From 616c16f86c4bb49e46fe1c97cea3baf9447f7ddc Mon Sep 17 00:00:00 2001
From: James <james@jongsma.me>
Date: Wed, 11 Mar 2026 12:03:24 -0400
Subject: [PATCH] chore: auto-commit uncommitted changes

---
 drafts/vault1984-market-research.md |  96 ++++++++++++++++++++++++++--
 memory/claude-usage.db              | Bin 69632 -> 69632 bytes
 memory/claude-usage.json            |  12 ++--
 memory/heartbeat-state.json         |   8 +--
 memory/updates/2026-03-11.json      |  33 ++++++++++
 5 files changed, 132 insertions(+), 17 deletions(-)
 create mode 100644 memory/updates/2026-03-11.json

diff --git a/drafts/vault1984-market-research.md b/drafts/vault1984-market-research.md
index 812bfdb..8306e44 100644
--- a/drafts/vault1984-market-research.md
+++ b/drafts/vault1984-market-research.md
@@ -11,6 +11,86 @@ The AI agent angle is newly validated. AgentMail raised $6M in early 2026 for "e
 
 ---
 
+## Consumer — Individuals
+
+### The situation
+The consumer password manager market is mature but largely untapped by paid products — most people use the free tier of Bitwarden, their browser's built-in manager, or Apple Keychain. The 2022 breach was a wake-up call. Millions of consumers received emails telling them their vault data had been stolen. Most changed their master password and moved on. A smaller number looked for something structurally better.
+
+vault1984's architecture speaks directly to what they feared: that their passwords were stolen and could be cracked. The answer — "your passwords were encrypted with a key derived from your hardware, not a master password we could guess" — is the clearest possible differentiation from every product they've used before.
+
+### Market potential
+Large but fragmented. The challenge is Apple Keychain and Google Password Manager — both free, deeply integrated, and "good enough" for most consumers. vault1984 competes for the security-conscious subset who have specifically been affected by a breach or who understand why hardware-derived encryption is different.
+
+The AI agent angle is less relevant for consumers today, but grows as agents become mainstream household tools.
+
+### Competitors
+
+| Player | Pricing | Notes |
+|--------|---------|-------|
+| Apple Keychain | Free | Deeply integrated, no agent support |
+| Google Password Manager | Free | Same |
+| 1Password | $3/month ($36/yr) | Strong brand, server can read |
+| Bitwarden | $10/yr premium | Open source, server can read (hosted) |
+| Dashlane | $4/month | Server can read |
+| NordPass | $2.49/month | Server can read |
+
+**vault1984 advantage:** The breach story. WebAuthn-only (no master password to forget or leak). $12/year makes it price-competitive with premium tiers.
+
+**vault1984 gap:** Mobile — consumers need native iOS/Android apps. UX polish. Browser extension that just works. The consumer market is unforgiving on friction.
+
+### Required features to compete
+- [ ] Native iOS / Android app (critical)
+- [ ] Polished onboarding for non-technical users
+- [ ] Family plan (multiple users, shared vault)
+- [ ] Password health / breach monitoring
+- [ ] Recovery flow for lost hardware key
+
+### TAM
+- ~300M tech-aware individuals globally who would pay for a password manager
+- vault1984 price: $12/yr
+- **TAM: ~$3.6B**
+- Current market extraction: ~$1B (1Password + Bitwarden + Dashlane personal tiers)
+- Penetration: ~28% — more mature than business segments, harder to displace
+
+### Pricing
+$12/yr (current) is well-positioned. Family plan at $24/yr (5 users) would follow market norms.
+
+---
+
+## Techies — Developers, AI Builders, Security Researchers
+
+### The situation
+This is vault1984's beachhead. Developers using Claude Code, Codex, Cursor, and Windsurf have the agent credential problem right now. They self-host because they understand the architecture and trust themselves more than any hosted service. They're the ones who read the Orwell quote and immediately understand what it means.
+
+This segment doesn't convert primarily through paid subscriptions — many will self-host for free. Their value is disproportionate: they share on HN and X, bring their teams with them, and validate the product with the technical credibility that makes the rest of the market take notice.
+
+### Market potential
+Smaller by direct revenue, larger by influence. A single viral HN thread from this segment is worth more than 10,000 consumer signups in terms of top-of-funnel impact across every other segment.
+
+The ones who choose hosted rather than self-hosted are a clean revenue signal: they've evaluated the product, decided it's worth paying for, and are volume-small but highly retentive.
+
+### Competitors
+None with vault1984's architecture. The closest:
+- Bitwarden self-hosted (server-side encryption, not operator-blind)
+- HashiCorp Vault (secrets management for infra, not human credentials)
+- pass (CLI password manager — no agent integration, no WebAuthn)
+
+**vault1984 advantage:** This is the natural home audience. The encryption argument is immediately understood. The MCP integration is valued. The one-binary deployment is respected.
+
+**vault1984 gap:** Self-hosting is free — conversion to paid hosted requires making the hosted experience demonstrably better (uptime, cross-device sync, automatic backups) than the friction of running their own server.
+
+### TAM
+- ~50M developers globally; ~15M actively paying for a password manager
+- vault1984 pricing: $12/yr (hosted)
+- Many self-host free — realistically ~30% of techie users would choose hosted
+- **TAM (hosted revenue): ~$54M** — small by market standards
+- **Strategic value: outsized.** This segment is the distribution engine for every other segment.
+
+### Pricing
+$12/yr stays right. Consider a "power user" tier at $24/yr with higher storage, API access, and additional MCP features. Do not introduce friction for self-hosters.
+
+---
+
 ## SMB — Small & Medium Business (1–250 employees)
 
 ### The situation
@@ -168,16 +248,18 @@ $2–3/user/month wholesale (MSP pays), resells at $5–8/user/month to clients.
 
 ## Summary
 
-| Segment | Addressable now? | Primary gap | Revenue potential |
-|---------|-----------------|-------------|-------------------|
-| **SMB** | 6–12 months | Team features, multi-user | High volume, $5/user/month |
-| **MME** | 12–18 months | SSO, SCIM, compliance | Medium volume, $8/user/month |
-| **Enterprise** | 2–3 years | SOC2, PAM, SIEM, SLA | Low volume, high value |
-| **MSP** | 6–12 months (with commercial license) | MSP license, white-label, PSA integration | High multiplier, $2–3/user/month wholesale |
+| Segment | Addressable now? | TAM | Primary gap | Revenue potential |
+|---------|-----------------|-----|-------------|-------------------|
+| **Consumer** | Now | $3.6B | Mobile apps, UX polish | High volume, $12/yr |
+| **Techies** | Now | $54M direct | Make hosted better than self-host | Low volume, high strategic value |
+| **SMB** | 6–12 months | $18B | Team features, multi-user | High volume, $5/user/month |
+| **MME** | 12–18 months | $19B | SSO, SCIM, compliance | Medium volume, $8/user/month |
+| **Enterprise** | 2–3 years | $15–20B | SOC2, PAM, SIEM, SLA | Low volume, high value |
+| **MSP** | 6–12 months (commercial license) | $1.4B wholesale | MSP license, white-label, PSA | High multiplier, $2–3/user/month wholesale |
 
 ### Recommended sequencing
 
-1. **Now:** Lock in SMB early adopters — AI-native companies already running agents. They'll tolerate missing team features if the core product is right. Start building the waitlist.
+1. **Now:** Lock in techies and consumers — the beachhead is already warm. Techies validate the product and drive top-of-funnel. Consumers convert on the breach story. They'll tolerate missing team features if the core product is right. Start building the waitlist.
 2. **H2 2026:** Ship team features. Launch SMB pricing. Begin MSP commercial license discussions.
 3. **2027:** MME features (SSO, SCIM). Begin compliance certification track.
 4. **2028+:** Enterprise.
diff --git a/memory/claude-usage.db b/memory/claude-usage.db
index 431f5a90a8b7fbb102689a1477f419b82e007d26..f38f2fca069a6ecf840eeb0a9cddba1168b0969e 100644
GIT binary patch
delta 438
zcmZozz|ydQWr8&0yNNQ+jPEuk%-3gpv&n$v081&09K&R-f;*G<UEtf;sKY$zGEcps
zVThrrm4T6!p+OYW8%btUCL;qQGhG8?U670kSjIex={35HF<8bVis==)j1gGIFpB9V
zx{M)M#x#oQ1zbiDYLS7Jfw7e_P}B3xyS{jFYY6ckW#E6ne}I1>e<Ob)zazgQKNH_0
zzC(PA_?q~V`CRx^_*i(K@E+aRIFq+trZtC+!IY7M5!vZ5Px;!*wq}E*8BwHRKJ(?U
zlWonyl!y7xhsjp9H4{@F=1U(Y8#|fS43Gj&6boRU^|6s@O$SM%IuGVyADit>e2jIB
E0Dwnlc>n+a

delta 89
zcmV-f0H*(dpag)R1dtm6=#d;l0qC({pDzLCvM>a|1aAbo0Fx?k+yVr;v4PYBlG6;c
v#`Hc591ISE01w~~zz?Ahfe&F1K@TAh0uJI1!VaPig0mqIVh*>04gr1v=6)X@

diff --git a/memory/claude-usage.json b/memory/claude-usage.json
index 0e0a82b..22ae09d 100644
--- a/memory/claude-usage.json
+++ b/memory/claude-usage.json
@@ -1,9 +1,9 @@
 {
-  "last_updated": "2026-03-11T10:00:01.381129Z",
+  "last_updated": "2026-03-11T16:01:20.655870Z",
   "source": "api",
-  "session_percent": 0,
-  "session_resets": "2026-03-11T15:00:00.339168+00:00",
-  "weekly_percent": 76,
-  "weekly_resets": "2026-03-13T03:00:00.339195+00:00",
-  "sonnet_percent": 60
+  "session_percent": 3,
+  "session_resets": "2026-03-11T20:00:00.607208+00:00",
+  "weekly_percent": 78,
+  "weekly_resets": "2026-03-13T03:00:00.607226+00:00",
+  "sonnet_percent": 64
 }
\ No newline at end of file
diff --git a/memory/heartbeat-state.json b/memory/heartbeat-state.json
index dc6f6c5..a57a053 100644
--- a/memory/heartbeat-state.json
+++ b/memory/heartbeat-state.json
@@ -7,15 +7,15 @@
     "news": 1771597876,
     "claude_usage": 1772624091
   },
-  "lastBriefing": 1773068932,
+  "lastBriefing": 1773237213.341859,
   "lastWeeklyDocker": "2026-03-08T05:05:28+00:00",
   "lastWeeklyHAOS": "2026-03-08T05:05:28+00:00",
   "lastWeeklyMemorySynthesis": "2026-03-08T05:02:00.000Z",
   "lastDocInbox": "2026-02-25T22:01:42.532628Z",
-  "lastTechScan": 1773068932,
+  "lastTechScan": 1773237213.3418584,
   "lastMemoryReview": "2026-03-10T12:10:06.000Z",
-  "lastIntraDayXScan": "2026-03-10T21:59:00.000Z",
-  "lastInouSuggestion": "2026-03-09T15:04:00.000Z",
+  "lastIntraDayXScan": 1773237213.341859,
+  "lastInouSuggestion": "2026-03-11T09:54:16-04:00",
   "lastEmail": 1772132453,
   "pendingBriefingItems": [],
   "lastOvernightAgentWork": "2026-02-28T12:20:00Z",
diff --git a/memory/updates/2026-03-11.json b/memory/updates/2026-03-11.json
new file mode 100644
index 0000000..9de560d
--- /dev/null
+++ b/memory/updates/2026-03-11.json
@@ -0,0 +1,33 @@
+{
+  "date": "2026-03-11",
+  "timestamp": "2026-03-11T09:00:00-04:00",
+  "openclaw": {
+    "before": "OpenClaw 2026.3.8 (3caab92)",
+    "latest": "2026.3.8",
+    "after": "OpenClaw 2026.3.8 (3caab92)",
+    "updated": true
+  },
+  "claude_code": {
+    "before": "2.1.72",
+    "latest": "2.1.72",
+    "updated": false
+  },
+  "os": {
+    "available": 2,
+    "packages": [
+      {
+        "name": "libnftables1",
+        "from": "1.0.9-1build1",
+        "to": "1.0.9-1ubuntu0.1"
+      },
+      {
+        "name": "nftables",
+        "from": "1.0.9-1build1",
+        "to": "1.0.9-1ubuntu0.1"
+      }
+    ],
+    "updated": true,
+    "reboot_required": false
+  },
+  "gateway_restarted": true
+}
\ No newline at end of file