A desktop client for ICME Preflight, the formal-verification service that turns plain-English policies into a cryptographic guardrail for AI agents. The app lets you create policies, browse and refine compiled rules, run ad-hoc test actions, manage the Claude Code hook, and watch a live activity log of every check made against your account (in-app and hook-driven).
Built with Tauri 2 (Rust) + React + TypeScript.
Docs: docs.icme.io · Repo: github.com/ICME-Lab/preflight-app
Account
- Sign up with Stripe (card) or MetaMask (USDC on Base via x402 / EIP-3009).
- Log in with an existing
sk-smt-key (paste, or import from~/.icme/env). - See your live credit balance with a USD estimate (top-up rate, $0.01 / credit).
- Reveal / copy the API key from the top bar, and log out cleanly (key removed from disk, hook uninstalled, activity log wiped, local nicknames + hidden flags cleared).
Policies
- Browse every policy on your account in the sidebar.
- For each policy, view its compiled rules as plain-English numbered items and inspect the underlying SMT-LIB formula (pretty-printed, syntax-coloured, collapsed by default).
- Author a new policy with the + new flow: one box per rule, the app joins them into a numbered list and streams compilation progress live.
- Give policies a local nickname (stored on this machine only).
- Hide policies you don't want to see, with a "show hidden" toggle to bring them back.
Verification
- Test an action against the selected policy from the policy detail panel (same code path the Claude Code hook uses, so verdicts match exactly).
- Add scenarios to a policy as saved test cases.
- Approve / reject existing scenarios; rejections take a free-form annotation that gets queued for the Refine policy flow.
Claude Code hook
- One-click Install / Reinstall of the
icme-claude-preflighthook into Claude Code's user-scope~/.claude/settings.json. - Toggle the hook Enabled / Disabled without uninstalling.
- Pick which policy is active for hook-driven checks.
- Inspect the installed hook script inside the app.
- One-click Uninstall that strips the hook entry from Claude's settings.
Activity
- Top-bar status banner shows live hook state (green "enabled" / grey "disabled").
- The Activity log surfaces every verification (in-app or hook-driven), tagged by source, expandable to show the plain-English description, verdict, reason, policy id, and cryptographic check id.
Main view. Each region of the window at a glance:
- Top bar — API key (show / copy), credit balance with USD estimate, Claude Code Hook settings, Refresh, Log out.
- Status banner — live indicator of whether the hook is currently enabled.
- Sidebar — every policy on your account, with local nicknames and a "show hidden" toggle.
- Main panel — the selected policy's compiled rules, a Test-an-action card, and the SMT formula collapsed behind a toggle.
Claude Code Hook modal. Everything that touches Claude's PreToolUse hook lives here:
- Installation — install or reinstall the hook into
~/.claude/settings.json, with a live status line and an Uninstall button. - Enable toggle — flip
ICME_HOOK_ENABLEDin~/.icme/envwithout uninstalling. - Active policy — dropdown of every policy on your account; writes
ICME_POLICY_IDfor the hook. - Hook script — open
~/.icme/preflight-hook.shin-app to inspect exactly what's running.
Activity log. Every verification, whether in-app or hook-driven, ends up here:
- Unified stream — entries from both sources (in-app test and Claude Code hook) merge in chronological order.
- Source tag — hook-driven rows are marked so you can tell which client issued each check.
- Expandable detail — click a row to reveal the plain-English description, verdict, reason, policy id, and cryptographic check id.
- Persistent — backed by
~/.icme/preflight-activity.log, so history survives app restarts.
- macOS (Apple Silicon or Intel). Linux/Windows are theoretically supported by Tauri but the build has only been exercised on macOS.
- Rust stable:
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh - Node 20+: easiest via nvm, then
nvm install 20 - Xcode Command Line Tools:
xcode-select --install - An ICME Preflight account. You can create one from inside the app on first launch, or grab a key at https://docs.icme.io.
git clone git@github.com:ICME-Lab/preflight-app.git
cd preflight-app
npm installnpm run tauri devThe first build takes 5-10 minutes while Rust compiles the Tauri + reqwest +
axum dependency tree. Subsequent runs are seconds. The dev window hot-reloads
the React side; Rust changes require a Ctrl-C and re-run.
npm run tauri buildOutputs:
src-tauri/target/release/bundle/macos/Preflight.app— the app bundle (drag to /Applications)src-tauri/target/release/bundle/dmg/Preflight_<version>_<arch>.dmg— the installer image
For a universal binary that runs on both Apple Silicon and Intel:
rustup target add aarch64-apple-darwin x86_64-apple-darwin
npm run tauri build -- --target universal-apple-darwinWindows builds aren't practical from macOS; they're produced by the
windows-latest runner in the release workflow on tag push.
If you built locally (vs. downloading from a Release), the binary is not quarantined, so you can copy it straight in:
cp -R src-tauri/target/release/bundle/macos/Preflight.app /Applications/
open /Applications/Preflight.appIf you instead downloaded the .dmg from a GitHub Release that is not yet
signed + notarized, macOS will refuse to install it. Strip the quarantine
attribute first:
xattr -d com.apple.quarantine ~/Downloads/Preflight_*.dmg
open ~/Downloads/Preflight_*.dmg
cp -R /Volumes/Preflight/Preflight.app /Applications/
xattr -dr com.apple.quarantine /Applications/Preflight.app
open /Applications/Preflight.appCredentials live in ~/.icme/env (the same file the Claude Code hook reads)
with mode 0600:
ICME_API_KEY=sk-smt-...
ICME_POLICY_ID=...
ICME_HOOK_ENABLED=true # toggled from the in-app "Claude Code Hook" panel
The app reads this on startup. Signup, login, and the Log out flow in the app all manage these values for you, so you generally don't need to touch the file directly.
preflight-app/
src/ React + TypeScript frontend
components/ Modals, panels, individual policy/scenario UI
hooks/ localStorage-backed nicknames, hidden flags, rules cache
utils/smt.ts SMT-LIB pretty-printer + syntax tokenizer
src-tauri/ Tauri 2 (Rust) backend
src/preflight.rs HTTP client + SSE streaming + env-file helpers
src/signer.rs Local axum server for the MetaMask signup handoff
src/lib.rs Tauri command surface
assets/signer.html Browser-side EIP-3009 signer for x402 signup
icons/ App icons (macOS .icns, Windows .ico, Linux PNGs)
.github/workflows/ Release pipeline (signed + notarized DMG on tag push)
Tags matching v* trigger .github/workflows/release.yml, which builds a
universal-apple-darwin binary on a macOS runner, signs it with the Developer
ID stored in repo secrets, notarizes via Apple, and attaches the .dmg to a
draft GitHub Release. See the workflow file for the list of secrets it
expects.
git tag v0.1.2
git push origin v0.1.2MIT.