Security model

Control boundary

kodx.ai lets you review session state and send explicit actions from your phone while the paired desktop companion keeps the local execution environment on your machine.

Account protection

• Desktop companion downloads require sign-in.
• Verified email is required before download links are issued.
• Download requests use short-lived authorization and are not exposed as public static links.

Machine pairing

Pairing connects your account to a specific companion. You should only pair machines you control, and you should remove access when a machine changes ownership or is no longer trusted.

Network model

The desktop companion is designed for outbound connectivity, so you do not need to open inbound laptop ports or configure port forwarding just to respond from your phone.

Responsible disclosure

If you believe you found a security issue, contact support@kodx.ai with a clear description, reproduction steps, and impact. Please avoid accessing data that is not yours and give us a reasonable opportunity to investigate.