Colibri – chat platform built on the AT Protocol for communities big and small

https://colibri.social/

Comments

rvrbMar 26, 2026, 7:59 PM
Users in a Discord server/local community on tools like Discord naturally expect that their actions within that community are private in so far as they trust everyone in the community (including the operator) to keep it so.

By using ATProto, Colibri fundamentally makes all of your communication within any community completely public to everyone on the internet.

That’s fine for something like Twitter, where the product sets the expectation of such a thing. You can imagine how big of an issue this is when you try to do it in a trusted community model. Add on that Discord is used by kids who likely don’t know this and you can see why this is dangerous.

I consider this not only just a liability but bordering negligence. It is fundamentally broken, at an architectural level

AbanoubRodolfMar 27, 2026, 3:31 AM
The structural problem is that AT Protocol repos are crawlable by design. Every PDS serves all records publicly so BGS (the Big Graph Service) can index them. There's no access control primitive at the lexicon level, so you can't have "private" records without either encrypting them or building a separate non-crawlable layer.

Bluesky solved the DM case by adding E2E encryption using the Signal protocol -- that works because it's 1:1 with a well-understood key exchange. Group chat is harder. Every membership change (someone joins, someone leaves) ideally requires a key rotation so former members can't read future messages. For a 10k-member server that's already expensive; for a large gaming community it's impractical with current approaches.

The Discord DMs aren't E2E encrypted either, for the same reasons. The difference is Discord doesn't claim to be a decentralized open protocol, so users don't think about it the same way. Colibri's marketing around ATProto creates an implied trust that doesn't actually exist at the privacy level.

Alpha3031Mar 27, 2026, 8:14 AM
MLS would be the primary standard for group messaging these days with the usual guarantees right? (PFS, backwards secrecy, etc) As I understand it from the RFC, large groups was an explicit design requirement and costs are supposed to be asymptotically logarithmic with group size, so I don't see why it couldn't be used. I feel like Colibri (based on their page) just doesn't believe it's there problem, which seems... irresponsible.
throwawaymobuleMar 27, 2026, 8:37 AM
Bluesky DMs aren't end to end encrypted. Where are you getting that impression from?
pixel_poppingMar 27, 2026, 7:40 PM
He is a bot.
gzreadMar 27, 2026, 9:13 AM
Even with all that, you're leaking an unacceptable amount of metadata.

And what about reliability? If I cause the key to change, and then alter my PDS so it only shows that event to one half of users, did I completely mess up your protocol so you have to delete the chat room and start over?

verdvermMar 27, 2026, 2:21 PM
> Bluesky solved the DM case by adding E2E encryption using the Signal protocol

This is patently false. Bluesky DMs are not E2EE, they do not use Signal.

Germ is the MLS based system that a few bluesky users are on, but it started separate from ATProto and has had account integration to atproto added on later. The folks behind that are a separate entity from Bluesky. I'm not keen on this setup, I'd prefer an MLS scheme where there are more controlling entities of the servers.

I agree E2EE chat is not the foundation for a Discord alternative and that Colibri has poor messaging and understanding. Communities need permissions, UX needs visibility into the data for things like search. E2EE has unsolved scaling problems required for real world communities.

consumer451Mar 26, 2026, 8:21 PM
I agree that is borderline negligence, and by far the biggest issue with AT and Bsky. Here is what I believe to be the most recent discussion on that topic:

https://github.com/bluesky-social/atproto/discussions/3363

quasigodMar 27, 2026, 12:43 AM
Theres more recent updates on it in a blog post from Bluesky head of protocol: https://dholms.leaflet.pub/3mhj6bcqats2o
consumer451Mar 27, 2026, 1:14 AM
Very cool! Thanks for sharing that.
theturtletalksMar 26, 2026, 10:45 PM
Having something like circles from the Google+ days would be needed if ATProto is going to go anywhere. Is it possible in the protocol?
MulticompMar 27, 2026, 12:18 PM
Yeah having the messages be e2ee by default and then extending it out to one or more groups depending in which circles are currently included for messages could let atproto act like an encrypted group chat with crisscrossing group chats per message, which can ratchet up and along with the new enceyption keys each message/batch of 10 messages/hour/day until that client is dropped from a group or a group is dropped from a conversation, then the keys change and pfs prevents old clients from continuing to read future messages.

Sure you can see that users emit messages in the pds but you dint know if its for your former group or other activitt

verdvermMar 27, 2026, 12:36 AM
The current conversations are around how to do permissined data properly on atproto. I have a prototype, but Bluesky hasn't participated in the community effort and looks to be doing their own thing. They also took Bain Capital "funding" (private equity) which was the breaking point for me. They could have set up subs for nothing and made more than that, hard fumble imo.
louisescherMar 26, 2026, 8:51 PM
Fair point! A different user has already pointed out that this isn't disclosed enough on the landing page, and I'll be adding a section to clarify that, both on there and in the app itself.

I think one of the replies here already linked the current proposal for private data spaces, which I'm hoping will become implemented later this year. At that point, people will have the option of either having their community be 100% public, or confined to a more Discord-style data storage, where people can still join, but not everyone can "just read" the messages

steveklabnikMar 26, 2026, 8:58 PM
Just want to chime in with, this does feel very slick, but this was the #1 question I had. I could not determine it from your site, and had to try it out to see.

One major criticism of things like Discord is that they're private, so I don't think that it's inherently disqualifying, some people might even prefer it for that reason. But it's very, very important that you're very clear about this, up front.

louisescherMar 26, 2026, 10:07 PM
I really appreciate you chiming in, no matter how slick! New section has been added, lmk if you'd like to see this adjusted further
steveklabnikMar 26, 2026, 11:08 PM
Much much better! Thank you!
david_shiMar 27, 2026, 11:01 AM
The first assumption has been long disproved since multiple full scale Discord data leaks. If it's a public server, it can be scraped.

https://www.malwarebytes.com/blog/news/2024/04/billions-of-s...

em-beeMar 26, 2026, 8:03 PM
any discord server that offers public invites is effectively public.
rvrbMar 26, 2026, 8:10 PM
First, the user knows this when joining a public community.

Second, the moderators can choose to remove someone who has joined the community in bad faith.

Third, it is entirely different than broadcasting every single action taken by every single user in every single community on the entire protocol to anyone with one URL.

0x457Mar 27, 2026, 4:14 PM
> First, the user knows this when joining a public community.

From Colibri: your community chats are public and visible to everyone by default.

So it's the same.

> Second, the moderators can choose to remove someone who has joined the community in bad faith.

Colibri has mod tools as well.

> Third, it is entirely different than broadcasting every single action taken by every single user in every single community on the entire protocol to anyone with one URL.

Sure, but then just don't use it?

It's really no that different from how IRC worked. Except persistent history is part of protocol and not some bots.

This is not public communities, not for small group of friends sharing edgy memes and discussing national security.

em-beeMar 26, 2026, 9:25 PM
the moderators can choose to remove someone who has joined the community in bad faith

unless you prevent new members from reading the chat history until given permission then they can already read everything before they are kicked out, and they can come back with a different account.

you also can not detect people acting in bad faith if all they do is read.

basically, you can't expect privacy if you don't limit members to people you know and trust. that goes for any group chat, encrypted or not.

i also doubt that discord chatlogs are encrypted on their servers.

rvrbMar 26, 2026, 10:45 PM
What is your point? I feel I made the one you are making before you even responded the first time.

That Discord communications can be exfiltrated in this specific set of circumstances (again, something I already said) does little to change that Colibri is implemented in the least privacy preserving way possible, short of publishing directly to every news and intelligence agency on your behalf, and does little to make that very clear in the first place.

em-beeMar 26, 2026, 11:33 PM
you said: Users in a Discord server/local community on tools like Discord naturally expect that their actions within that community are private in so far as they trust everyone in the community (including the operator) to keep it so.

my point is: you don't get that in a public discord. and i believe that most discord servers, those for games anyways are public. only small team discord servers are private. privacy on discord is an illusion. i also would not trust discord to keep any messages private even from a private server.

you seem to imply that just by looking like discord colibri promises the same privacy options as discord. why? colibri does not present itself as a discord alternative. and although the line "privacy when needed" was misleading, in the FAQ they clarified that there is no private data. (to be sure i checked the site as it was 2 weeks ago: https://web.archive.org/web/20260311020805/https://colibri.s... )

verdvermMar 27, 2026, 1:26 AM
> the moderators can choose to remove someone who has joined the community in bad faith

This is one of the challenges of building a Discord alternative on atproto. Allow access or not, how moderation works, and having shared ownership that can change.

eximiusMar 26, 2026, 8:15 PM
Private channels in public servers exist. I'm almost entirely on private servers.
verdvermMar 27, 2026, 12:41 AM
This is one of the challenging aspects about defining permissioned spaces on atproto. In essence, you have a completely separate database per user (sits next to their repo) with which you can do permissioned public->private spectrum. Nesting more privacy inside another permissioned space requires breaking the typical permission walking chain, eg. in Google Docs, if you have access to a folder, you have access to the subfolders.
avtarMar 26, 2026, 6:26 PM
Please consider adding screenshots of the UI that provide an idea of what the experience will be like without having to log in using Bluesky or other credentials.
louisescherMar 26, 2026, 6:57 PM
Done! Thanks for the suggestion, that's a good idea.
avtarMar 26, 2026, 7:24 PM
Thanks for the quick fix :) Nice to see more Discord alternatives these days.

A few other landing page issues if you feel like addressing them:

- Attempting to navigate with the Tab key results in tab order following nav elements once, where focus indicators aren't visible, and then the same elements get iterated over again but this time focus indicators are visible.

- Tab order doesn't include screenshots and jumps to the FAQ

- Clicking a thumbnail shows the larger image but without any elements for closing the overlay

- Pressing Esc doesn't close the overlay

- No skip links on any of the pages

louisescherMar 26, 2026, 8:44 PM
I don't know how I can keep forgetting about keyboard users. Thanks for bringing this to my attention, I'm working on it!
singpolyma3Mar 26, 2026, 6:55 PM
I assume it looks the same as literally every other chat app
subscribedMar 27, 2026, 10:58 AM
Nash.

There are always quirks and edges. Like using Bluesky itself, there's a number of viable apps for them (some better, some worse), they're all slightly different. There was a large number of Reddit apps, every single one very different.

Muhammad523Mar 26, 2026, 7:58 PM
Yeah. Lots of discord-like free-software(as in freedom) chat apps are spawning. I think it's clear that whichever becomes the most popular will not be about who has better code but rather about who manages to get a stronger community around their project.
jFriedensreichMar 26, 2026, 8:28 PM
It's impossible to consider ATproto apps usable until the horrific oauth situation is fixed. It's still not possible to adjust oauth permissions to something restrictive dynamically so every app needs a new account which kind of defeats many of the interop promises, if apps even allow it (colibri requires invite code)
verdvermMar 27, 2026, 12:43 AM
Permission sets have existed for some time now

https://atproto.com/guides/permission-sets#permission-set-de...

throwawaymobuleMar 27, 2026, 8:48 AM
Those are set by the site requesting the login though.

I believe what they are referring to is custom permissions set by the person logging in, regardless of what the app itself requested.

e.g. login, disable all writes, all attempted repo writes using that oauth token fail.

verdvermMar 27, 2026, 2:14 PM
It sounds more like they are referring to the prior atproto transition:* scope that had no restrictions, which was horrible, re: every app needs a new account

Today, apps can limit the permissions they request during login. I don't see the dynamic, assuming they mean something where during approval you can deselect options, as a horrible situation. That's something very few apps do even outside of atproto.

jFriedensreichMar 27, 2026, 2:32 PM
No I am talking about users not being able to change the app permissions. App developers are not the ones to set my permissions, they can reccomend what their apps could need but any platform not giving users final say cannot be taken seriously.
verdvermMar 27, 2026, 3:10 PM
You must not use very many apps, or must have a ton of accounts. Plenty of apps taken seriously that don't have this dynamic feature. (speaking generally, not specific to atproto)
jFriedensreichMar 27, 2026, 4:04 PM
Not aware of many apps that force oauth and don't allow email signup... The only exception some github centric apps that request too much and then are mostly let down by github not getting their auth screens up to standards for years, but who is surprised there. I just don't try those unless i already trust the company and really need to.

But all that aside i think a protocol aiming to liberate users and be an open app platform cannot be held to the same standards as corporate garbage that we don't expect to behave differently. Atproto needs to show some commitment to the values of putting users first, its so close.

verdvermMar 27, 2026, 4:14 PM
> Atproto needs to show some commitment to the values of putting users first, its so close.

I think the Bluesky domination and recent "funding" from Bain Capital move it away from these goals. I've left the app and ecosystem. "user" growth is negative and they are misleading about how many "accounts" there are.

The hero holds the lies: https://atproto.com/

To get to the widely cited 43M "users" you have to count DIDs (accounts, not users) and include takedown and deleted...

jFriedensreichMar 27, 2026, 4:48 PM
Im somewhat in the middle. I see great things coming out of atmosphere and people who really mean well and do great work. But there are some of these significant gaps that are not addressed in what i think would be the appropriate manner. So far i don't assume too much ill will and instead consider they have many of these topics that matter to different people. If these are still unaddressed when the teams work on seemingly way less important topics is when we should really hear alarm bells. Not related but arc/ browser company using firebase without export and user access to their data was ok as long as it was an experiment in next gen browser UX, but when they started making haptic feedback for the slider to set your colour scheme, while not giving users a way to access their own spaces data was clear it was game over. ATproto is just an experiment no one should build serious things on until there are proper access controls and more importantly an independent European provider for plc.directory etc. and its provable to work without US company mercy.
sensenMar 26, 2026, 5:54 PM
This looks neat, but should I be concerned about the permissions this is requesting for my account? Bluesky: Manage your profile, posts, likes and follows
louisescherMar 26, 2026, 6:10 PM
Hi! We're doing that to allow you to update your profile from within the app. Not doing anything else besides that. If you have concerns, take a look at the source code: https://github.com/colibri-social/colibri.social
czbondMar 26, 2026, 6:59 PM
Very interesting project.

From a product uptake perspective, I could suggest that since a user is still building trust when they begin use - to only require as few permissions as needed. I'd punt that profile update requirement out personally for another method later.

An example might be when a user has used your app for N sessions, or after N months.

iamnothereMar 26, 2026, 7:04 PM
They should prompt the user for permission when they use a feature that requires it, explain why, and allow them to cancel if desired. Have seen this pattern used many times elsewhere.
louisescherMar 26, 2026, 8:48 PM
Good idea, will implement that! Maybe a button or something to refresh your permissions when/if you want to edit your profile via Colibri makes sense.
verdvermMar 27, 2026, 12:42 AM
If that's all you are doing, then narrow the permission set for oauth. No need to have access to posts if you aren't touching them.
tannhaeuserMar 27, 2026, 7:27 AM
Not sure who the target audience for this is?

ActivityPub (Mastodon etc) has already very granular permissions wrt. who to federate with, which posts to make public, edit or withdraw posts after initial creation, etc. catering to EU privacy and moral/personality rights demands.

For closed group chat, there are many alternatives.

Discord is after all a video chat app designed to be used during a gaming session first and foremost.

subscribedMar 27, 2026, 11:00 AM
See, for you it's that, for me it's strictly text app with good notifications and messages delivery, convenient group management, etc.

If i wanted video chat app I'd to for twitch.

OryginMar 27, 2026, 12:01 PM
> If i wanted video chat app I'd to for twitch.

Twitch barely has any semblance to what Discord offers. It's one to many, while Discord is many to many.

hipdaddyMar 27, 2026, 12:19 PM
Use AS2.

Use AS2.

Use AS2.

Making decentralized social media?

Use AS2.

This is not chat, it’s social media with a chat UI.

You should use AS2.

AT is a joke invented by nontechnical people. They had 1 good idea (updatedAt and use of At) everything else was not good for decentralization.

AS2 is perfect for feeds of content especially when you want to nest other content e.g. a user posted a reply to a comment on a game.

AT is centralized social media with cancer, stop using it.

OryginMar 27, 2026, 2:11 PM
AS2 as in Applicability Statement 2? Or Action Script 2?

Edit: For the curious like myself, after more searching it seems to reference Activity Stream 2 which is a W3C standard used by ActivityPub (Mastodon, lemmy, etc)

verdvermMar 27, 2026, 2:26 PM
ActivityPub is more of a zombie project than ATProtocol at this point. AP has plenty of problems this fresh account made to disparage omits.

I'm looking forward to a new protocol that combines the best of what we have with a robust permission system from the start.

OryginMar 27, 2026, 3:19 PM
Seems you wanted to respond to the OP? I was mainly inquiring about what's AS2.

> AP has plenty of problems this fresh account made to disparage omits.

Isn't that a problem with moderation instead? If ATProto becomes decentralized someday, it'll have the same issue

verdvermMar 27, 2026, 3:26 PM
ATProto actually has a very good moderation design, user choice, anyone can label, and composable. Feeds are similarly well designed for federation.

https://bsky.social/about/blog/03-12-2024-stackable-moderati...

> Seems you wanted to respond to the OP?

yes

OryginMar 27, 2026, 3:32 PM
The moderation tools depend on the implementation of AP, but what I meant is that you depend on each instance's moderation/moderators to be effective at combating spam (and more).

A problem that ATProto will face once/if they really do get decentralized. If some instances are badly moderated, you will suffer the same as with AP

verdvermMar 27, 2026, 3:46 PM
AT does not have instances like AP. You are not tied to the moderation choices of servers. Apps are where moderation happens and is a place where competition can occur. Moderation also largely happens at the network layer, so apps can share moderation or use third party moderation (that is not tied to any app)

It seems like you do not understand the architecture of ATProto and make claims that are not based in reality.

kmfrkMar 27, 2026, 3:39 PM
Discord's main problem for me is that it's built around people having one and only one user, which is a huge privacy and pseudonymity mess. The only alternative that works somewhat is using the PTB version of Discord for your "alts".

If this project has genuinely decent multi-user support instead of the miserable experience of Discord, I'd emphasize and promote that first over being a Discord-like, since this genuinely improves on some of the privacy issues of Discord, despite AT Proto being public.

Better to distinguish the product from Discord rather than promoting how similar it is. Because of the public architecture, it's more similar to a forum board than Discord anyway, so you could also just as well give people another interface by showing the community as a conventional website. People may or may not like it, but it's basically what it practically is.

One of the big issues with Discord is that it takes public knowledge like wikis and makes it private instead - and beholden to the whims of mercurial mods and admins. Information being public doesn't have to be a bad thing that way.

Instead of Discord, you can give the people Discourse. :)

tl;dr: AT Proto being "open" can look like a bad thing in nominally private spaces like Discord, so promoting as something more open like an open forum board rather than a closed Discord server might be more interesting and persuasive. But I'm also a forum board evangelist.

BodyCultureMar 27, 2026, 5:43 AM
We need more aggressive laws to prevent privacy destroying platforms. Every person who creates a website or platform that advertises any kind of private communication but does not fully encrypt user data must go to jail. This cancer needs to be stopped.
pjc50Mar 27, 2026, 11:47 AM
At the moment there's a much higher risk of legislation banning E2E.
gzreadMar 27, 2026, 11:21 AM
So email providers should go to jail...?
louisescherMar 26, 2026, 5:33 PM
Hi, person behind the project here, thanks for the cross-post!
todotask2Mar 26, 2026, 5:45 PM
You're welcome! Cool project!
louisescherMar 26, 2026, 6:09 PM
Ty!
em-beeMar 26, 2026, 7:40 PM
where can those of us who are not on bluesky get an invite code for an account?
louisescherMar 26, 2026, 8:46 PM
Feel free to E-Mail me via the PDS's account: pds@colibri.social

I'll send you a code!

ebbiMar 26, 2026, 9:49 PM
Is there anything like this but more of a reddit style layout?

I'm on a Facebook group and we're actively trying to get off of all Meta platforms, and wanted to see whether I could start up my own platform using an open source platform - but I think something like Reddit would be more suitable as opposed to a massive chat UI.

avtarMar 27, 2026, 3:05 PM
Maybe Lemmy without federation?
louisescherMar 26, 2026, 10:14 PM
Hi! We've got Forum-Style channels planned, similar to Discords, would that work for you? It'd still be a single text channel, and you could have multiple of them per community.
ebbiMar 26, 2026, 10:33 PM
Thanks for the reply! I'm not too familiar with Discords forums so will do a bit of digging
verdvermMar 27, 2026, 2:09 AM
The comments are not trees like Reddit. It's more like a list of questions you click into for a thread. Basically a channel where the top level is a list of threads, has more permanence than threads in normal chat channels.
gavmorMar 27, 2026, 5:39 AM
Cool, was thinking of building this myself. Glad you beat me too it. It's a nonstarter without E2EE for my use-cases, unfortunately.
schluMar 26, 2026, 8:50 PM
I totally understand that words and ideas get reused. But when I see Colibri, I think rest stop on the freeway (autoestrada) here in Portugal!
jonashusMar 26, 2026, 7:12 PM
Where is data stored? Bluesky? My PDS? Your PDS, for free?
louisescherMar 26, 2026, 7:16 PM
Hi, I've just added an FAQ entry about this: https://colibri.social/faq#where-is-my-data-stored

Also, feel free to DM me (@colibri.social) on Bluesky if you want to migrate to the Colibri PDS! We do host one ourselves.

the_axiomMar 26, 2026, 7:22 PM
Only my own messages are in my PDS? Or the entire chat?

How is the chat displayed if messages are scattered among multiple PDSes?

What about the community metadata, where is it stored?

louisescherMar 26, 2026, 8:45 PM
Your own messages are on your PDS. The chat, the category, community and all metadata are stored on the PDS of the person who created the community. The chat is then displayed via our app view, which keeps a live index of all messages and provides some endpoints to collect them!
wolvoleoMar 26, 2026, 9:31 PM
Is there something like this on top of nostr too? I'd much rather see nostr because it's truly open.
verdvermMar 27, 2026, 12:43 AM
Does Nostr have private content? That's a required feature for a chat platform.
wolvoleoMar 27, 2026, 1:12 AM
Well it could just be E2EE'd right? That's more of a required feature IMO.

PS: I'm not sure if Nostr has this but bluesky currently doesn't.

verdvermMar 27, 2026, 1:30 AM
Key distribution puts a limit on scalability for E2EE, eg: Signal / Telegram user limits

There is an E2EE messaging system that works with atproto DIDs, based on MLS, called "germ". People who have accounts can have them associated with the Bluesky profile for easy association. They only had a iOS app last I heard, so most people cannot use it.

isodevMar 26, 2026, 6:43 PM
“Your data isn’t trapped on our servers” - where is it then? Who can access it?

“Open social” is so much bs compressed in a couple of buzzwords.

tjueneMar 26, 2026, 7:01 PM
> where is it then?

it might be on https://bsky.social, https://npmx.dev/pds or sitting next to your router in your living room in the form of a raspberry pi (https://atproto.com/guides/self-hosting)

isodevMar 26, 2026, 7:09 PM
But that’s not where you want your chats now is it? E2EE? And how does it keep it all private since apparently the Bluesky bros haven't figured that part out?
louisescherMar 26, 2026, 7:15 PM
https://colibri.social/faq#where-is-my-data-stored I've just added a new FAQ entry to explain this in a bit more detail.

> But that’s not where you want your chats now is it? E2EE? And how does it keep it all private since apparently the Bluesky bros haven't figured that part out?

It honestly depends. Right now, Colibri is meant to function for communities that are public anyway. If you're a streamer, an open source dev community, Colibri can help you with talking to people who don't want to be locked in by big corporations. As the E2EE and private data, the Bluesky people have posted a new proposal for that only a few days ago, which I'm already thinking about how to implement: https://dholms.leaflet.pub/3mhj6bcqats2o

But, yes, for now, chats are public. Private data will hopefully be a thing soon on the network.

eximiusMar 26, 2026, 7:59 PM
This probably needs a bigger callout. A user who isn't familiar with ATProto doesn't even know to ask this question and the design space from its contemporaries (e.g., discord, slack, etc) suggests that chats are nominally private if folks aren't a member of the channel.

It's a very cool product but you have to let people know their messages aren't private.

louisescherMar 26, 2026, 8:47 PM
Yep, good feedback. I'll look into it. Will add a new section on the landing page or something.

Edit: Section has been added!

swampdickMar 27, 2026, 4:05 AM
"For public private conversations" Go home guys
iamnothereMar 26, 2026, 7:07 PM
Thanks for building this, UX is nice and should encourage people to switch from Discord. Bsky only is a bit disappointing as it is still heavily centralized. I would love to see a system like this that can also set up channels over Nostr and the Fediverse. Fragmentation is starting to become an issue with decentralized and federated social.
louisescherMar 26, 2026, 7:19 PM
We've taken a look at co-supporting ActivityPub as well actually! And yeah, the fragmentation is an issue. But I honestly think we might see at lease some level of interop between these fragments in the coming years, even if it's just some parts of the protocols and specs going in the same direction.
righthandMar 27, 2026, 3:46 AM
> This implementation is almost entirely vibe-coded for the purpose of being able to quickly get started with development of the main application. It will be re-written in the near future to take advantage of Tap and be reworked to include all user data storage as well as any OAuth capabilities, which currently reside within the website's backend. If you are interested in helping with this, start a discussion on this repo!

https://github.com/colibri-social/appview/blob/main/README.m...

imiricMar 26, 2026, 6:15 PM
Interesting project, but...

> BUILT ON OPEN STANDARDS. PRIVATE WHEN NEEDED.

> Running a private group chat? As soon as the AT protocol supports private data, we'll work on implementing it and giving you the option to create private communities.

Not exactly "private when needed" then, is it? It's disingenuous to even mention this in the marketing copy.

louisescherMar 26, 2026, 6:18 PM
Valid point! I'll get that section removed for now and either reword it later, or re-add when the protocol supports it.
verdvermMar 27, 2026, 12:47 AM
The problem for atproto will be getting a permission system that can enable enough parity with Discord that it has a competitive experience.

I was working on this, taking a break from atproto, re: bluesky "leadership" who defacto decide what does and does not get into the protocol via the PDS used by 99% of users.

cmxchMar 26, 2026, 9:31 PM
So does it have the same hermetically sealed qualities that other atproto implementations have (BlueSky)?
louisescherMar 26, 2026, 10:08 PM
Sorry, not quite sure what you mean when you say "hermetically sealed qualities", could you elaborate?
11thDwarfMar 26, 2026, 10:10 PM
[flagged]