Show HN: An open-source,security first,local-first memory tool for AI assistants

I've been using AI coding assistants like Copilot and Claude a lot, but I constantly hit the limits of their context windows, forcing me to re-explain my code over and over. I also work on projects with sensitive IP, so sending code to a third-party service is a non-starter.

To solve this, I built AntiGoldfishMode: a CLI tool that gives your AI assistant a persistent, local-only memory of your codebase. There are enough cloud-based tools that solves some of the issues relating to AI persistent memory, but not a lot that combines all the features I have placed in AGM.

- Verifiable Zero-Egress - How to verify: Run agm prove-offline - Supply Chain Integrity for Shared Context: The .agmctx Bundle, Checksums First, Cryptographic Signature: An Ed25519 key pair (generated and stored locally in keys) is used to sign the SHA-256 hash of the concatenated checksums. This signature is stored in signature.bin. - Policy-Driven Operation - Transparent Auditing via Receipts and Journal. You should never have to wonder what the tool or your AI coding agent did. It is like a "Glass Box" where you see and verify every move your AI coding agent makes, every edit is recorded.

Receipts: Every significant command (export, import, index-code, etc.) generates a JSON receipt in receipts. This receipt contains a cryptographic hash of the inputs and outputs, timing data, and a summary of the operation. Journal: A journal.jsonl file provides a chronological, append-only log of every command executed and its corresponding receipt ID. This gives you a complete, verifiable audit trail of all actions performed by the tool. This combination of features is designed to provide a tool that is not only powerful but also transparent, verifiable, and secure enough for the most sensitive development environments.

It's built with a few core principles in mind:

Local-First & Air-Gapped: All data is stored on your machine. The tool is designed to work entirely offline, and you can prove it with the agm prove-offline command. Traceable & Verifiable: Every action is logged, and all context exports can be cryptographically signed and checksummed, so you can verify the integrity of your data. No Telemetry: The tool doesn't collect any usage data. The core features are MIT-licensed and free to use. There are also some honor-system "Pro" features for advanced code analysis and stricter security controls, which are aimed at professional developers and teams.

You can check out the source code on GitHub: https://github.com/jahboukie/antigoldfish

I'd love to hear your feedback