Skip to main content

Principles

  1. Read-only. Oobo never writes to any AI tool’s data directories.
  2. Local by default. Everything stays in ~/.oobo/. Nothing leaves your machine unless you explicitly configure an endpoint.
  3. No telemetry. Oobo does not phone home, collect analytics, or send any data without explicit user action.
  4. Config protection. When API keys are present, config file permissions are set to 0600 (owner read/write only).

What oobo reads

Oobo reads local files from AI coding tools to discover sessions, extract conversations, and compute token stats. All reads are read-only.
ToolWhat’s readLocation
CursorSQLite databases, workspace state~/Library/Application Support/Cursor/, ~/.cursor/
Claude CodeJSONL session files~/.claude/projects/
Gemini CLIJSON session files~/.gemini/tmp/
OpenCodeSQLite database~/.local/share/opencode/
Codex CLISQLite + JSONL files~/.codex/
AiderMarkdown chat history{project}/.aider.chat.history.md
CopilotJSON session filesVS Code workspace storage
WindsurfProtobuf files (encrypted, metadata only)~/.codeium/windsurf/
ZedSQLite + JSONL telemetry~/Library/Application Support/Zed/
TraeVSCode state DB (metadata only)~/Library/Application Support/Trae/

What oobo writes

LocationWhatWhen
~/.oobo/db/oobo.dbSQLite database (sessions, projects, anchors, stats)Always
~/.oobo/config.tomlConfigurationOn oobo setup or config changes
.git/oobo-sessions/*.jsonActive session state filesDuring agent lifecycle hooks
oobo/anchors/v1 (orphan branch)Anchor metadata (always) + redacted transcripts (if transparency is on)On every intercepted commit (unless project is ignored)

Secret redaction

Before any session content leaves your machine (via oobo share or transparency on), all content is redacted:
  1. gitleaks (if installed): comprehensive secret detection using gitleaks patterns
  2. Regex fallback: catches API keys, tokens, passwords, AWS credentials, Bearer tokens
Secrets are replaced with [REDACTED].

Network requests

Oobo makes network requests only when you explicitly trigger them:
ActionDestinationData sent
oobo auth loginYour configured serverAPI key verification
Sync on commit (when enabled)POST /anchors/ingest on your serverAnchor metadata (commit, sessions, attribution)
oobo share (without --out)Your configured serverRedacted session content
oobo updateGitHub APIVersion check only
oobo auth anthropic/openai/... + oobo indexProvider APIsAPI key + usage query
No data is ever sent to any endpoint unless you explicitly enable sync (oobo sync on) and configure an API key.

Reporting vulnerabilities

Please report security vulnerabilities to security@oobo.ai or via GitHub Security Advisories. Do not report security vulnerabilities through public GitHub issues.