{
  "slug": "safe/desktop",
  "title": "Safe Desktop",
  "description": "How the planned Safe desktop app manages vaults, connector setup, reveal controls, and local audit review.",
  "url": "https://cuitty.com/docs/safe/desktop",
  "markdown_url": "https://cuitty.com/docs/safe/desktop.md",
  "json_url": "https://cuitty.com/docs/safe/desktop.json",
  "frontmatter": {
    "title": "Safe Desktop",
    "description": "How the planned Safe desktop app manages vaults, connector setup, reveal controls, and local audit review.",
    "order": 8,
    "section": "Safe",
    "updatedAt": "2026-06-09"
  },
  "headings": [
    {
      "depth": 1,
      "slug": "safe-desktop",
      "text": "Safe Desktop"
    },
    {
      "depth": 2,
      "slug": "views",
      "text": "Views"
    },
    {
      "depth": 2,
      "slug": "reveal-behavior",
      "text": "Reveal behavior"
    },
    {
      "depth": 2,
      "slug": "native-responsibilities",
      "text": "Native responsibilities"
    },
    {
      "depth": 2,
      "slug": "sharing-stub",
      "text": "Sharing stub"
    }
  ],
  "body_markdown": "# Safe Desktop\n\nThe Safe desktop app is the local control surface for vaults, connector setup, reveal workflows, and audit metadata.\n\nSuggested local ports:\n\n```text\nSafe web app: http://localhost:4360\nSafe API:     http://localhost:4361\n```\n\n## Views\n\n- Safe index grouped by account.\n- Safe detail for `account/safe`.\n- 1Password connector setup.\n- Persist adapter setup with alpha acknowledgement.\n- Local vault lock and unlock.\n- Inline encrypted envelope builder.\n- Scan findings and migration suggestions.\n- Metadata-only audit timeline.\n- Sharing stub panel.\n\n## Reveal behavior\n\nSecret values are hidden by default. Reveal mode must:\n\n- Require an explicit reveal action.\n- Show a countdown.\n- Record a metadata-only audit event.\n- Clear the value on timeout, blur, route change, or vault lock.\n- Keep copy reference separate from copy value.\n\n## Native responsibilities\n\nThe desktop backend may use a Rust crate for native keychain access, file locking, Tauri commands, local vault process isolation, and future secure enclave or keyring integrations.\n\n## Sharing stub\n\nSharing is reserved for a future Cuitty Auth grants integration. v0 can preview draft metadata, but it must not send invites, create cross-user decrypt grants, or expose invite links.",
  "body_html": "<h1 id=\"safe-desktop\">Safe Desktop</h1>\n<p>The Safe desktop app is the local control surface for vaults, connector setup, reveal workflows, and audit metadata.</p>\n<p>Suggested local ports:</p>\n<pre class=\"astro-code github-dark\" style=\"background-color:#24292e;color:#e1e4e8; overflow-x: auto;\" tabindex=\"0\" data-language=\"text\"><code><span class=\"line\"><span>Safe web app: http://localhost:4360</span></span>\n<span class=\"line\"><span>Safe API:     http://localhost:4361</span></span></code></pre>\n<h2 id=\"views\">Views</h2>\n<ul>\n<li>Safe index grouped by account.</li>\n<li>Safe detail for <code>account/safe</code>.</li>\n<li>1Password connector setup.</li>\n<li>Persist adapter setup with alpha acknowledgement.</li>\n<li>Local vault lock and unlock.</li>\n<li>Inline encrypted envelope builder.</li>\n<li>Scan findings and migration suggestions.</li>\n<li>Metadata-only audit timeline.</li>\n<li>Sharing stub panel.</li>\n</ul>\n<h2 id=\"reveal-behavior\">Reveal behavior</h2>\n<p>Secret values are hidden by default. Reveal mode must:</p>\n<ul>\n<li>Require an explicit reveal action.</li>\n<li>Show a countdown.</li>\n<li>Record a metadata-only audit event.</li>\n<li>Clear the value on timeout, blur, route change, or vault lock.</li>\n<li>Keep copy reference separate from copy value.</li>\n</ul>\n<h2 id=\"native-responsibilities\">Native responsibilities</h2>\n<p>The desktop backend may use a Rust crate for native keychain access, file locking, Tauri commands, local vault process isolation, and future secure enclave or keyring integrations.</p>\n<h2 id=\"sharing-stub\">Sharing stub</h2>\n<p>Sharing is reserved for a future Cuitty Auth grants integration. v0 can preview draft metadata, but it must not send invites, create cross-user decrypt grants, or expose invite links.</p>",
  "links_out": []
}