Acceptable Use Policy
Effective date: June 21, 2026
Version: 2026-06-21
You can use Knotr for almost anything you can think of. There are a few things, though, we will not let you do with it.
Restricted purposes
When you use Knotr, you agree that you will not, and will not let anyone using your account:
- Break the law. Use the Service to violate applicable law, infringe intellectual property rights, defame, defraud, or harass anyone, including any Knotr employee or contractor.
- Harm others or their data. Collect or extract information from accounts that do not belong to you. Impersonate another person or organization, or misrepresent your affiliation with someone.
- Abuse the AI features. Use the Service to generate or distribute unlawful content (for example, child sexual abuse material, content that incites violence, or content that violates a third party’s rights). Try to extract model weights, training data, or system prompts. Use the Service to develop a competing AI service in violation of these terms or our AI providers’ terms.
- Misuse credentials and integrations. Share your account credentials, API keys, OAuth client secrets, or MCP tokens with anyone you do not authorize. Use credentials issued to one customer for another customer’s benefit. Resell access to the Service without our written agreement.
- Attack the Service. Probe, scan, or test the vulnerability of the Service without authorization; bypass authentication, rate limits, or other access controls; upload or transmit malware, scraping bots, or any other automated mechanism that is not the documented API or MCP surface.
- Surveil people. Build or deploy a third-party application on top of our API or MCP endpoints whose primary purpose is to remotely monitor end users’ activity outside of the Service, except for the operator’s own auditing of accounts they own.
- Abuse the Skill Catalog. Publish to the catalog any skill that is malicious, deceptive, or infringing, or that is designed to manipulate, mislead, or exfiltrate data from the users who copy it (for example, hidden prompt-injection instructions, credential or data harvesting, or content you do not have the right to share). Publish only skills you have the right to distribute.
- Misuse the external skill importer. Direct Knotr to fetch repositories you do not have the right to copy or use, repositories that contain malware or unlawful content, or repositories whose hosts you are barred from accessing. Do not use the importer to bypass another service’s rate limits, terms, or access controls, to scrape large volumes of unrelated repositories, or to relay your traffic through Knotr in a way that misrepresents its origin.
- Strain the Service. Interfere with, disrupt, or place an undue burden on the Service or the networks connected to it.
- Violate sanctions or export controls. Use the Service if you are barred from doing so under applicable sanctions or export laws, or use it to send data to anyone who is.
We may, in our discretion, decide that an account or integration violates this policy. If we do, we may:
- Disable an offending API key, OAuth client, or MCP endpoint.
- Remove or delist a published skill from the Skill Catalog.
- Suspend the account.
- Terminate the account, with or without notice, depending on the severity and the risk to others.
- Notify the appropriate authorities where the law requires us to.
How to report abuse
If you believe a Knotr account or integration is being used in a way that violates this policy — including a skill published to the Skill Catalog — email abuse@knotr.ai with as much detail as you can: the URL or catalog listing, the connected client (if any), what happened, when, and how you came across it. Screenshots help. We will not disclose your identity to anyone associated with the reported account.
For copyright complaints specifically, include the information listed in our Terms of Service.
Adapted from the Basecamp open-source policies under the Creative Commons Attribution 4.0 license. Modifications and Knotr-specific sections are © Knotr AI, LLC.