Open Design has no Terms of Service, no Privacy Policy, and no named security contact — close the accountability gap before using this in any team or organizational context.
No Terms of Service or Privacy Policy document exists for Open Design itself — the nexu.io website returned a 403 and no policy files are present in the repository, leaving users with no contractual data protections (source: https://github.com/nexu-io/open-design, https://nexu.io fetch failure).
The local daemon spawns coding-agent CLIs (Claude Code, Codex, Cursor, Gemini, etc.) via child_process.spawn with real Read, Write, Bash, and WebFetch access against the user's filesystem — this is by design but constitutes a significant execution surface that requires user awareness (source: https://github.com/nexu-io/open-design/blob/main/QUICKSTART.md).
The Anthropic SDK BYOK browser fallback path uses dangerouslyAllowBrowser:true, which exposes API keys in the browser environment; this flag is documented but carries real key-leakage risk if the tool is deployed beyond localhost (source: https://github.com/nexu-io/open-design/blob/main/QUICKSTART.md).
Apache-2.0 licensed with explicit attribution obligations — the bundled guizang-ppt skill retains its own MIT license; downstream users building commercial products must comply with both licenses (source: https://github.com/nexu-io/open-design/blob/main/LICENSE).
This is an early-stage project with only 3 commits on the initial main branch and no tagged releases at review time; the codebase is evolving rapidly and breaking changes should be expected (source: https://github.com/nexu-io/open-design commit history).