Yumi — your work, remembered.

✓
Cross-user Hindsight leak closed — mobile + office fail-closed; hub broker 4/4 tests, live 401/403/200
✓
@yumi/hub unified backend — per-user memory broker, the single chokepoint
✓
Brand + showcase + admin + tokens
✓
Gitea yumi/yumi + Shad Owner access

Next / blocked

→
Go live at yumi.flow-master.ai — needs Tailscale up (logged out); DNS + box already answer (404)
→
Desktop per-user PAT exchange
→
Hub SSO middleware + admin backend (P1)
⚙
yumi Hindsight bank + deploy — kube, from tailnet

Architecture

surfaces  desktop · web/PWA · office · admin        (iOS / Android : P2)
              │  @yumi/hub · @mmd/cowork-core · @mmd/cowork-config  ·  one session every surface
              ▼
   ┌──────────────────┬─────────────────────────┬──────────────────────────┐
   LLM router        Hindsight memory        MCP connectors
   LiteLLM            per-user banks (broker)   M365 · Google · Apple · SAP · storage
   per-user keys      fail-closed isolation   per-user delegated tokens (BFF)
        │                  │                         │
        ▼                  ▼                         ▼
   Z.ai GLM-5.2       banks: personal · org · yumi   SSO: yumi.flow-master.ai (Google/Apple/MS)

Roadmap

P0 · Done

Consolidate

Stack + docs + brand + hub + leak closed

Identity

SSO Google+Apple · yumi bank · live deploy · Windows sign

Complete

iOS · Android · admin backend · connectors · files

Monetize

Billing · subscriptions · lifecycle

Confidential

TEE · GPU-as-a-service · voice · SideQuest

Yumi · FlowMaster · portal · gitea/yumi/yumi