Implemented (v1.9.0)
Core Engine
- SQLite-based persistent memory
- Local-only vector embeddings (zero egress)
- Tree-sitter AST-based code chunking
- Hybrid search (keyword + vector)
- Signed + checksummed
.agmctxexports - Zipped bundle support (
--zip) - Delta exports to reduce duplication (
--delta) - Provenance data in export manifests
- Zero-trust policy engine (command & path rules)
- Enforced signing (
forceSignedExports) - Time-scoped trust tokens for temporary bypass
- Full key lifecycle management (rotate, prune, etc.)
Transparency & Auditing
- Trace/plan/mirror flags for all commands
- Per-command JSON receipts with digests
- Append-only command journal (.jsonl)
- Verifiable zero-egress (
agm prove-offline)
- Database doctor (
db-doctor) for integrity checks - Health and vector status commands
- Garbage collection for stale data (
gc) - Robust regression test suite
Integrity: Import Exit Codes
| Code | Meaning |
|---|---|
| 0 | All verification passed |
| 2 | Unsigned bundle blocked (policy requires signature) |
| 3 | Invalid signature |
| 4 | Checksum mismatch (tamper/corrupt) |
Checksums are verified before signature to surface tamper early.
Quick Start
npm i -g antigoldfishmodeagm initagm index-code --path src --symbolsagm search-code "auth middleware" --hybrid --preview 3agm export-context --out ./ctx.agmctx --type code --zip --sign
See docs/airgapped.md for bundle format & verification details.
Roadmap (Post-1.9.0)
- High-performance ANN acceleration (Faiss, etc.)
- Import preview (merge/diff view)
- Point-in-time memory replay (time-travel)
- Multi-key signature verification (trust chain)
- Privacy-preserving usage nudges
These features are planned for future releases.
Upgrade to Pro (Honor-System)
Pro features are available via an honor-system sponsorship. They focus on advanced code analysis, workflow automation, and stricter security controls for professional and team environments.
| Pro Feature | Benefit |
|---|---|
| AST-Powered Code Indexing | Uses Tree-sitter for precise, syntax-aware chunking of code (TS/JS, Python, etc.). This provides far more accurate search results and context quality than the standard heuristic-based indexing. |
| Enforced Supply Chain Security | Set strict, non-bypassable policies like forceSignedExports (prevent unsigned code from leaving) and requireSignedContext (block untrusted imports). Essential for corporate and team environments. |
| Automated Signing Workflows | Enable signExports in your policy to make cryptographic signing the default behavior for all exports. Reduces friction and human error, improving security posture. |
Honor‑System Funding
All core capability is MIT‑licensed. No license checks, no telemetry, no crippled paths. Sponsorship funds maintenance, performance upgrades (Tree‑sitter & ANN), and better tooling (dashboards, diff preview). If it saves you time, consider supporting.
Verification & Docs
- SECURITY.md – zero‑egress posture & policy surface
- REPRODUCIBLE_BUILDS.md – build determinism notes
- Air‑gapped export/import
- Receipts schema
- Project README
Pull requests improving reproducibility, verification coverage, or docs are welcome.
What We Don't Do
- No cloud or hosted service layer
- No remote code execution features
- No usage tracking / analytics
- No gating of security features behind paywalls