Email: [email protected] PGP: available on request

• Source code protected under BSL 1.1
• Copyright registered with timestamp via git history
• Do not distribute, re-sell, or build competing products
• Violators will receive a DMCA takedown + cease and desist

shadow-stack runs locally. No code is sent anywhere unless you have ANTHROPIC_API_KEY (or another provider key) set, in which case snippets of your existing code are sent to that provider for adaptive injection. Set SHADOW_STACK_AI_PROVIDER=ollama to keep everything local.