Todobar is an early desktop utility. Please report security issues privately instead of opening a public issue.
Only the latest release is supported while the project is pre-1.0.
Open a private GitHub security advisory if available, or contact the repository owner through GitHub.
Future MCP and AI integrations must follow these rules:
- no silent external reads
- no silent task writes
- visible permission scopes
- local-first storage by default
- clear audit trail for external connector actions