fayerman-source/mike

A security-minded fork of Mike hardening it for lawyers who want to try AI against real, sensitive matters.

A tight two-day burst of security hardening in early May 2026, quiet since - a focused effort rather than an ongoing project.

View on GitHub →

This is Mike with the safety rails tightened. Everything @fayerman-source has shipped so far points one direction: making the tool something a law firm could point at confidential work without quietly leaking it. That means closing off a path where privileged AI exchanges were being written to disk and kept, and making sure one project's folders and documents can't be reached from another.

The audience is explicit. @fayerman-source added a first-run guide for evaluators - lawyers and firms self-hosting Mike to test it against sensitive workflows - and put it right on the setup path a newcomer actually follows. The guidance leans cautious: disposable infrastructure, synthetic documents, spend-capped keys, and keeping service-role secrets out of the frontend.

There's no rebrand or new product surface here. It's the same Mike, quietly made safer to trust. If you're evaluating whether it's fit for real client data, this fork is worth a click through to GitHub.

What's in it

Direction

securitymulti-tenantcompliance

Activity

Themed changes and pull requests touching this fork, newest first. Themed changes that haven't been turned into a public post yet still appear — they're real work even without a published writeup.

📝 Safe local testing guide added to onboarding path 0 commits securityinfrastructure draft
fayerman-source added a dedicated guide for evaluating Mike with sensitive legal workflows, linked from the setup README so it sits on the path a first-time self-hoster actually follows. The guide pushes toward disposabl…

Threads of work (detailed view)

8 threads have been distilled into posts.

Raw Claude stream logging gated behind DEBUG_LLM_STREAM flag

fayerman-source proposed removing the unconditional write of `claude-raw-stream.log` and replacing it with a debug flag. The concern was concrete: raw stream events carry user prompts and document context, and writing every event to an unbounded plaintext file is unnecessary data retention in a legal workflow context.

Safe local testing guide added to onboarding path

fayerman-source added a dedicated guide for evaluating Mike with sensitive legal workflows, linked from the setup README so it sits on the path a first-time self-hoster actually follows. The guide pushes toward disposable infrastructure, synthetic documents, spend-capped API keys, and keeping service-role secrets off the frontend.

Pull requests (detailed view)

6 PRs touch this fork — inbound (filed against it) or outbound (filed from it). State icons match the editorial dashboard.

✅ Merged (4)

⛔ Closed without merge (2)