Technical FAQ
Common technical questions from the pilot team — based on FabriXWork recommended practices.
1. Preventing Auto-Installation
Q: Can we prevent users from automatically installing packages or tools?
A: Yes. FabriXWork has permission control files in place that allow administrators to manage what commands and installations users can execute.
How It Works
The app uses a permission configuration system that controls:
- Bash command execution
- Package installations (npm, pip, etc.)
- File editing capabilities
Example Permission Configuration
{
"permission": {
"bash": {
"*": "ask",
"npm install *": "deny",
"pip install *": "deny"
},
"edit": "ask"
}
}
Permission Levels
| Level | Description | Use Case |
|---|---|---|
| ask | User must approve before execution | General users, research teams |
| deny | Command is blocked entirely | Production environments, restricted users |
| allow | Command executes without prompt | Admin users, trusted environments |
User-Type Recommendations
Based on pilot team feedback, here are recommended configurations by user type:
| User Type | Recommended Config | Rationale |
|---|---|---|
| Admin | More permissive (allow most commands) | Need flexibility for system management |
| Back Office | Moderate (ask for most operations) | Balance between productivity and control |
| Research | Custom config (allow specific tools) | Need specific packages for analysis work |
| General Staff | Restrictive (deny installations, ask for edits) | Minimize security risks |
Important Notes
- No MDM required — FabriXWork has built-in permission controls
- Remote installation support — IT admins can help users install apps remotely (requires internal deployment alignment)
- Configuration balance — Strike a balance between security and usability
- Feedback loop — Regularly review and adjust permissions based on user needs
Note: A new feature is requested for centralized IT admin management of these permissions.
2. Safeguarding Confidential Data
Q: How does FabriXWork protect sensitive and confidential data?
A: FabriXWork is designed with data privacy as a core principle. Your files and conversations stay under your control.
Data Storage
| Data Type | Storage Location |
|---|---|
| Your files | Stored locally in your connected folders only |
| Conversations | Not stored on FabriXWork servers |
| Agent configurations | Stored locally |
AI Model Deployment Options
FabriXWork supports hybrid AI model deployment to meet different security requirements:
Option 1: Cloud AI Model
- How it works: Requests sent to cloud-based AI providers
- Best for: General business use, non-sensitive data
- Consideration: Ensure you trust the cloud provider
Option 2: Self-Hosted AI Model (On-Premise)
- How it works: Run AI models on your own infrastructure
- Best for: HR data, sensitive business information, regulated industries
- Consideration: Requires GPU resources and technical setup
Option 3: Self-Hosted AI Model (Cloud)
- How it works: Host AI models on your cloud infrastructure
- Best for: Teams needing scalability with control
- Consideration: Cloud hosting costs apply
Option 4: Local AI Model
- How it works: AI models run directly on user's machine
- Best for: Maximum privacy, offline scenarios
- Consideration: Limited by local hardware capabilities
PII Protection (Upcoming Feature)
An additional plugin is available for PII (Personally Identifiable Information) detection:
- What it does: Automatically detects sensitive information in your requests
- How it works: Replaces sensitive data with dummy data before sending to AI
- Use case: HR information, customer data, financial records
Recommendations by Data Type
| Data Type | Recommended Deployment |
|---|---|
| General business data | Cloud AI Model |
| HR information | Self-hosted (On-Premise or Local) |
| Customer PII | Self-hosted + PII Detection Plugin |
| Financial data | Self-hosted (On-Premise) |
| Research data | Based on sensitivity level |
Note: Some data "fragments" may still be sent to the AI model for processing. For highly sensitive data, use self-hosted options.
3. Controlling Application or System Updates
Q: How can we control when and how FabriXWork updates?
A: Updates can be managed through standard enterprise policies and private repositories.
Update Management Methods
Method 1: MDM Policy / Remote Install Server
- How it works: Use your existing Mobile Device Management (MDM) system
- Best for: Organizations with existing MDM infrastructure
- Control level: Full control over update timing and deployment
Method 2: Private Tool / Library Repository
- How it works: Use a private repository for tools and libraries
- Best for: Organizations with strict dependency control requirements
- Control level: Control which packages and versions are available
Method 3: Managed Repository (Selected Subscription Tier)
- How it works: FabriXWork provides a managed tool/library repository
- Best for: Teams without existing repository infrastructure
- Availability: Selected subscription tiers
Shortlisted Tool List
For organizations that want to pre-approve tools:
- BN (Business Needs) team can share a shortlisted tool list
- Only approved tools can be installed by users
- Reduces security risks from unvetted packages
Recommendation
| Organization Size | Recommended Approach |
|---|---|
| Small teams | Managed Repository (if available) |
| Medium teams | Private Repository + MDM |
| Enterprise | Full MDM Policy + Private Repository |
4. Uninstalling Third-Party Programs
Q: What happens when we uninstall FabriXWork? Does it remove third-party programs it installed?
A: Currently, the uninstall command cleans FabriXWork files only. Third-party programs installed by agents remain on your system.
Current Behavior
| Component | Removed on Uninstall? |
|---|---|
| FabriXWork application | ✅ Yes |
| FabriXWork configuration files | ✅ Yes |
| Third-party programs installed by agents | ❌ No |
| Packages installed via npm/pip | ❌ No |
Why?
Third-party programs may be used by other applications or workflows, so FabriXWork doesn't automatically remove them to avoid breaking other systems.
Upcoming Feature: Audit Trail
A new feature is in development:
- Audit logging of third-party programs — Track what programs/packages agents install
- Installation history — See when and why each program was installed
- Remediation support — Easier to identify and remove agent-installed programs
Best Practices
- Review permission settings — Use
denyfor package installations if you want to prevent auto-installation - Regular audits — Periodically review installed programs on agent-used machines
- Document installations — Keep a log of what agents have installed for your environment
5. Distributing Trained Agents
Q: Can we share custom-trained or configured agents between team members?
A: Export/Import functionality for agents is coming in the next Beta version.
Upcoming Feature: Agent Export/Import
Timeline: Next Beta version
Capabilities:
- Export agent configurations
- Import agents to other installations
- Share custom prompts and workflows
- Transfer agent knowledge bases
Availability
| Subscription Tier | Availability |
|---|---|
| Beta | Available in next Beta version |
| Product Launch | May be limited to selected subscription tiers |
| Enterprise | Expected to be included |
Current Workaround
Until export/import is available:
- Document agent configurations manually
- Share prompt templates via shared folders
- Use the Agent Directory to add the same agents across team members
Use Cases
| Scenario | How Export/Import Helps |
|---|---|
| Team onboarding | Quickly set up new team members with proven agent configs |
| Best practice sharing | Distribute optimized agent configurations across teams |
| Backup & recovery | Export agent configs as backup before system changes |
| Multi-environment | Move agents between dev, test, and production environments |
Quick Reference
| Topic | Current Status | Future Enhancement |
|---|---|---|
| Auto-installation control | ✅ Permission files available | Centralized IT admin management |
| Data protection | ✅ Local storage + hybrid AI options | PII detection plugin |
| Update control | ✅ MDM + Private repo support | Managed repository (selected tiers) |
| Uninstall cleanup | ⚠️ FabriXWork files only | Audit trail for third-party programs |
| Agent distribution | ❌ Not yet available | Export/Import in next Beta |
Related Resources
| Resource | Description |
|---|---|
| Installation Issues | Troubleshoot installation problems |
| Agent Selection | Choose and configure the right agents |
| Help & Troubleshooting | Main troubleshooting hub |
Have more questions? Contact the pilot program team or see Help & Troubleshooting.