thumbgate 1.27.11 → 1.27.13

package/public/compare/anthropic-containment.html

@@ -1,280 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8" />
-<meta name="viewport" content="width=device-width, initial-scale=1.0" />
-<title>ThumbGate vs Anthropic's Claude Containment | IDE-Agent Extension of a Published Architecture</title>
-<meta name="description" content="Anthropic published their three-layer containment architecture for Claude: ephemeral containers, OS-level sandboxes (Seatbelt / bubblewrap), and an MITM egress proxy. ThumbGate extends the same model to the IDE-agent layer — Cursor, Codex, Gemini, Amp, Cline, OpenCode — where Anthropic's sandbox stops." />
-<meta property="og:title" content="ThumbGate vs Anthropic's Claude Containment | IDE-Agent Extension" />
-<meta property="og:description" content="Anthropic contains Claude on claude.ai and Claude Code. ThumbGate contains the agents Anthropic does not own: Cursor, Codex, Gemini, Amp, Cline, OpenCode. Same three-layer model, extended to the agents you actually use." />
-<meta property="og:type" content="article" />
-<meta property="og:url" content="https://thumbgate.ai/compare/anthropic-containment" />
-<link rel="canonical" href="https://thumbgate.ai/compare/anthropic-containment" />
-<link rel="llm-context" href="/llm-context.md" type="text/markdown" />
-<link rel="icon" type="image/png" href="/thumbgate-icon.png" />
-<link rel="apple-touch-icon" href="/assets/brand/thumbgate-mark.svg" />
-<meta property="og:image" content="/og.png" />
-<style>
-  :root { --bg: #0a0a0b; --bg-raised: #111113; --bg-card: #161618; --line: #222225; --text: #e8e8ec; --muted: #8b8b96; --cyan: #22d3ee; --green: #4ade80; --amber: #fbbf24; }
-  * { box-sizing: border-box; }
-  body { margin: 0; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif; background: var(--bg); color: var(--text); line-height: 1.65; }
-  a { color: var(--cyan); text-decoration: none; }
-  a:hover { text-decoration: underline; }
-  .container { max-width: 980px; margin: 0 auto; padding: 0 24px; }
-  .topbar { position: sticky; top: 0; z-index: 20; backdrop-filter: blur(12px); background: rgba(10, 10, 11, 0.88); border-bottom: 1px solid var(--line); }
-  .topbar .container { display: flex; justify-content: space-between; align-items: center; padding-top: 14px; padding-bottom: 14px; }
-  .brand { font-weight: 700; color: var(--text); display: inline-flex; align-items: center; gap: 8px; text-decoration: none; }
-  .brand .logo-mark { width: 28px; height: 28px; display: block; }
-  .hero { padding: 72px 0 32px; }
-  .eyebrow { display: inline-flex; align-items: center; gap: 8px; padding: 6px 12px; border-radius: 999px; border: 1px solid rgba(34, 211, 238, 0.22); background: rgba(34, 211, 238, 0.1); color: var(--cyan); text-transform: uppercase; letter-spacing: 0.08em; font-size: 12px; font-weight: 700; }
-  h1 { font-size: clamp(34px, 5vw, 56px); line-height: 1.06; letter-spacing: -0.04em; margin: 16px 0; max-width: 860px; }
-  .hero p { max-width: 760px; color: var(--muted); font-size: 18px; }
-  .grid { display: grid; grid-template-columns: minmax(0, 2fr) minmax(280px, 1fr); gap: 24px; padding-bottom: 72px; }
-  .card, .detail-section, .sidebar-card { background: var(--bg-card); border: 1px solid var(--line); border-radius: 16px; }
-  .card { padding: 24px; }
-  .detail-section { padding: 24px; margin-bottom: 18px; }
-  .detail-section h2 { margin: 0 0 12px; font-size: 24px; letter-spacing: -0.03em; }
-  .detail-section p, .detail-section li, .sidebar-card p { color: var(--muted); }
-  .detail-section ul, .card ul { padding-left: 18px; color: var(--muted); }
-  .comparison-table { width: 100%; border-collapse: collapse; margin-top: 16px; font-size: 14px; }
-  .comparison-table th, .comparison-table td { border: 1px solid var(--line); padding: 12px; text-align: left; vertical-align: top; }
-  .comparison-table th { background: var(--bg-raised); color: var(--cyan); }
-  .pill-row { display: flex; flex-wrap: wrap; gap: 12px; margin-top: 24px; }
-  .pill { border: 1px solid var(--line); background: var(--bg-raised); border-radius: 999px; padding: 10px 14px; font-size: 14px; font-weight: 650; }
-  .pill.good { color: #b8f7c8; border-color: rgba(74, 222, 128, 0.28); background: rgba(74, 222, 128, 0.1); }
-  .pill.warn { color: #ffe2a4; border-color: rgba(251, 191, 36, 0.28); background: rgba(251, 191, 36, 0.1); }
-  .sidebar { display: flex; flex-direction: column; gap: 18px; }
-  .sidebar-card { padding: 20px; }
-  .sidebar-card:first-child { position: sticky; top: 84px; max-height: calc(100vh - 104px); overflow-y: auto; -webkit-overflow-scrolling: touch; }
-  .cta-button { display: inline-flex; align-items: center; justify-content: center; margin-top: 18px; padding: 12px 16px; border-radius: 10px; background: var(--cyan); color: #071116; font-weight: 700; text-decoration: none; }
-  .related-card { display: block; padding: 14px; border-radius: 12px; border: 1px solid var(--line); background: var(--bg-raised); margin-top: 12px; color: var(--text); }
-  .related-label { display: block; color: var(--muted); font-size: 12px; text-transform: uppercase; letter-spacing: 0.08em; margin-bottom: 4px; }
-  .faq-item { border-top: 1px solid var(--line); padding: 14px 0; }
-  .faq-item summary { cursor: pointer; font-weight: 600; }
-  .faq-item p { color: var(--muted); }
-  blockquote { border-left: 3px solid var(--cyan); margin: 14px 0; padding: 6px 16px; color: var(--text); font-style: italic; background: rgba(34, 211, 238, 0.05); }
-  @media (max-width: 860px) { .grid { grid-template-columns: 1fr; } .sidebar-card:first-child { position: static; max-height: none; overflow: visible; } }
-</style>
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "ThumbGate vs Anthropic's Claude Containment Architecture",
-  "description": "Anthropic published their three-layer containment model: environment isolation (ephemeral gVisor containers, Seatbelt/bubblewrap sandboxes, hypervisor VMs), behavioral guidance, and external content controls. ThumbGate extends the same model to the IDE-agent layer where Anthropic's sandbox stops.",
-  "about": ["thumbgate vs anthropic containment", "Claude Code sandbox", "IDE agent safety architecture", "PreToolUse hooks for non-Claude agents"],
-  "url": "https://thumbgate.ai/compare/anthropic-containment",
-  "citation": "https://www.anthropic.com/engineering/how-we-contain-claude",
-  "publisher": { "@type": "Organization", "name": "ThumbGate", "url": "https://thumbgate.ai" },
-  "mainEntityOfPage": "https://thumbgate.ai/compare/anthropic-containment"
-}
-</script>
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "FAQPage",
-  "mainEntity": [
-    {
-      "@type": "Question",
-      "name": "Is ThumbGate a competitor to Anthropic's Claude containment?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "No. Anthropic's published containment architecture (gVisor ephemeral containers on claude.ai, Seatbelt on macOS and bubblewrap on Linux for Claude Code, hypervisor VMs for Claude Cowork, MITM egress proxy) covers what they ship. It stops at the Claude Code process boundary. ThumbGate runs the same three-layer model (environment → permission gate → egress) at the IDE-agent layer for the agents Anthropic does not own: Cursor, OpenAI Codex CLI, Google Gemini CLI, Sourcegraph Amp, Cline, OpenCode, and Claude Desktop. Same architectural model, extended to the agents your team actually uses alongside Claude Code."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "What does Anthropic's article tell us about agent containment?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Three lessons we operationalize: (1) Design for containment at the environment layer first, then steer behavior at the model layer. (2) Tool output is an attack surface even when the tool is trusted — a system prompt cannot prevent an exfiltration that the tool itself returns. (3) Battle-tested primitives (hypervisors, seccomp, gVisor) are more reliable than custom proxy components. ThumbGate's PreToolUse hook is the IDE-agent analogue of Anthropic's permission gate; the planned PostToolUse output inspection is the IDE-agent analogue of Anthropic's tool-output check before context insertion."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Where does Anthropic's containment stop and ThumbGate begin?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Anthropic's containment lives inside the products they ship (claude.ai, Claude Code, Claude Cowork). The moment your developer opens Cursor with the Anthropic API key, or runs an OpenAI Codex CLI session against a local repo, or wires up an MCP server in any agent runtime, you've left Anthropic's containment boundary. ThumbGate runs the same PreToolUse-gating model inside those non-Anthropic-owned runtimes. The two compose: Anthropic contains Claude inside their products, ThumbGate contains the agents your team uses outside them."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Why should I use a third-party tool instead of writing my own bubblewrap rules?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Anthropic's own conclusion: 'the software you build yourself is often the weakest.' Their early custom MITM proxy failed in real incidents involving credential exfiltration and allowlist bypasses; they rebuilt on hypervisor primitives. ThumbGate's gate engine, lesson DB, Thompson Sampling auto-promotion, and adapter matrix across eight agent runtimes is the same argument: maintained infrastructure beats per-team shell scripts that go stale the moment Claude Code, Cursor, or Codex ship a breaking change to their hook API."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Does ThumbGate use any of the same primitives Anthropic uses?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Different layer, different primitives. Anthropic relies on OS sandboxes (Seatbelt, bubblewrap, gVisor, hypervisors) because they ship the runtime. ThumbGate runs as a PreToolUse hook inside agent runtimes that don't expose those OS primitives to third parties, so ThumbGate's enforcement layer is pure JavaScript pattern matching against intercepted tool calls — fast, auditable, no LLM on the path. The architectural model is the same; the implementation is what each layer can reach."
-      }
-    }
-  ]
-}
-</script>
-</head>
-<body>
-<div class="topbar">
-  <div class="container">
-    <a class="brand" href="/"><img src="/assets/brand/thumbgate-mark-inline.svg" alt="ThumbGate" class="logo-mark" width="28" height="28"><span class="logo-text">ThumbGate</span></a>
-    <a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/docs/VERIFICATION_EVIDENCE.md" target="_blank" rel="noopener">Verification evidence</a>
-  </div>
-</div>
-
-<section class="hero">
-  <div class="container">
-    <span class="eyebrow">ThumbGate vs Anthropic Containment</span>
-    <h1>Anthropic contains Claude inside their products. ThumbGate contains every other agent your team uses.</h1>
-    <p>Anthropic published <a href="https://www.anthropic.com/engineering/how-we-contain-claude" target="_blank" rel="noopener">"How we contain Claude"</a> on their engineering blog — a three-layer architecture (environment isolation → behavioral guidance → external content controls) implemented across claude.ai, Claude Code, and Claude Cowork. That coverage stops at the Anthropic product boundary. <strong>ThumbGate runs the same architectural model at the IDE-agent layer</strong> — Cursor, OpenAI Codex CLI, Google Gemini CLI, Sourcegraph Amp, Cline, OpenCode, and Claude Desktop — where Anthropic's sandbox does not reach.</p>
-    <div class="pill-row">
-      <span class="pill">Same 3-layer model</span>
-      <span class="pill">Different runtime layer</span>
-      <span class="pill good">Composable, not competitive</span>
-    </div>
-  </div>
-</section>
-
-<div class="container grid">
-  <main>
-    <article class="detail-section">
-      <h2>Anthropic's published architecture, mapped to ThumbGate</h2>
-      <table class="comparison-table">
-        <thead>
-          <tr>
-            <th>Anthropic layer (published practice)</th>
-            <th>Where ThumbGate fits</th>
-          </tr>
-        </thead>
-        <tbody>
-          <tr>
-            <td><strong>Ephemeral gVisor containers</strong> (claude.ai per-session filesystem; "no code runs on the local machine")</td>
-            <td>Out of scope — Anthropic's hosted product. ThumbGate is local-first by design.</td>
-          </tr>
-          <tr>
-            <td><strong>OS-level sandbox</strong> (Seatbelt on macOS, bubblewrap on Linux for Claude Code; 84% reduction in permission prompts)</td>
-            <td><strong>Direct analogue.</strong> ThumbGate's PreToolUse hook is the cross-agent version: same "evaluate before execution" model, but works inside Cursor, Codex, Gemini, Amp, Cline, OpenCode where bubblewrap/Seatbelt don't apply.</td>
-          </tr>
-          <tr>
-            <td><strong>Hypervisor VM isolation</strong> (Claude Cowork; "the agent loop ran inside the guest…executed as an ordinary Linux user with no awareness it was sandboxed")</td>
-            <td>Out of scope — Anthropic's managed VM offering. ThumbGate's adjacent value: deterministic rule enforcement that follows the agent across whichever machine you run it on.</td>
-          </tr>
-          <tr>
-            <td><strong>MITM egress proxy</strong> (intercepts API traffic, validates VM-provisioned session tokens after credential exfiltration was discovered through approved domains)</td>
-            <td><strong>Roadmap analogue.</strong> ThumbGate's egress-rule gates can block external LLM calls when privilege markers or restricted hostnames appear in the outbound payload — same defense, IDE-agent layer.</td>
-          </tr>
-          <tr>
-            <td><strong>Tool output inspection pre-context</strong> ("tool output is an attack surface even when the tool is trusted")</td>
-            <td><strong>Direct roadmap item.</strong> PostToolUse output inspection is the natural extension of ThumbGate's PreToolUse model. Same logic, applied to the returned payload before it enters agent context.</td>
-          </tr>
-          <tr>
-            <td><strong>Model-layer behavioral guidance</strong> (system prompts, model tuning)</td>
-            <td>Not us. ThumbGate is deterministic enforcement, not steering. We assume the model will sometimes try the wrong thing; the gate is what stops it from succeeding.</td>
-          </tr>
-        </tbody>
-      </table>
-    </article>
-
-    <article class="detail-section">
-      <h2>Three lessons from Anthropic that operationalize for non-Anthropic agents</h2>
-      <p><strong>1. Environment first, behavior second.</strong> Anthropic writes:</p>
-      <blockquote>"Design for containment at the environment layer first, then steer behavior at the model layer."</blockquote>
-      <p>This is exactly why ThumbGate is a PreToolUse hook rather than a system-prompt addition. The gate fires regardless of what the model "tries to do" — it acts on the actual tool-call payload, not on the model's intent.</p>
-
-      <p><strong>2. Tool output is an attack surface.</strong> Anthropic writes:</p>
-      <blockquote>"Tool output is an attack surface even when the tool is trusted."</blockquote>
-      <p>This is the architectural justification for ThumbGate's roadmapped PostToolUse output-inspection layer. A trusted internal tool returning poisoned data is the same threat as an untrusted external one — both flow into the model's context window with the same authority.</p>
-
-      <p><strong>3. Battle-tested primitives beat custom proxies.</strong> Anthropic writes:</p>
-      <blockquote>"The software you build yourself is often the weakest."</blockquote>
-      <p>Their early custom MITM proxy failed in real incidents involving credential exfiltration and allowlist bypasses; they rebuilt on hypervisor primitives. The same argument applies one layer up: a maintained third-party gate engine, lesson DB, and adapter matrix across eight agent runtimes is more reliable than per-team shell scripts that go stale the moment Claude Code, Cursor, or Codex ship a breaking change to their hook API.</p>
-    </article>
-
-    <article class="detail-section">
-      <h2>When you should rely on Anthropic's containment vs ThumbGate</h2>
-      <ul>
-        <li><strong>You only use claude.ai:</strong> Anthropic's containment is doing the work. ThumbGate adds nothing.</li>
-        <li><strong>You only use Claude Code on macOS or Linux:</strong> Anthropic's bubblewrap/Seatbelt covers the bash + filesystem surface. ThumbGate adds value for repeated-mistake prevention (the "thumbs down → blocked next time" loop) and for any MCP servers wired into Claude Code that bubblewrap doesn't gate.</li>
-        <li><strong>You use Cursor, Codex CLI, Gemini CLI, Amp, Cline, OpenCode, or Claude Desktop:</strong> Anthropic's sandboxes do not apply. ThumbGate is the only PreToolUse layer that covers all of them with one configuration.</li>
-        <li><strong>You use Claude Cowork:</strong> Anthropic's hypervisor VM contains the execution surface. ThumbGate's enforcement persists across whichever VM or machine the agent runs on, useful when you want the same rule to fire in dev + production.</li>
-      </ul>
-    </article>
-
-    <article class="detail-section">
-      <h2>FAQ</h2>
-      <details class="faq-item" open>
-        <summary>Is ThumbGate a competitor to Anthropic's Claude containment?</summary>
-        <p>No. Anthropic's containment stops at the Claude Code / claude.ai / Claude Cowork product boundary. ThumbGate runs the same three-layer model at the IDE-agent layer — Cursor, Codex, Gemini, Amp, Cline, OpenCode, Claude Desktop — where Anthropic's sandbox does not reach.</p>
-      </details>
-      <details class="faq-item">
-        <summary>What does Anthropic's article tell us about agent containment?</summary>
-        <p>Three lessons we operationalize: environment first then behavior, tool output is an attack surface, battle-tested primitives beat custom proxies. ThumbGate's PreToolUse hook is the IDE-agent analogue of Anthropic's permission gate; the planned PostToolUse output inspection is the analogue of Anthropic's tool-output check before context insertion.</p>
-      </details>
-      <details class="faq-item">
-        <summary>Why use a third-party tool instead of writing my own bubblewrap rules?</summary>
-        <p>Anthropic's own conclusion: "the software you build yourself is often the weakest." Their early custom MITM proxy failed in real incidents; they rebuilt on hypervisor primitives. ThumbGate's maintained gate engine + lesson DB + adapter matrix is the same argument one layer up: maintained infrastructure beats per-team shell scripts that go stale the moment Claude Code, Cursor, or Codex ship a breaking change to their hook API.</p>
-      </details>
-      <details class="faq-item">
-        <summary>Where does Anthropic's containment stop and ThumbGate begin?</summary>
-        <p>Inside Anthropic's products: Anthropic. The moment your dev opens Cursor with the Anthropic API key, or runs Codex against a local repo, or wires up an MCP server in any agent runtime: ThumbGate. The two compose without overlap.</p>
-      </details>
-      <details class="faq-item">
-        <summary>Where do I start?</summary>
-        <p>If you use Claude Code: keep using it as-is, install ThumbGate alongside (<code>npx thumbgate init</code>) for the repeated-mistake prevention loop and for the MCP servers Anthropic's sandbox doesn't reach. If you use any other agent runtime: ThumbGate is the only deterministic PreToolUse layer for them.</p>
-      </details>
-    </article>
-  </main>
-
-  <aside class="sidebar">
-    <div class="sidebar-card">
-      <h3 style="margin: 0 0 8px;">Install ThumbGate free</h3>
-      <p>10 captures/day, 3 active rules, PreToolUse blocking across Claude Code, Cursor, Codex, Gemini, Amp, Cline, OpenCode, Claude Desktop.</p>
-      <pre style="background: var(--bg-raised); border: 1px solid var(--line); border-radius: 8px; padding: 12px; font-size: 13px; overflow: auto;">npx thumbgate init</pre>
-      <a class="cta-button" href="/pricing">See Pro vs Team pricing →</a>
-      <p style="font-size: 12px; margin-top: 16px;">MIT licensed. No telemetry without opt-in. <code>THUMBGATE_NO_TELEMETRY=1</code> disables.</p>
-    </div>
-
-    <div class="sidebar-card">
-      <span class="related-label">Read Anthropic's article</span>
-      <p style="font-size: 13px;"><a href="https://www.anthropic.com/engineering/how-we-contain-claude" target="_blank" rel="noopener">"How we contain Claude" — Anthropic engineering blog</a>. The published architectural model this page extends to non-Anthropic agent runtimes.</p>
-    </div>
-
-    <div class="sidebar-card">
-      <span class="related-label">Related comparisons</span>
-      <a class="related-card" href="/compare/bumblebee">
-        <strong>ThumbGate vs Bumblebee</strong><br>
-        <span style="color: var(--muted); font-size: 13px;">Runtime enforcement vs Perplexity's static MCP inventory</span>
-      </a>
-      <a class="related-card" href="/compare/claude-code-hooks">
-        <strong>ThumbGate vs claude-code-hooks</strong><br>
-        <span style="color: var(--muted); font-size: 13px;">Hosted sync vs local shell scripts</span>
-      </a>
-      <a class="related-card" href="/compare/heidi">
-        <strong>ThumbGate vs HEIDI</strong><br>
-        <span style="color: var(--muted); font-size: 13px;">Agent behavior vs dependency CVE scanning</span>
-      </a>
-      <a class="related-card" href="/compare/oak-and-sparrow-gatekeeper">
-        <strong>ThumbGate vs Gatekeeper (Oak &amp; Sparrow)</strong><br>
-        <span style="color: var(--muted); font-size: 13px;">Agent-action gate vs workforce-input gate</span>
-      </a>
-      <a class="related-card" href="/compare/arcjet">
-        <strong>ThumbGate vs Arcjet</strong><br>
-        <span style="color: var(--muted); font-size: 13px;">Agent-outbound gate vs app-inbound firewall</span>
-      </a>
-      <a class="related-card" href="/compare/anthropic-claude-for-legal">
-        <strong>ThumbGate vs Claude for Legal</strong><br>
-        <span style="color: var(--muted); font-size: 13px;">Runtime feedback-to-enforcement loop underneath Anthropic's legal bundle</span>
-      </a>
-    </div>
-
-    <div class="sidebar-card">
-      <span class="related-label">Sources</span>
-      <p style="font-size: 13px;">All Anthropic quotes from <a href="https://www.anthropic.com/engineering/how-we-contain-claude" target="_blank" rel="noopener">"How we contain Claude"</a> on the Anthropic engineering blog. If anything here misrepresents Anthropic's published architecture, open an issue at <a href="https://github.com/IgorGanapolsky/ThumbGate/issues" target="_blank" rel="noopener">our repo</a> and we'll correct it.</p>
-    </div>
-  </aside>
-</div>
-</body>
-</html>

package/public/compare/arcade.html

@@ -1,175 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>ThumbGate vs Arcade — Coding-Agent Guardrails vs Enterprise API Auth Delegation</title>
-<script defer data-domain="thumbgate.ai" src="https://plausible.io/js/script.js"></script>
-<meta name="description" content="ThumbGate vs Arcade for AI agent governance. Arcade is a cloud-hosted OAuth proxy for enterprise production agents accessing SaaS APIs. ThumbGate is a local-first, feedback-driven pre-action check firewall for coding agents.">
-<meta name="keywords" content="AI agent governance, Arcade.dev, ThumbGate, runtime governance, pre-action hooks, agent decorator, coding agent guardrails, OAuth proxy, MCP authorization">
-<meta property="og:title" content="ThumbGate vs Arcade — Coding-Agent Guardrails vs Enterprise API Auth Delegation">
-<meta property="og:description" content="Both intercept agent actions before damage. Different layers, different deployment models, different target loops. Honest side-by-side.">
-<meta property="og:type" content="article">
-<meta property="og:url" content="https://thumbgate.ai/compare/arcade">
-<link rel="canonical" href="https://thumbgate.ai/compare/arcade">
-
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "ThumbGate vs Arcade — Coding-Agent Guardrails vs Enterprise API Auth Delegation",
-  "description": "Side-by-side comparison of two governance layers for AI agents. ThumbGate is a local-first pre-action check firewall specialized for AI coding agents. Arcade is a cloud-hosted auth proxy for enterprise production agents.",
-  "author": {
-    "@type": "Person",
-    "name": "Igor Ganapolsky",
-    "url": "https://github.com/IgorGanapolsky"
-  },
-  "publisher": {
-    "@type": "Organization",
-    "name": "ThumbGate",
-    "url": "https://thumbgate.ai"
-  },
-  "datePublished": "2026-06-17",
-  "dateModified": "2026-06-17",
-  "mainEntityOfPage": "https://thumbgate.ai/compare/arcade"
-}
-</script>
-
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "FAQPage",
-  "mainEntity": [
-    {
-      "@type": "Question",
-      "name": "What's the difference between Arcade and ThumbGate?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Both address the 'accountability gap' in AI agents, but they focus on different parts of the stack. Arcade is a cloud-hosted auth proxy built to delegate user identities (via OAuth) to downstream SaaS APIs for production enterprise agents. ThumbGate is a local-first pre-action check firewall built to prevent coding agents (Claude Code, Cursor, Cline) from making filesystem mistakes or breaking builds. Arcade targets enterprise SaaS integration; ThumbGate targets the developer's inner loop."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Does Arcade support MCP?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Yes. Arcade authored the Model Context Protocol (MCP) authorization spec to delegate OAuth tokens to APIs. ThumbGate operates as a local MCP server that enforces rule boundaries directly at the developer's tool-call execution level."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Do I need to rewrite code to integrate ThumbGate or Arcade?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "ThumbGate requires zero code changes — it auto-configures PreToolUse hooks via a CLI command (npx thumbgate init) to run out-of-process. Arcade requires routing agent API calls through their auth proxy or utilizing their SDK in your agent application backend."
-      }
-    }
-  ]
-}
-</script>
-
-<link rel="stylesheet" href="/learn/learn.css">
-<style>
-  .matrix { width: 100%; border-collapse: collapse; margin: 1.5rem 0; font-size: 0.95rem; }
-  .matrix th, .matrix td { padding: 12px 14px; text-align: left; border-bottom: 1px solid var(--border); vertical-align: top; }
-  .matrix th { background: var(--bg-card); font-weight: 600; }
-  .matrix td:nth-child(2) { color: var(--muted); }
-  .matrix td:nth-child(3) { color: var(--text); }
-  .verdict { font-weight: 600; color: var(--green); }
-  .pair { display: grid; grid-template-columns: 1fr 1fr; gap: 16px; margin: 1.5rem 0; }
-  .pair > div { background: var(--bg-card); border: 1px solid var(--border); border-radius: 8px; padding: 1rem; }
-  @media (max-width: 700px) { .pair { grid-template-columns: 1fr; } }
-</style>
-</head>
-<body>
-
-<nav>
-  <a href="/" class="brand"><img src="/assets/brand/thumbgate-mark-inline.svg" alt="ThumbGate" class="logo-mark" width="28" height="28"><span class="logo-text">ThumbGate</span></a>
-  <a href="/pricing">Pricing</a>
-  <a href="/case-studies">Case Studies</a>
-  <a href="/compare">Compare</a>
-  <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub</a>
-</nav>
-
-<div class="container">
-  <div class="breadcrumb"><a href="/compare">Compare</a> / ThumbGate vs Arcade</div>
-  <h1>ThumbGate vs Arcade.dev</h1>
-  <p style="color:var(--muted);">5 min read · For teams evaluating AI agent security, auth, and guardrail layers</p>
-
-  <div class="tldr"><strong>TL;DR:</strong> Arcade is a cloud-hosted auth proxy built to delegate user identities (OAuth) to SaaS APIs for production-facing enterprise agents. ThumbGate is a local-first, feedback-driven pre-action check firewall built to prevent coding agents (Claude Code, Cursor, Cline) from making filesystem mistakes or breaking builds. Arcade secures API identity delegation; ThumbGate secures local tool-call execution.</div>
-
-  <h2>Different Layers, Different Goals</h2>
-  <p>Arcade recently announced a $60M Series A (led by SYN Ventures with Morgan Stanley and Wipro) to address the authorization accountability gap in production AI agents. While both products focus on the AI agent security space, they are designed for completely separate loops.</p>
-
-  <p>If you're building a production agent that needs to draft emails, update Salesforce records, or post to Slack on behalf of real users, Arcade's token delegation is the industry standard. If you are a developer using Claude Code or Cursor and want to make sure the agent doesn't delete your files, leak API keys, or run unsafe commands, ThumbGate's local PreToolUse firewall is built for you.</p>
-
-  <h2>Side-by-Side Comparison</h2>
-
-  <table class="matrix">
-    <thead>
-      <tr><th style="width:28%;">Dimension</th><th style="width:36%;">Arcade.dev</th><th style="width:36%;">ThumbGate</th></tr>
-    </thead>
-    <tbody>
-      <tr>
-        <td><strong>Primary Value Prop</strong></td>
-        <td>Secure identity/token delegation and auth propagation for production agents.</td>
-        <td>Local pre-action checks preventing coding-agent mistakes and directory destruction.</td>
-      </tr>
-      <tr>
-        <td><strong>Integration layer</strong></td>
-        <td>Cloud auth proxy between agent application and downstream SaaS APIs.</td>
-        <td>Out-of-process PreToolUse hook intercepting tool calls at the agent runtime boundary (Claude Code / Cursor / Codex / Gemini / Amp / Cline / OpenCode).</td>
-      </tr>
-      <tr>
-        <td><strong>Deployment mode</strong></td>
-        <td>Cloud-hosted service or self-hosted gateway.</td>
-        <td>Local-first, runs on the developer's machine with SQLite/JSON persistence.</td>
-      </tr>
-      <tr>
-        <td><strong>Identity &amp; Auth Model</strong></td>
-        <td>OAuth 2.0 user identity propagation.</td>
-        <td>Policy-based rules derived from human feedback (thumbs-down rules) and Thompson Sampling.</td>
-      </tr>
-      <tr>
-        <td><strong>Primary target tools</strong></td>
-        <td>SaaS APIs (Slack, Salesforce, GitHub, Gmail, Jira).</td>
-        <td>Local system tools (filesystem write, terminal execute, git push, package install).</td>
-      </tr>
-      <tr>
-        <td><strong>MCP Integration</strong></td>
-        <td>Authored the MCP authorization specification for API token delegation.</td>
-        <td>Operates as a local MCP server controlling local tool execution permissions.</td>
-      </tr>
-      <tr>
-        <td><strong>Setup Friction</strong></td>
-        <td>Requires configuring OAuth providers, redirect URIs, and deploying API proxy.</td>
-        <td>Installs in 30 seconds via <code>npx thumbgate init</code> with zero infrastructure.</td>
-      </tr>
-    </tbody>
-  </table>
-
-  <h2>Complementary, Not Conflicting</h2>
-  <p>Because they operate at different layers, ThumbGate and Arcade are complementary:</p>
-  <ul>
-    <li>Use <strong>Arcade</strong> to securely hook your company's production customer support agent into Gmail and Salesforce.</li>
-    <li>Use <strong>ThumbGate</strong> to keep your software engineers' local AI coding assistants from introducing security bugs, breaking builds, or deleting files.</li>
-  </ul>
-
-  <h2>Get Started with Local Guardrails</h2>
-  <div class="card">
-    <p>Install ThumbGate locally in one command:</p>
-    <pre><code>npx thumbgate init</code></pre>
-    <p>Then give thumbs-up/down feedback to let the firewall learn your boundaries. Core CLI + local hooks are MIT licensed.</p>
-    <p>
-      <a href="https://www.npmjs.com/package/thumbgate" class="cta">View on npm</a>
-      <a href="https://github.com/IgorGanapolsky/ThumbGate" style="color:var(--cyan); margin-left:1.5rem; text-decoration:underline;">View on GitHub</a>
-    </p>
-  </div>
-</div>
-
-<footer>
-  <p>ThumbGate -- Pre-action checks for AI coding agents</p>
-  <p><a href="https://github.com/IgorGanapolsky/ThumbGate">GitHub</a> | <a href="https://www.npmjs.com/package/thumbgate">npm</a> | <a href="/compare">Compare</a> | <a href="/dashboard">Dashboard</a></p>
-</footer>
-</body>
-</html>