docs(spec): Claude Desktop coverage strategy

[7schmiede]

Summary

Honest coverage spec for the customer constraint that came out of the PR #174 discussion: Pro/Max stays, Claude Desktop stays (especially the Code tab), API mode is not a viable alternative. The Pseudonym Bridge approach in #174 targeted the wrong abstraction (claude.ai chat) and Anthropic's 2026 policy posture (Feb Authentication and Credential Use + April third-party harness enforcement) closes any wrap-or-proxy approach for Pro/Max.

This spec defines what Powerbrain can defensibly deliver inside those constraints — a four-component defence-in-depth — and what it deliberately does not build.

Spec doc: docs/specs/2026-05-22-claude-desktop-coverage-strategy.md

What changed since #174

• Right product surface. Claude Desktop has three tabs (Chat / Cowork / Code). The customer ask is Code-tab governance, which is not a webview of claude.ai but custom UI in Anthropic's proprietary Electron binary. DOM injection doesn't apply.
• Anthropic 2026 policy. Feb 2026 OAuth-credential restriction + April 2026 third-party-harness enforcement explicitly target the wrap/proxy/fork patterns. A compliance product cannot stand on a ToS-violating foundation.
• Honest framing. Replaced ambitious-but-unbuildable Bridge architecture with a defensible coverage matrix: what we cover today, what we add (one new component), what stays bypassed, and what customers can credibly claim to their DPO.

The four components

Component	Status	Coverage
MCP Connector	Existing	Tool calls — full OPA + audit
Audit Mirror	Planned (2026-05-20 plan)	Post-hoc record of every prompt/response across all three tabs
Endpoint DLP	Customer-IT pattern	Network-level allow/block; Powerbrain provides recommended configs
Pre-flight tool	New, this spec	Pre-submit pseudonymisation + post-receive resolution. Separate Tauri app — does NOT interact with Claude Desktop in any way

Pre-flight is the only buildable new component. ToS-clean by design: it's a clipboard / text utility that calls Powerbrain APIs, like a password manager that runs alongside your browser.

What we deliberately do not build (decision record)

Captured in the spec so the question doesn't return:

• DOM-inject into claude.ai webview — wrong abstraction for Code tab
• Modify Claude Desktop `app.asar` — Consumer Terms Section 3
• Fork Claude Code with Pro/Max OAuth — Feb 2026 policy + April 2026 enforcement
• Repackage like aaddrick/claude-desktop-debian — commercial Powerbrain != hobby tolerance
• Claude Code CLI hooks on Pro/Max OAuth — deferred, conflicts with Feb 2026 policy spirit

What customers can honestly claim

Spec includes a defensibility matrix — what claims are substantiated by which component, and an explicit list of inflated claims to avoid. This is what compliance teams need for DPO/DPA review.

What changed in this PR

• Added docs/specs/2026-05-22-claude-desktop-coverage-strategy.md — 250 lines.

No code changes. Doc-only.

Open questions in the spec

1. Audit-mirror legality per jurisdiction (employee-monitoring consent)
2. Claude Desktop session-log SQLite schema (needs reverse-engineering, version-tracking adapter)
3. MDM deployment story for Pre-flight (silent install, preconfigured `pb_` key)
4. Pricing — bundled with proxy or separately licensed?
5. Pre-flight tech stack — Tauri assumed, confirm before Phase 3

Test plan

Doc-only.

• Spec aligns with docs/editions.md three-paths matrix
• Decision-record cites correct Anthropic policy timestamps
• Compliance team validates the customer-claim matrix for German GDPR / EU AI Act
• Sales validates the strategy addresses the actual customer constraint
• Decision on Pre-flight tech stack (Tauri vs alternatives) before implementation phase

Checklist

• Filename follows `docs/specs/YYYY-MM-DD-.md` convention
• Cross-links to related plans/specs and editions doc
• Reuses existing primitives (Pre-flight calls `/pseudonymize` and `/vault/resolve` only)
• Open questions explicitly listed
• Decision record explains what is deliberately NOT built
• Supersedes PR #174 noted in header