Support
Help with CookedAF
For bug reports, onboarding trouble, or anything that's not working, email us. Include your operating system, the app version (shown in the tray menu), and the provider you're trying to connect.
Frequently asked
What data does CookedAF collect about me?
None. CookedAF is a local-first app with no backend. There are no accounts, no telemetry, and no analytics built in. Your API keys live in your operating system's keychain on your own device and are sent only to each AI provider's official API. See the Privacy Policy for details.
Why does Anthropic / OpenAI / xAI need a different kind of key?
Those providers gate their organization-level usage and billing endpoints behind a separate elevated key — Anthropic calls it an
sk-ant-admin "Admin Key," OpenAI calls it an sk-admin- "Admin Key," and xAI calls it a "Management Key." A standard inference key (the one you'd put in code) can't read the cost APIs, so CookedAF would return 401. OpenRouter and DeepSeek accept their standard API keys.Windows says "Windows protected your PC" when I run the installer. Is it safe?
That's SmartScreen showing a warning because the installer isn't yet signed with a code-signing certificate. The application is the build you downloaded from this site. To proceed, click More info and then Run anyway. A signed release is on the roadmap and will remove this warning.
How do updates work? Will it ever change my keys or data without me knowing?
The app periodically requests a small manifest from
updates.cookedaf.com to see if a newer version is available. New versions are signature-verified against a public key built into your installed app — a tampered update will be rejected before it ever touches disk. Updates only change the application binary; your keys (stored in the OS keychain) and your settings are untouched.Where are my API keys stored?
In your operating system's secure credential store: Windows Credential Manager on Windows, the macOS Keychain on macOS, or Secret Service on Linux. The keys are never written to a plain file by CookedAF and never leave your device except when sent over HTTPS directly to the corresponding AI provider's API.
My Anthropic key returns 404 — what's wrong?
The Anthropic Admin API is organization-only. If your account is still a personal/individual account, the cost endpoint returns 404. Open Settings → Organization on console.anthropic.com and click "Set up organization", then create a fresh Admin key under Settings → Admin keys.
The figures look off — are they wrong?
CookedAF shows the figures returned by each provider's public usage / billing API. Those numbers may lag real-time activity by hours (Anthropic's cost data refreshes every few hours), may be incomplete mid-month, and may differ from the provider's official invoice because of currency conversion, taxes, credits, or retroactive corrections. The provider's own billing dashboard is the source of truth. See the Terms for the full disclaimer.
How do I uninstall and remove my keys?
Use Settings → Apps on Windows to uninstall. Before uninstalling, click Disconnect next to each provider in the app to remove its key from your OS keychain. You can also remove the entries manually from Credential Manager → Windows Credentials by searching for
cookedaf.Can I run CookedAF without an internet connection?
The app launches and the panel opens fine offline, but the provider polls (which is the whole point of the app) require connectivity to each provider's API. Update checks also require connectivity to
updates.cookedaf.com and fail silently if unreachable.Reporting a security issue
If you believe you've found a vulnerability in the app, the updater, or the website, please email support@aisaasfactory.io with details. We'll respond and credit responsible disclosure where appropriate.