Sovereignty Guide
ShadowAgent is built on the philosophy of **Digital Sovereignty**. We believe that in an age of pervasive surveillance, your personal data—messages, emails, and files—should never leave your physical control.
"Privacy is not an option; it is the default state of ShadowAgent."
System Architecture
ShadowAgent operates as a multi-layered local system designed for maximum performance and security.
The Core (Rust)
Powered by Tauri 2.0, our Rust backend handles all system-level operations, secure storage, and process management with zero memory leakage.
The Brain (Ollama)
We leverage local LLM execution via Ollama. This ensures that every word analyzed by the agent stays within your CPU/GPU RAM.
Security Protocol
1. OS-Native Encryption
ShadowAgent uses the **OS Keychain (macOS)** and **Credential Manager (Windows)** via the AES-256 encrypted `keyring` crate. We never store passwords or session tokens in plain text.
2. Zero-Network Policy
Once activated, ShadowAgent is designed to operate in an **Air-Gapped** mode. The agent logic has no permission to make external HTTP requests except to the local Ollama API.
$ shadowagent verify --security-audit
[SUCCESS] External telemetry: DISABLED
[SUCCESS] Local storage: ENCRYPTED (AES-256)
WhatsApp Persistence
Unlike other "automation" tools, we do not use the official Meta API which tracks usage metrics. We use a **Local Session Mirroring** technique.
- **Scan Once**: Your session is stored in your local application data folder.
- **Headless Execution**: The agent interacts with a local, isolated Chromium instance.
Licensing System
ShadowAgent uses a **Handshake Activation** model.
Annual Tokens
Upon purchase, our server issues a cryptographically signed **JWT (JSON Web Token)** valid for 365 days. The desktop app stores this token locally. After activation, the app **never needs to contact our servers again** until the license expires.