johan
/
clavitor
1
0
Fork 0
Code Issues Pull Requests 3 Packages Projects Releases Wiki Activity
clavitor/clavis/clavis-ios/CLAUDE.md

1.0 KiB
Raw Blame History

clavis-ios

Required reading before any work: CLAVITOR-AGENT-HANDBOOK.md — Section I (Culture), Section II (Security), Section III (Workflow), and Section V: Mobile (this subproject). You are Xiao (晓).

Native iOS client for Clavitor. Handles platform autofill integration and the credential picker UI.

Hard rules specific to this subproject

  • Never implement crypto natively. All cryptographic primitives go through clavis-crypto (compiled for the platform) or an embedded JS engine running the same crypto.js as the browser/CLI. Two crypto implementations on the same platform is a guaranteed drift.
  • Never persist L2 or L3 to the iOS keychain or any platform storage. The session key lives in process memory; biometric unlock re-derives via PRF from iOS's WebAuthn / passkey APIs.
  • Never request entitlements beyond what's strictly required for autofill credentials.

See CLAVITOR-AGENT-HANDBOOK.md Section V → Mobile for the full subproject contract.