Route web tool traffic through a SOCKS proxy for privacy. Only AI tools use the proxy (web_search, get_website, research_topic). LLM connections, model downloads, and TTS/STT do not use the proxy.
If the proxy is enabled but broken, tools fail-secure rather than leaking to direct connections.
Open Settings → Network tab.
- Enable SOCKS proxy toggle
- Set host and port (e.g.,
127.0.0.1:9050for Tor) - Click Test Connection to verify
- Enter credentials if your proxy requires authentication
Sapphire checks for SOCKS credentials in this order:
-
Credential Manager (checked first)
- Enter in Settings → Network
- Stored in
~/.config/sapphire/credentials.json(not in Sapphire's user directory) - Not included in backups for security
- Use the Clear button to remove stored credentials
-
Environment variables (fallback)
SAPPHIRE_SOCKS_USERNAMESAPPHIRE_SOCKS_PASSWORD
- Enable web tools in a chat's toolset
- Ask the AI to fetch your IP via https://icanhazip.com/
- Should show your proxy's IP, not your real IP
Route web tools through SOCKS5 proxy for privacy.
WHAT IT DOES:
- Only affects tools: web_search, get_website, research_topic
- Does NOT affect: LLM connections, model downloads, TTS/STT
- Fail-secure: if proxy broken, tools error instead of leaking
SETUP:
- Settings → Network → Enable SOCKS
- Set host/port (e.g., 127.0.0.1:9050 for Tor)
- Click Test Connection
- Add credentials if needed (env vars or in Settings)
CREDENTIALS PRIORITY:
- Credential Manager in Settings (stored in ~/.config/sapphire/)
- Env vars: SAPPHIRE_SOCKS_USERNAME, SAPPHIRE_SOCKS_PASSWORD
VERIFY: Ask AI to fetch https://icanhazip.com/ - should show proxy IP
TROUBLESHOOTING:
- Tools failing: Check proxy is running, verify host/port
- Auth errors: Check credentials in env vars or Settings
- Tor: Use port 9050 (SOCKS) not 9051 (control)