No longer active. This fork has been removed from GitHub. The content below is preserved from MikeWatch's archive.

nforum/mike

Active fork adding OpenAI/vLLM providers, user-controlled MCP connectors, and LLM-layer security guardrails

Recent activity covers four topics shipped in parallel: MCP Connectors (3 commits, largest feature), OpenAI provider (2 commits, merged before vLLM), vLLM/LocalLLM provider (4 commits including a unifying merge), and security system prompt additions (1 commit). Two smaller items round out the window: a docs-only workflow pack format proposal and bug fixes for Claude raw stream logging and project folder boundary checks.

View on GitHub →

nforum/mike is running several concurrent feature tracks. The most substantial work adds user-configurable MCP server connectors with OAuth 2.1 - end users can register Streamable-HTTP MCP servers from the account settings, and those tools surface to the chat agent under a mcp__<slug>__<tool> namespace. It's the most security-aware MCP implementation in this cohort of forks: RLS-gated storage, HMAC-signed state tokens for the OAuth popup, and PKCE. Credential encryption is called out as deferred.

On the model side, the fork adds OpenAI (GPT-5.5 / GPT-5.4 Nano) as a third provider, then unifies it with a vLLM/LocalLLM provider in a shared openai.ts factory that dispatches on model id prefix. The architecture is reasonable for multi-provider or on-prem scenarios, but the reconciling merge bakes in default-model preferences that favor vLLM when the env var is set - something to override before deploying.

A security PR appends intent-based refusal instructions to the system prompt: system prompt confidentiality, a PII enumeration list, and tool-use boundaries. Prompt-only guardrails, so they're best-effort, but the PII list and intent-framing are well thought out for a legal product.

There's also a docs-only workflow pack format proposal - YAML files with a JSON Schema that map to existing workflow DB columns. No importer yet, just a schema and examples.

What's in it

Direction

integrationsecurityworkflow

Activity

Themed changes and pull requests touching this fork, newest first. Themed changes that haven't been turned into a public post yet still appear — they're real work even without a published writeup.

📝 nforum teaches Mike when to say no 2 commits 2mo ago securitycompliance draft
A new set of refusal rules tells the assistant to clam up on personal data, resist prompt-leak tricks, and stay inside its lane on tool use.

Threads of work (detailed view)

12 threads have been distilled into posts.

nforum lets Mike run on your own hardware

A new self-hosted option means the legal-AI chat can run on infrastructure you control instead of a third-party cloud.

vLLM/LocalLLM provider via OpenAI-compatible client

nforum adds support for self-hosted vLLM endpoints alongside cloud providers. The conflict-resolving merge that united this with the OpenAI PR is the most consequential piece - it rewires defaults in a way that deserves a second look before import.

nforum teaches Mike when to say no

A new set of refusal rules tells the assistant to clam up on personal data, resist prompt-leak tricks, and stay inside its lane on tool use.

System prompt gains confidentiality, PII, and tool-use guardrails

nforum adds 35 lines to the system prompt covering three refusal categories: system prompt leakage, PII extraction, and tool-use boundaries. All three use intent-based refusal - the model is told to decline based on what is being asked, not whether the relevant data is currently available.

Declarative workflow pack format proposed (docs and schema only)

nforum's amiel-35 proposes a YAML-based workflow pack format checked into the repo, with a JSON Schema and two example files. No importer exists yet - this is a design artifact for a future build.

User-configured MCP Connectors with OAuth 2.1

nforum lets end users register Streamable-HTTP MCP servers from the account settings page and expose those tools to the chat agent. The three-commit feature covers the data model, a polished UI, and a full OAuth 2.1 flow with PKCE and dynamic client registration.