In System Tools > Settings > Security there are 2 header related options:

• Use CTO and STS headers
  • X-Content-Type-Options: nosniff
  • Strict-Transport-Security: max-age=$HSTSSeconds; includeSubDomains
    • $HSTSSeconds is set in noodle.properties (6 months default)
    • Only set if HTTPS is in use
• Use RT, CSP, FO, XSSP headers
  • Report-To: ...1 day... /CSP.po
    • If Chrome or Edge of supporting versions
  • Content-Security-Policy: $CSP
    • $CSP varies depending on the page served
  • X-Frame-Options: SAMEORIGIN
  • Referrer-Policy: strict-origin-when-cross-origin
  • X-XSS-Protection: 1

Noodle offers Large Language Model (LLM) Artificial Intelligence (AI) integration in the editors for streamlining document creation and refinement. Information in Noodle other than what is in the current editor when AI is invoked is not made available to the AIs .Which AI is used (Google Gemini by default) and the ability to disable is in:

System Tools > Settings > General > Integrations

Links to 3rd party Application Programming Interfaces (APIs) and pricing:

Free tiers:

• x.ai ($25/month free + $7.50 / 1M Tokens)
• google.com (Gemini 1.5 Flash: 1.5k requests / day + $0.13 / 1M Tokens)
• huggingface.co (1k requests / day + $9 / month for 20k requests / day)

Paid only:

• anthropic.com (Haiku: $2 / 2M Tokens)
• openai.com (o1-mini: $5.25 / 1M tokens)

ArtificialAnalysis.ai has a nice pricing, quality, and speed overview.

Due to AI being in a growth phase models are deprecated quickly.

Undo ([ctrl]+[z]) or close can be used to revert changes made by pressing the AI button.