CodeAlive-AI
diff --git a/‎.github/ISSUE_TEMPLATE/bug_report.yml‎
Lines changed: 58 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/bug_report.yml‎
Lines changed: 58 additions & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 5 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/feature_request.yml‎
Lines changed: 26 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/feature_request.yml‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎.github/pull_request_template.md‎
Lines changed: 18 additions & 0 deletions b/‎.github/pull_request_template.md‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 39 additions & 0 deletions b/‎.github/workflows/ci.yml‎
Lines changed: 39 additions & 0 deletions
diff --git a/‎.gitignore‎
Lines changed: 8 additions & 0 deletions b/‎.gitignore‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎AGENTS.md‎
Lines changed: 19 additions & 19 deletions b/‎AGENTS.md‎
Lines changed: 19 additions & 19 deletions
diff --git a/‎CODE_OF_CONDUCT.md‎
Lines changed: 29 additions & 0 deletions b/‎CODE_OF_CONDUCT.md‎
Lines changed: 29 additions & 0 deletions
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 2 additions & 2 deletions b/‎CONTRIBUTING.md‎
Lines changed: 2 additions & 2 deletions
@@ -0,0 +1,58 @@
+name: Bug report
+description: Report a reproducible defect using synthetic data only.
+title: "[Bug]: "
+labels: ["bug"]
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Do not include real secrets, provider tokens, private keys, Keychain contents, Bitwarden item data, shell environment dumps, or secret-derived logs.
+  - type: textarea
+    id: summary
+    attributes:
+      label: Summary
+      description: What happened?
+    validations:
+      required: true
+  - type: textarea
+    id: steps
+    attributes:
+      label: Reproduction Steps
+      description: Use synthetic placeholder values only.
+      placeholder: |
+        1. ...
+        2. ...
+        3. ...
+    validations:
+      required: true
+  - type: textarea
+    id: expected
+    attributes:
+      label: Expected Behavior
+    validations:
+      required: true
+  - type: textarea
+    id: actual
+    attributes:
+      label: Actual Behavior
+    validations:
+      required: true
+  - type: input
+    id: macos
+    attributes:
+      label: macOS Version
+      placeholder: "26.x"
+    validations:
+      required: true
+  - type: input
+    id: swift
+    attributes:
+      label: Swift / Xcode Version
+      placeholder: "swift --version; xcodebuild -version"
+  - type: checkboxes
+    id: secret-check
+    attributes:
+      label: Secret Handling Check
+      options:
+        - label: I have not included real secrets, tokens, private keys, or secret-derived logs.
+          required: true
@@ -0,0 +1,5 @@
+blank_issues_enabled: false
+contact_links:
+  - name: Security vulnerability
+    url: https://github.com/CodeAlive-AI/agentic-secrets/security/advisories/new
+    about: Report vulnerabilities privately. Do not open public issues for vulnerability details.
@@ -0,0 +1,26 @@
+name: Feature request
+description: Propose a change to Agentic Secrets behavior or documentation.
+title: "[Feature]: "
+labels: ["enhancement"]
+body:
+  - type: textarea
+    id: problem
+    attributes:
+      label: Problem
+      description: What user or maintainer problem should this solve?
+    validations:
+      required: true
+  - type: textarea
+    id: proposal
+    attributes:
+      label: Proposal
+      description: What should Agentic Secrets do differently?
+    validations:
+      required: true
+  - type: textarea
+    id: security
+    attributes:
+      label: Security Impact
+      description: How does this affect secret delivery, local authentication, audit, grants, policy, or provider bindings?
+    validations:
+      required: true
@@ -0,0 +1,18 @@
+## Summary
+
+- 
+
+## Verification
+
+- [ ] `swift build`
+- [ ] `swift run agentic-secrets-contract-tests`
+- [ ] `./script/ui_smoke.sh`
+- [ ] `./scripts/ci.sh`
+- [ ] `./scripts/tahoe_compatibility_check.sh`
+- [ ] `./scripts/check_secret_authority.sh`
+- [ ] `git diff --check`
+
+## Security Notes
+
+- [ ] This change does not add real secrets, tokens, private keys, credential files, or secret-derived logs.
+- [ ] Any secret-handling behavior change is documented in the PR description.
@@ -0,0 +1,39 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+permissions:
+  contents: read
+
+concurrency:
+  group: ci-${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  build:
+    name: SwiftPM and release gates
+    runs-on: macos-26
+    timeout-minutes: 30
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Toolchain
+        run: |
+          sw_vers
+          xcodebuild -version
+          swift --version
+
+      - name: Whitespace check
+        run: git diff --check
+
+      - name: CI gates
+        run: ./scripts/ci.sh
+
+      - name: Tahoe compatibility
+        run: ./scripts/tahoe_compatibility_check.sh
@@ -4,3 +4,11 @@
 DerivedData/
 build/
 dist/
+.env
+.env.*
+*.p12
+*.mobileprovision
+*.xcarchive
+*.log
+!.github/**/*.yml
+!.github/**/*.yaml
@@ -1,4 +1,4 @@
-# AgenticFortress Agent Notes
+# Agentic Secrets Agent Notes
 
 This file is for coding agents and maintainers working in this repository. Keep user-facing onboarding short in `README.md`; put implementation, verification, and release workflow details here or in `Docs/`.
 
@@ -8,7 +8,7 @@ Current release metadata: `0.1.0 alpha`. This is a pre-stable product; breaking
 
 ## Product Boundary
 
-AgenticFortress is a macOS lower-leakage secret delivery system for developer machines.
+Agentic Secrets is a macOS lower-leakage secret delivery system for developer machines.
 
 It does not make execution safe. It makes delivery of secrets explicit, narrow, approved, bounded, auditable, and lower-leakage than `.env`, shell environment, MCP configs, or plaintext provider tokens.
 
@@ -40,26 +40,26 @@ UI changes must preserve native macOS expectations:
 
 ## Implemented Delivery Contracts
 
-- Signed shim model through one `agentic-fortress-shim` binary and symlink-style invocation.
-- CLI env delivery with signed/versioned dynamic command adapter packs and deterministic decision manifests.
-- Local API proxy profiles with per-session localhost capability tokens.
-- BWS provider split where runtime fetch is one approved secret per invocation.
+- Signed shim model through one `agentic-secrets-shim` binary and symlink-style invocation.
+- CLI env delivery with signed/versioned dynamic command command policy packs and deterministic decision manifests.
+- Local API API session profiles with per-session localhost capability tokens.
+- Bitwarden provider split where runtime fetch is one approved secret per invocation.
 - Remote MCP bridge contracts with pinned upstream profile and session propagation.
 - Rollback detection that locks policy use and clears remembered leases.
 - Structured audit with redaction gates.
 - Release gate checklist backed by executable contract tests.
 
 Adapter packs are dynamic but not trust-by-configuration. External packs must verify under a trusted P-256 signing key, publisher allowlist, CLI allowlist, schema version, expiry, rule validation, and rollback checks before registration. Lease scope includes adapter identity, version, and hash.
 
-Runtime policy is configurable through `AgenticFortressConfig`; the default JSON lives at `config/default.agentic-fortress.json`. Configuration covers adapter trust, delivery defaults, proxy profiles, MCP profiles, and macOS compatibility gates.
+Runtime policy is configurable through `AgenticSecretsConfiguration`; the default JSON lives at `config/default.agentic-secrets.json`. Configuration covers adapter trust, delivery defaults, API session profiles, MCP profiles, and macOS compatibility gates.
 
 ## Build And Verify
 
 Run the standard gates before presenting a production-ready change:
 
 ```sh
 swift build
-swift run agentic-fortress-contract-tests
+swift run agentic-secrets-contract-tests
 ./script/ui_smoke.sh
 ./script/build_and_run.sh --verify
 ./scripts/ci.sh
@@ -75,9 +75,9 @@ Package manually:
 
 ```sh
 ./scripts/package_release.sh
-./scripts/validate_release_artifact.sh build/AgenticFortress.app
-./scripts/check_entitlements_diff.sh build/AgenticFortress.app
-codesign --verify --strict --deep --verbose=4 build/AgenticFortress.app
+./scripts/validate_release_artifact.sh "build/AgenticSecrets.app"
+./scripts/check_entitlements_diff.sh "build/AgenticSecrets.app"
+codesign --verify --strict --deep --verbose=4 "build/AgenticSecrets.app"
 ```
 
 Recommended local install:
@@ -90,32 +90,32 @@ Native guided install:
 
 ```sh
 ./scripts/package_release.sh
-open build/AgenticFortress.app
+open "build/AgenticSecrets.app"
 ```
 
 Then use **Diagnostics → Install Local Daemon** or **Diagnostics → Repair Local Daemon**. The app shows the app copy, helper symlinks, state directory, run directory, install manifest, LaunchAgent, and socket path before writing files. It does not read or move local secret material. If the app was launched from `build/`, open the installed copy after installation so authenticated IPC matches the installed bundle path in the manifest.
 
 Uninstall while keeping local secret state:
 
 ```sh
-./scripts/uninstall_local.sh --prefix "$HOME/Library/Application Support/AgenticFortress/LocalInstall" --keep-secrets
+./scripts/uninstall_local.sh --prefix "$HOME/Library/Application Support/AgenticSecrets/LocalInstall" --keep-secrets
 ```
 
 The local installer writes an install manifest with helper paths, owners, permissions, versions, SHA-256 hashes, and cdhash values. Runtime IPC authorization uses that manifest instead of requiring a Developer ID Team ID.
 
-The core daemon serves the local control plane over a Unix domain socket. Helpers authenticate to core with the install manifest and do not read local secret material directly.
+The broker daemon serves the local control plane over a Unix domain socket. Helpers authenticate to core with the install manifest and do not read local secret material directly.
 
-On macOS Tahoe, the self-build track avoids restricted entitlements so ad-hoc signed binaries can execute normally. The core daemon stores local secret material in an owner-only encrypted file store gated by LocalAuthentication; no shared Keychain access group is required for the self-build track. Registered CLI trust metadata is protected by a device-local macOS Keychain integrity key so hand-edited registry files fail closed before any secret is resolved.
+On macOS Tahoe, the self-build track avoids restricted entitlements so ad-hoc signed binaries can execute normally. The broker daemon stores local secret material in an owner-only encrypted file store gated by LocalAuthentication; no shared Keychain access group is required for the self-build track. Registered CLI trust metadata is protected by a device-local macOS Keychain integrity key so hand-edited registry files fail closed before any secret is resolved.
 
 CLI runs may reuse scoped authorization grants after successful LocalAuthentication. The default mode is `always`; `remember-24h`, `short`, and `once` are available per run. Persistent grants are signed with a device-local macOS Keychain key and scoped to CLI name, target identity, workspace hash, config context, untrusted origin hint, provenance confidence, delivery mode, and secret alias. Short grants additionally include action class, command digest, and risk. Command policy is re-evaluated before every secret delivery, and destructive commands require fresh approval. Grants must never contain secret values.
 
 ## Release Evidence
 
 ```sh
-swift run agentic-fortress release-gates
-swift run agentic-fortress ipc-conformance
+swift run agentic-secrets release-gates
+swift run agentic-secrets ipc-conformance
 ./scripts/check_secret_authority.sh
-./scripts/check_entitlements_diff.sh build/AgenticFortress.app
+./scripts/check_entitlements_diff.sh "build/AgenticSecrets.app"
 ./scripts/create_release_evidence.sh
 ```
 
@@ -125,7 +125,7 @@ Optional future maintainer distribution signing and notarization:
 
 ```sh
 CODESIGN_IDENTITY="Developer ID Application: ..." \
-NOTARYTOOL_PROFILE="agentic-fortress-notary" \
+NOTARYTOOL_PROFILE="agentic-secrets-notary" \
 ./scripts/sign_notarize_release.sh
 ```
 
 
@@ -0,0 +1,29 @@
+# Code of Conduct
+
+This project follows the Contributor Covenant Code of Conduct, version 2.1.
+
+## Our Pledge
+
+We pledge to make participation in this project a respectful, harassment-free experience for everyone.
+
+## Expected Behavior
+
+- Use welcoming and inclusive language.
+- Respect differing viewpoints and experience levels.
+- Give and receive constructive technical feedback.
+- Focus on what is best for the project and its users.
+- Handle security-sensitive topics carefully and privately.
+
+## Unacceptable Behavior
+
+- Harassment, intimidation, threats, or personal attacks.
+- Sexualized language or imagery.
+- Trolling, insulting comments, or sustained disruption.
+- Publishing private information without explicit permission.
+- Publicly posting vulnerabilities, exploit details, credentials, tokens, private keys, or secret-derived logs.
+
+## Enforcement
+
+Maintainers may remove comments, issues, pull requests, or other contributions that violate this Code of Conduct. Maintainers may also temporarily or permanently limit participation for behavior they judge inappropriate, threatening, offensive, or harmful.
+
+Instances of abusive behavior may be reported through the repository maintainers. Security-sensitive reports should follow `SECURITY.md`.
@@ -1,6 +1,6 @@
 # Contributing
 
-Thanks for considering a contribution to AgenticFortress.
+Thanks for considering a contribution to Agentic Secrets.
 
 ## License
 
@@ -25,7 +25,7 @@ area you changed. The full local verification gate is:
 
 ```sh
 swift build
-swift run agentic-fortress-contract-tests
+swift run agentic-secrets-contract-tests
 ./script/ui_smoke.sh
 ./script/build_and_run.sh --verify
 ./scripts/ci.sh