta = {"version": "5.2.0"}
+        return {"profile": profile, "recommendations": catalog, "registry": reg_meta}
 
     return router

package/latticeai/api/security_dashboard.py

@@ -26,7 +26,6 @@ from __future__ import annotations
 import io
 import json
 import logging
-import re
 from collections import defaultdict
 from datetime import datetime
 from typing import Any, Callable, Dict, List, Optional
@@ -36,6 +35,7 @@ from fastapi.responses import Response
 from pydantic import BaseModel
 
 from ..core import timezones
+from ..core.security import SECRET_TEXT_PATTERNS, redact_secret_text
 
 logger = logging.getLogger(__name__)
 
@@ -43,23 +43,11 @@ logger = logging.getLogger(__name__)
 # ── Hard secret patterns ──────────────────────────────────────────────────────
 # 이 값들은 관리자도 절대 원문으로 보면 안 된다.
 
-HARD_SECRET_PATTERNS = [
-    re.compile(r"(?i)(api[_-]?key|secret|access[_-]?token|password|passwd|bearer)\s*[:=]\s*\S+"),
-    re.compile(r"sk-[A-Za-z0-9]{20,}"),
-    re.compile(r"ghp_[A-Za-z0-9]{30,}"),
-    re.compile(r"xox[baprs]-[A-Za-z0-9-]{10,}"),
-    re.compile(r"AKIA[0-9A-Z]{16}"),
-    re.compile(r"-----BEGIN [A-Z ]+PRIVATE KEY-----[\s\S]+?-----END [A-Z ]+PRIVATE KEY-----"),
-]
+HARD_SECRET_PATTERNS = SECRET_TEXT_PATTERNS
 
 
 def redact_hard_secrets(text: str) -> str:
-    if not text:
-        return text or ""
-    out = text
-    for pat in HARD_SECRET_PATTERNS:
-        out = pat.sub("[REDACTED_SECRET]", out)
-    return out
+    return redact_secret_text(text)
 
 
 def soft_mask(text: str, *, keep: int = 4) -> str:

package/latticeai/api/static_routes.py

@@ -12,11 +12,27 @@ from fastapi.responses import FileResponse, HTMLResponse
 
 from latticeai.api.ui_redirects import app_redirect
 
+PRODUCTION_CSP = (
+    "default-src 'self'; "
+    "script-src 'self'; "
+    "style-src 'self' 'unsafe-inline'; "
+    "img-src 'self' data: blob: http://127.0.0.1:*; "
+    "font-src 'self' data:; "
+    "connect-src 'self' http://127.0.0.1:* ws://127.0.0.1:*; "
+    "frame-src 'none'; "
+    "object-src 'none'; "
+    "base-uri 'none'; "
+    "form-action 'self'; "
+    "frame-ancestors 'none'"
+)
+
+
 def ui_file_response(path: Path) -> FileResponse:
     response = FileResponse(path)
     response.headers["Cache-Control"] = "no-cache, no-store, must-revalidate"
     response.headers["Pragma"] = "no-cache"
     response.headers["Expires"] = "0"
+    response.headers["Content-Security-Policy"] = PRODUCTION_CSP
     return response
 
 @dataclass(frozen=True)