Security · Public Overview
MokuBot - Security Architecture
MokuBot for NetSuite · v1.2 · April 2026
Public reference diagram · mokuhub.com/mokubot
Public reference diagram · mokuhub.com/mokubot
MokuBot runs in your browser. NetSuite data stays between your session and the AI model. Our Gateway is a stateless proxy. It authenticates, enforces plan limits, and forwards requests. No conversations, prompts, or NetSuite records are stored on our servers.
TransportTLS 1.2+ end-to-end
At restAES-256-GCM · per-user keys
Data storedAccount & usage only
User
User's browser
Trust boundary. MokuBot code runs here, alongside your NetSuite tab
MokuBot Extension
Chrome · MV3
AI agent runs locally
AI agent runs locally
NetSuite Page
Your signed-in session
same-origin access
same-origin access
Files stay in-browser (IndexedDB)
Session cookies never leave browser
NetSuite Cloud
Your NetSuite account & role permissions
ERP Data
Records, saved searches,
SuiteQL, role-scoped
SuiteQL, role-scoped
Role-scoped · never stored by us
MokuBot Gateway
Stateless proxy · Google Cloud Run · no conversation storage
Authentication
OAuth · signed JWT
AI Chat Proxy
Forward-only · no content stored
Usage & Limits
Token counts only
Billing
HMAC webhooks
TLS 1.2+ everywhere
No prompts logged
AES-256-GCM at rest
Per-account isolation
Trusted third-party services
Identity Provider
Google OAuth 2.0
sign-in only
sign-in only
AI Model Providers
Hosted inference
via routing service
via routing service
Account Datastore
Email · plan · usage
encrypted at rest
encrypted at rest
Payment Provider
Hosted checkout
no card data on us
no card data on us
Each service receives only the data it needs · all over TLS
1
2
3
4
5
6
How a request flows / numbered steps
1
You open MokuBot. The extension loads in your browser, next to your NetSuite tab.
2
Reads NetSuite in-browser. Same-origin. Uses your existing session, no creds stored.
3
NetSuite responds with only what your user role can see.
4
Chat → Gateway. TLS + signed token. Gateway verifies, checks plan, forwards.
5
Account services. Sign-in, usage metering, billing. Each scoped to its job.
6
AI model call. Forward-only proxy. Prompts & responses stream, never stored.
What we guarantee / privacy by design
No conversation storage. Prompts, responses, and tool calls are streamed through, never written to disk.
No NetSuite data retention. Records and query results exist only in your browser tab.
Per-user encrypted keys. AES-256-GCM at rest, rotated on a fixed schedule, revoked on cancellation.
No third-party analytics. No tracking SDKs, no session recording, no behavioral profiling.
No data monetization. Your data is never sold, shared, or used to train models.
MokuHub · MokuBot Security Architecture · mokuhub.com/mokubot
In-browser / app traffic
NetSuite access (your session)
Account service call