Approvals (retired)
Historical: per-action consent modal from the AI-assistant product.
Approvals are retired. This page documents the per-action consent modal that shipped with the prior AI-assistant product; the commitment-infrastructure product has a different consent surface.
What was built (historical)
The AI-assistant product surfaced a modal for every write action (calendar event create, gmail draft, gmail send). The modal showed the tool name, action, risk pill (LOW/MEDIUM/HIGH), every parameter, and a Cost block in Real mode. Approval was per-call: no “always allow” option, because a blanket approval can be weaponised by a future prompt injection.
How the new product handles consent
The commitment-infrastructure product asks for consent twice: once when you set the commitment + lock the stake, and once when you upload proof for a check-in. There is no agent emitting write actions on your behalf, the user is the actor, the AI Game Master only adjudicates uploaded evidence and streams reasoning back. The escrow lock and the upload step are both deliberate, single-click actions in the mobile app when it ships.
The trust-stack guarantees (ed25519 signed verdicts, Solana audit roots, Filecoin + 0G mirrors) survive the brand reframe.