thumbgate 1.27.11 → 1.27.13

package/public/guides/developer-machine-supply-chain-guardrails.html

@@ -1,358 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-  <meta charset="UTF-8" />
-  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-  <title>Developer Machine Supply Chain Guardrails | ThumbGate Guide</title>
-  <meta name="description" content="Developer laptops and CI runners hold tokens, package-manager trust, and one-shot CLI install paths. ThumbGate turns that local execution risk into pre-actio..." />
-  <meta property="og:title" content="Developer Machine Supply Chain Guardrails | ThumbGate Guide" />
-  <meta property="og:description" content="Developer laptops and CI runners hold tokens, package-manager trust, and one-shot CLI install paths. ThumbGate turns that local execution risk into pre-actio..." />
-  <meta property="og:type" content="article" />
-  <meta property="og:url" content="https://thumbgate.ai/guides/developer-machine-supply-chain-guardrails" />
-  <link rel="canonical" href="https://thumbgate.ai/guides/developer-machine-supply-chain-guardrails" />
-  <link rel="llm-context" href="/llm-context.md" type="text/markdown" />
-  <link rel="icon" type="image/svg+xml" href="/thumbgate-icon.png" />
-  <link rel="apple-touch-icon" href="/assets/brand/thumbgate-mark.svg" />
-  <meta property="og:image" content="/og.png" />
-  <style>
-    :root {
-      --bg: #0a0a0b;
-      --bg-raised: #111113;
-      --bg-card: #161618;
-      --line: #222225;
-      --text: #e8e8ec;
-      --muted: #8b8b96;
-      --cyan: #22d3ee;
-      --green: #4ade80;
-      --red: #f87171;
-    }
-    * { box-sizing: border-box; }
-    body {
-      margin: 0;
-      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif;
-      background: var(--bg);
-      color: var(--text);
-      line-height: 1.65;
-    }
-    a { color: var(--cyan); text-decoration: none; }
-    a:hover { text-decoration: underline; }
-    .container { max-width: 980px; margin: 0 auto; padding: 0 24px; }
-    .topbar {
-      position: sticky;
-      top: 0;
-      z-index: 20;
-      backdrop-filter: blur(12px);
-      background: rgba(10, 10, 11, 0.88);
-      border-bottom: 1px solid var(--line);
-    }
-    .topbar .container {
-      display: flex;
-      justify-content: space-between;
-      align-items: center;
-      padding-top: 14px;
-      padding-bottom: 14px;
-    }
-    .brand {
-      font-weight: 700;
-      color: var(--text);
-      display: inline-flex;
-      align-items: center;
-      gap: 8px;
-      text-decoration: none;
-    }
-    .brand .logo-mark { width: 28px; height: 28px; display: block; }
-    .hero { padding: 72px 0 32px; }
-    .eyebrow {
-      display: inline-flex;
-      align-items: center;
-      gap: 8px;
-      padding: 6px 12px;
-      border-radius: 999px;
-      border: 1px solid rgba(34, 211, 238, 0.22);
-      background: rgba(34, 211, 238, 0.1);
-      color: var(--cyan);
-      text-transform: uppercase;
-      letter-spacing: 0.08em;
-      font-size: 12px;
-      font-weight: 700;
-    }
-    h1 {
-      font-size: clamp(34px, 5vw, 56px);
-      line-height: 1.06;
-      letter-spacing: -0.04em;
-      margin: 16px 0;
-      max-width: 760px;
-    }
-    .hero p {
-      max-width: 720px;
-      color: var(--muted);
-      font-size: 18px;
-    }
-    .signal-row {
-      display: flex;
-      flex-wrap: wrap;
-      gap: 12px;
-      margin: 28px 0 0;
-    }
-    .signal-pill {
-      display: inline-flex;
-      align-items: center;
-      gap: 8px;
-      padding: 10px 14px;
-      border-radius: 999px;
-      border: 1px solid var(--line);
-      background: var(--bg-raised);
-      font-weight: 600;
-      font-size: 14px;
-    }
-    .signal-pill.up {
-      border-color: rgba(74, 222, 128, 0.28);
-      color: #b8f7c8;
-      background: rgba(74, 222, 128, 0.1);
-    }
-    .signal-pill.down {
-      border-color: rgba(248, 113, 113, 0.28);
-      color: #ffc0c0;
-      background: rgba(248, 113, 113, 0.1);
-    }
-    .grid {
-      display: grid;
-      grid-template-columns: minmax(0, 2fr) minmax(280px, 1fr);
-      gap: 24px;
-      padding-bottom: 72px;
-    }
-    .card, .detail-section, .sidebar-card {
-      background: var(--bg-card);
-      border: 1px solid var(--line);
-      border-radius: 16px;
-    }
-    .card { padding: 24px; }
-    .detail-section { padding: 24px; margin-bottom: 18px; }
-    .detail-section h2 { margin: 0 0 12px; font-size: 24px; letter-spacing: -0.03em; }
-    .detail-section p { color: var(--muted); }
-    .detail-section ul, .card ul { padding-left: 18px; color: var(--muted); }
-    .card h2 { margin-top: 0; }
-    .sidebar {
-      display: flex;
-      flex-direction: column;
-      gap: 18px;
-    }
-    .sidebar-card {
-      padding: 20px;
-    }
-    /* Only the first sidebar card sticks. Stacking multiple stickies at the
-       same top offset makes them overlap each other on scroll. The related-
-       pages card flows normally below. */
-    .sidebar-card:first-child {
-      position: sticky;
-      top: 84px;
-      max-height: calc(100vh - 104px);
-      overflow-y: auto;
-      -webkit-overflow-scrolling: touch;
-    }
-    .proof-links {
-      display: flex;
-      flex-wrap: wrap;
-      gap: 12px;
-      margin-top: 16px;
-    }
-    .cta-button {
-      display: inline-flex;
-      align-items: center;
-      justify-content: center;
-      margin-top: 18px;
-      padding: 12px 16px;
-      border-radius: 10px;
-      background: var(--cyan);
-      color: #071116;
-      font-weight: 700;
-      text-decoration: none;
-    }
-    .faq-item {
-      border-top: 1px solid var(--line);
-      padding: 14px 0;
-    }
-    .faq-item summary {
-      cursor: pointer;
-      font-weight: 600;
-    }
-    .faq-item p {
-      color: var(--muted);
-    }
-    .related-card {
-      display: block;
-      padding: 14px;
-      border-radius: 12px;
-      border: 1px solid var(--line);
-      background: var(--bg-raised);
-      margin-top: 12px;
-      color: var(--text);
-    }
-    .related-label {
-      display: block;
-      color: var(--muted);
-      font-size: 12px;
-      text-transform: uppercase;
-      letter-spacing: 0.08em;
-      margin-bottom: 4px;
-    }
-    @media (max-width: 860px) {
-      .grid {
-        grid-template-columns: 1fr;
-      }
-      .sidebar-card:first-child {
-        position: static;
-        max-height: none;
-        overflow: visible;
-      }
-    }
-  </style>
-  <script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "Stop AI Assistants From Amplifying Supply-Chain Attacks.",
-  "description": "Developer laptops and CI runners hold tokens, package-manager trust, and one-shot CLI install paths. ThumbGate turns that local execution risk into pre-actio...",
-  "about": [
-    "claude code masterclass guardrails",
-    "cursor prevent repeated mistakes",
-    "claude code prevent repeated mistakes",
-    "codex cli guardrails"
-  ],
-  "url": "https://thumbgate.ai/guides/developer-machine-supply-chain-guardrails",
-  "publisher": {
-    "@type": "Organization",
-    "name": "ThumbGate",
-    "url": "https://thumbgate.ai"
-  },
-  "mainEntityOfPage": "https://thumbgate.ai/guides/developer-machine-supply-chain-guardrails"
-}
-  </script>
-  <script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "FAQPage",
-  "mainEntity": [
-    {
-      "@type": "Question",
-      "name": "Does ThumbGate replace secrets scanning?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "No. Secrets scanners tell you what leaked. ThumbGate blocks or checkpoints the agent behavior that can create or amplify the leak before execution."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Which supply-chain gate should teams enable first?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Start with one-shot CLI installers and package lifecycle scripts because those paths can execute before a human sees the diff."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "Can this work with existing incident-response tools?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Yes. Use scanner, EDR, and incident-response findings as evidence, then turn the repeated local action pattern into a ThumbGate pre-action rule."
-      }
-    }
-  ]
-}
-  </script>
-</head>
-<body>
-  <div class="topbar">
-    <div class="container">
-      <a class="brand" href="/"><img src="/assets/brand/thumbgate-mark-inline.svg" alt="ThumbGate" class="logo-mark" width="28" height="28"><span class="logo-text">ThumbGate</span></a>
-      <a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/docs/VERIFICATION_EVIDENCE.md" target="_blank" rel="noopener">Verification evidence</a>
-    </div>
-  </div>
-
-  <main class="container">
-    <section class="hero">
-      <div class="eyebrow">guide | developer machine supply chain guardrails</div>
-      <h1>Stop AI Assistants From Amplifying Supply-Chain Attacks.</h1>
-      <p>Developer laptops and CI runners hold tokens, package-manager trust, and one-shot CLI install paths. ThumbGate turns that local execution risk into pre-action gates before an agent runs npm, PyPI, Docker, or shell commands that can expose credentials.</p>
-      <div class="signal-row">
-        <div class="signal-pill up">👍 Thumbs up reinforces good behavior</div>
-        <div class="signal-pill down">👎 Thumbs down blocks repeated mistakes</div>
-      </div>
-    </section>
-
-    <section class="grid">
-      <div>
-        <div class="card">
-          <h2>Why this page exists</h2>
-          <ul><li>Secrets scanners find leaks; ThumbGate blocks the agent behavior that creates or amplifies them.</li><li>Supply Chain Safety templates should start with package lifecycle scripts, untrusted one-shot CLI installers, dependency autofixes, and credential exposure assessment.</li><li>This is complementary to GitGuardian, endpoint security, and incident response because it governs the next local action.</li></ul>
-        </div>
-
-      <section class="detail-section">
-        <h2>Why developer machines are now the blast radius</h2>
-        <p>A compromised package does not need to break production directly. It can read .env, .npmrc, .pypirc, Docker config, SSH keys, and cloud tokens while an AI coding assistant repeats the trusted-looking command across more repos.</p><p>The high-ROI control is local and specific: detect risky execution before it runs, require review where exposure is plausible, and promote every missed incident into a durable ThumbGate rule.</p>
-
-      </section>
-      <section class="detail-section">
-        <h2>High-ROI gate templates</h2>
-
-        <ul><li>Block package lifecycle secret harvest: stop install, postinstall, prepare, and similar scripts from reading local credential surfaces.</li><li>Review untrusted CLI before execution: block curl-to-shell flows, unknown npx commands, uvx, and pipx run until the source and permissions are reviewed.</li><li>Checkpoint dependency bot autofix: warn before Dependabot, Renovate, audit-fix, Docker pull, or broad package updates expand the trusted code surface.</li><li>Require credential exposure assessment: force an answer about what credential lived where, what executed, and whether rotation is required.</li></ul>
-      </section>
-      <section class="detail-section">
-        <h2>Where this creates revenue</h2>
-        <p>This is a strong security wedge for teams that already run scanners but still let agents execute local install/update commands. The offer is not &quot;replace your scanner&quot;; it is &quot;connect scanner and incident lessons to pre-action enforcement.&quot;</p><p>For the Workflow Hardening Sprint, pick one concrete local-risk pattern: package lifecycle scripts, one-shot installers, dependency bot autofixes, or unresolved credential exposure after a suspected compromise.</p>
-
-      </section>
-        <div class="detail-section">
-          <h2>FAQ</h2>
-
-      <details class="faq-item">
-        <summary>Does ThumbGate replace secrets scanning?</summary>
-        <p>No. Secrets scanners tell you what leaked. ThumbGate blocks or checkpoints the agent behavior that can create or amplify the leak before execution.</p>
-      </details>
-      <details class="faq-item">
-        <summary>Which supply-chain gate should teams enable first?</summary>
-        <p>Start with one-shot CLI installers and package lifecycle scripts because those paths can execute before a human sees the diff.</p>
-      </details>
-      <details class="faq-item">
-        <summary>Can this work with existing incident-response tools?</summary>
-        <p>Yes. Use scanner, EDR, and incident-response findings as evidence, then turn the repeated local action pattern into a ThumbGate pre-action rule.</p>
-      </details>
-        </div>
-      </div>
-
-      <aside class="sidebar">
-
-
-
-
-        <div class="sidebar-card">
-          <h2>GSD execution brief</h2>
-          <p>This page was prioritized because it captures high-intent demand around developer machine supply chain guardrails and feeds directly into ThumbGate's proof-led conversion path.</p>
-          <p><strong>Opportunity score:</strong> 83</p>
-          <p><strong>Primary persona:</strong> engineering-lead</p>
-          <p><strong>Keyword cluster:</strong> claude code masterclass guardrails, cursor prevent repeated mistakes, claude code prevent repeated mistakes, codex cli guardrails</p>
-          <p><strong>Pricing:</strong> Pro $19/mo or $149/yr. Team $49/seat/mo.</p>
-          <div class="proof-links"><a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/docs/VERIFICATION_EVIDENCE.md" target="_blank" rel="noopener">Verification evidence</a><a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/proof/automation/report.json" target="_blank" rel="noopener">Automation proof</a><a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub repository</a></div>
-          <a class="cta-button" href="/checkout/pro?utm_source=website&amp;utm_medium=seo_page&amp;utm_campaign=guides_developer-machine-supply-chain-guardrails&amp;cta_placement=seo_brief&amp;plan_id=pro" target="_blank" rel="noopener">Go Pro — $19/mo</a>
-        </div>
-        <div class="sidebar-card">
-          <h2>Related pages</h2>
-
-        <a class="related-card" href="/guides/pre-action-checks">
-          <span class="related-label">Related page</span>
-          <strong>What Are Pre-Action Checks?</strong>
-        </a>
-        <a class="related-card" href="/guides/code-knowledge-graph-guardrails">
-          <span class="related-label">Related page</span>
-          <strong>Code Graphs Are Context. ThumbGate Is Execution Control.</strong>
-        </a>
-        <a class="related-card" href="/guides/best-tools-stop-ai-agents-breaking-production">
-          <span class="related-label">Related page</span>
-          <strong>Best Tools to Stop AI Agents From Breaking Production</strong>
-        </a>
-        </div>
-      </aside>
-    </section>
-  </main>
-</body>
-</html>

package/public/guides/gcp-mcp-guardrails.html

@@ -1,147 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-  <meta charset="UTF-8" />
-  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-  <title>BigQuery, Spanner, AlloyDB Agent Guardrails: Gating Google's Agentic Data Cloud MCP Calls</title>
-  <meta name="description" content="Google's Agentic Data Cloud exposes BigQuery, Spanner, AlloyDB, and Cloud SQL as MCP tool calls that any agent can trigger. IAM does not know what you thumbs-down'd last week. ThumbGate's local lesson DB does." />
-  <meta property="og:title" content="BigQuery, Spanner, AlloyDB Agent Guardrails: Gating Google's Agentic Data Cloud MCP Calls" />
-  <meta property="og:description" content="Google's Agentic Data Cloud exposes BigQuery, Spanner, AlloyDB, and Cloud SQL as MCP tool calls that any agent can trigger. IAM does not know what you thumbs-down'd last week. ThumbGate's local lesson DB does." />
-  <meta property="og:type" content="article" />
-  <meta property="og:url" content="https://thumbgate.ai/guides/gcp-mcp-guardrails" />
-  <link rel="canonical" href="https://thumbgate.ai/guides/gcp-mcp-guardrails" />
-  <link rel="llm-context" href="/llm-context.md" type="text/markdown" />
-  <link rel="icon" type="image/svg+xml" href="/thumbgate-icon.png" />
-  <link rel="apple-touch-icon" href="/assets/brand/thumbgate-mark.svg" />
-  <meta property="og:image" content="/og.png" />
-  <script type="application/ld+json">
-  {
-    "@context": "https://schema.org",
-    "@type": "TechArticle",
-    "headline": "BigQuery, Spanner, AlloyDB Agent Guardrails: Gating Google's Agentic Data Cloud MCP Calls",
-    "description": "Google's Agentic Data Cloud exposes BigQuery, Spanner, AlloyDB, and Cloud SQL as MCP tool calls that any agent can trigger. IAM does not know what you thumbs-down'd last week. ThumbGate's local lesson DB does.",
-    "author": { "@type": "Person", "name": "Igor Ganapolsky", "url": "https://github.com/IgorGanapolsky" },
-    "publisher": { "@type": "Organization", "name": "ThumbGate", "url": "https://thumbgate.ai" },
-    "datePublished": "2026-04-22",
-    "dateModified": "2026-04-22",
-    "mainEntityOfPage": "https://thumbgate.ai/guides/gcp-mcp-guardrails"
-  }
-  </script>
-  <style>
-    :root { --bg: #0a0a0b; --bg-raised: #111113; --bg-card: #161618; --line: #222225; --text: #e8e8ec; --muted: #8b8b96; --cyan: #22d3ee; --green: #4ade80; --red: #f87171; }
-    * { box-sizing: border-box; }
-    body { margin: 0; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif; background: var(--bg); color: var(--text); line-height: 1.65; }
-    a { color: var(--cyan); text-decoration: none; } a:hover { text-decoration: underline; }
-    .container { max-width: 820px; margin: 0 auto; padding: 0 24px; }
-    .topbar { position: sticky; top: 0; z-index: 20; backdrop-filter: blur(12px); background: rgba(10,10,11,0.88); border-bottom: 1px solid var(--line); }
-    .topbar .container { display: flex; justify-content: space-between; align-items: center; padding: 14px 24px; }
-    .brand { font-weight: 700; color: var(--text); text-decoration: none; }
-    h1 { font-size: clamp(30px, 5vw, 46px); line-height: 1.15; margin: 40px 0 16px; }
-    h2 { font-size: 24px; margin: 36px 0 12px; color: var(--cyan); }
-    h3 { font-size: 18px; margin: 24px 0 8px; }
-    p, li { font-size: 17px; color: var(--text); }
-    .muted { color: var(--muted); }
-    code, pre { font-family: ui-monospace, SFMono-Regular, Menlo, monospace; font-size: 14px; }
-    pre { background: var(--bg-card); border: 1px solid var(--line); border-radius: 10px; padding: 16px; overflow-x: auto; }
-    code.inline { background: var(--bg-card); padding: 2px 6px; border-radius: 4px; color: var(--cyan); }
-    .eyebrow { display: inline-block; padding: 6px 12px; border-radius: 999px; border: 1px solid rgba(34,211,238,0.22); background: rgba(34,211,238,0.1); color: var(--cyan); text-transform: uppercase; letter-spacing: 0.08em; font-size: 12px; font-weight: 700; }
-    .cta { display: inline-block; background: var(--cyan); color: #000; padding: 14px 22px; border-radius: 10px; font-weight: 700; margin: 24px 0; }
-    article { padding: 24px 0 80px; }
-    footer { border-top: 1px solid var(--line); padding: 32px 0; color: var(--muted); font-size: 14px; }
-  </style>
-</head>
-<body>
-  <header class="topbar">
-    <div class="container">
-      <a class="brand" href="/">ThumbGate</a>
-      <nav><a href="/guides/">Guides</a> · <a href="https://github.com/IgorGanapolsky/ThumbGate">GitHub</a></nav>
-    </div>
-  </header>
-
-  <main class="container">
-    <article>
-      <span class="eyebrow">Cloud Next 2026</span>
-      <h1>BigQuery, Spanner, AlloyDB Agent Guardrails: Gating Google's Agentic Data Cloud MCP Calls</h1>
-      <p class="muted">Google Cloud Next 2026 shipped the Agentic Data Cloud: BigQuery, Spanner, AlloyDB, Cloud SQL, and Looker are all exposed as MCP tool calls, and the Data Agent Kit drops those tools into Claude Code, Codex, Gemini CLI, and VS Code on day one. Existing IAM policies gate who can call what. They do not gate what your agent already learned not to do.</p>
-
-      <h2>What changed on April 22, 2026</h2>
-      <p>Google announced the Agentic Data Cloud at Cloud Next. Three pieces matter for anyone running an AI coding agent:</p>
-      <ul>
-        <li><strong>Knowledge Catalog remote MCP</strong> — semantic metadata for every table, column, and warehouse surface, exposed through an MCP server.</li>
-        <li><strong>Core-engine MCP</strong> — BigQuery, Spanner, AlloyDB, and Cloud SQL each speak MCP directly. Your agent can query, mutate, and describe tables through a standard tool-call wire.</li>
-        <li><strong>Data Agent Kit</strong> — a portable set of MCP tools and IDE extensions that drop into VS Code, Claude Code, Gemini CLI, and Codex.</li>
-      </ul>
-      <p>Net effect: every schema is now a surface your agent can call. The blast radius of a single bad tool call just grew by the width of your cloud warehouse.</p>
-
-      <h2>Why IAM is not the answer</h2>
-      <p>IAM and VPC Service Controls gate <em>who</em> can call an operation. They do not gate <em>what you already taught your agent not to do.</em> An agent running under a service account with <code class="inline">bigquery.tables.delete</code> has permission to drop the table. IAM will not stop it. Your "don't drop prod tables" thumbs-down from last Tuesday lives in a lesson, not a role.</p>
-      <p>The role-based layer and the feedback-based layer are orthogonal. IAM protects the tenant. ThumbGate protects the session.</p>
-
-      <h2>What ThumbGate gates at the MCP boundary</h2>
-      <p>ThumbGate runs as an MCP server next to your agent and maintains a local SQLite lesson database at <code class="inline">.thumbgate/memory.sqlite</code>. Every thumbs-down becomes a row. On every subsequent tool call, ThumbGate's <code class="inline">gate_check</code> intercepts the proposed call and blocks known-bad patterns before execution. For Google's Agentic Data Cloud surfaces, the high-value patterns are:</p>
-      <ul>
-        <li><strong>BigQuery destructive DDL</strong> — <code class="inline">DROP TABLE</code>, <code class="inline">DROP DATASET</code>, <code class="inline">TRUNCATE TABLE</code>, <code class="inline">ALTER TABLE ... DROP COLUMN</code> on any dataset matching <code class="inline">prod_*</code>.</li>
-        <li><strong>BigQuery unscoped DML</strong> — <code class="inline">DELETE FROM &lt;table&gt; WHERE 1=1</code>, <code class="inline">UPDATE</code> without a <code class="inline">WHERE</code>, any mutation whose predicate did not match the previous <code class="inline">SELECT COUNT(*)</code>.</li>
-        <li><strong>Spanner schema mutations</strong> — <code class="inline">DROP TABLE</code>, <code class="inline">DROP INDEX</code>, schema change DDL on labeled-prod instances.</li>
-        <li><strong>AlloyDB / Cloud SQL</strong> — <code class="inline">TRUNCATE</code>, unscoped <code class="inline">DELETE</code>, extension drops, <code class="inline">gcloud sql instances delete</code>, <code class="inline">gcloud sql instances patch ... --no-backup</code>.</li>
-        <li><strong>IAM escalation</strong> — <code class="inline">gcloud projects add-iam-policy-binding</code> granting <code class="inline">roles/owner</code> or <code class="inline">roles/iam.serviceAccountTokenCreator</code> from an agent session.</li>
-      </ul>
-
-      <h2>Install alongside your Google Cloud agent</h2>
-      <p>The Data Agent Kit ships into Claude Code, Codex, Gemini CLI, and VS Code — every one of those is a first-class ThumbGate-supported agent. One install per agent:</p>
-      <pre><code># Claude Code (most common path for BigQuery work)
-npx thumbgate init --agent claude-code
-
-# Codex
-npx thumbgate init --agent codex
-
-# Gemini CLI
-npx thumbgate init --agent gemini</code></pre>
-      <p>The installer writes the MCP server config, wires the PreToolUse hook, creates <code class="inline">.thumbgate/memory.sqlite</code>, and prints every file it touched so you can roll back.</p>
-
-      <h2>Zero-Friction Enterprise Vertex AI Setup</h2>
-      <p>For enterprise teams, configure ThumbGate to route checks securely through Vertex AI using compliant Gemini models inside your corporate VPC with zero friction:</p>
-      <pre><code>npx thumbgate setup-vertex</code></pre>
-      <p>This automatically detects your active gcloud session, enables the Vertex AI API in your project, and writes the secure credentials to your local <code>.env</code> file. No manual console configurations required.</p>
-
-      <h2>Teach it a BigQuery lesson</h2>
-      <p>The first time your agent proposes <code class="inline">DROP TABLE prod_events</code>, capture the thumbs-down with zero friction:</p>
-      <pre><code>npx thumbgate capture down "destructive DDL on a prod BigQuery table" "require explicit confirmation before any DROP on prod_* datasets" --tags="bigquery,ddl,prod"</code></pre>
-      <p>Every future agent session — Claude Code, Codex, Gemini CLI, tomorrow morning's autopilot run — now checks this lesson against proposed tool calls before firing them.</p>
-
-      <h2>Knowledge Catalog vs. ThumbGate memory</h2>
-      <p>Google's Knowledge Catalog and the Agent Platform Memory Bank are different memory classes from ThumbGate's lesson DB:</p>
-      <ul>
-        <li><strong>Knowledge Catalog</strong> — semantic metadata about your data. "This column is PII, this table holds transactions."</li>
-        <li><strong>Memory Bank</strong> — conversational recall for the agent. "The user prefers Python over SQL."</li>
-        <li><strong>ThumbGate lesson DB</strong> — tool-call behavior memory. "Never <code class="inline">DROP TABLE</code> on prod after last Tuesday's thumbs-down."</li>
-      </ul>
-      <p>All three coexist. None replaces the others.</p>
-
-      <a class="cta" href="https://github.com/IgorGanapolsky/ThumbGate">Install ThumbGate →</a>
-
-      <h2>FAQ</h2>
-      <h3>Does ThumbGate need a separate "Google" adapter?</h3>
-      <p>No. The Data Agent Kit drops into Claude Code, Codex, Gemini CLI, and VS Code, all of which are first-class ThumbGate-supported agents. Install ThumbGate against your CLI of choice and the gate runs against every MCP call — including the ones Google just added.</p>
-
-      <h3>Does the gate add latency on BigQuery queries?</h3>
-      <p>The gate reads a local SQLite row and runs a pattern match. Typical overhead is under 5 ms per proposed tool call, measured against an empty warm cache. Your BigQuery query itself is still bounded by Google's SLA, not ours.</p>
-
-      <h3>What happens on an autopilot / scheduled run?</h3>
-      <p>The gate runs on every tool call regardless of origin. Whether Claude Code fired it from your terminal, an autopilot job triggered it at 9am, or Gemini CLI ran it from a CI hook — the PreToolUse hook still checks the lesson DB first.</p>
-
-      <h3>Does ThumbGate send my query text to any external service?</h3>
-      <p>No. The lesson DB is local SQLite. The gate check is local. No outbound network call is required for enforcement.</p>
-
-      <h3>Can I use ThumbGate with Google's Agent Platform (managed agents)?</h3>
-      <p>ThumbGate gates tool calls at the agent process that speaks MCP. For managed Agent Platform agents that run inside Google, the equivalent enforcement lives in IAM and VPC Service Controls. ThumbGate is the local-development and self-hosted companion — run it wherever your agent's process is under your control.</p>
-    </article>
-  </main>
-
-  <footer>
-    <div class="container">
-      <p>ThumbGate — pre-action checks for AI coding agents. <a href="https://github.com/IgorGanapolsky/ThumbGate">GitHub</a> · <a href="/">Home</a></p>
-    </div>
-  </footer>
-</body>
-</html>