Mainstream browsers are built to serve platforms: ads, accounts, sync, and ecosystem lock-in. Lumpini is built to serve you — your attention, your data on your machine, and your trust in what the browser is doing.
Lumpini is the browser that remembers your projects — without trading your attention for ads.
1. Local-first by default
Workspaces, tabs, bookmarks, settings, history, vault entries, and protection rules live in a local SQLite database on your Mac. No Lumpini server is required to browse. Optional cloud sync is explicitly deferred and will be opt-in only — never a gate for browsing.
| Lumpini | Chrome / Edge | Safari | Firefox | Opera | |
|---|---|---|---|---|---|
| Account required to browse | No | No (but pushed) | No (Apple ID for sync) | No (account for sync) | No |
| Core data stored on device | Yes — SQLite | Partial | Partial (iCloud optional) | Partial | Partial |
| Cloud sync required | Never | Strongly encouraged | Encouraged | Encouraged | Encouraged |
| Telemetry | None | Yes (configurable) | Limited | Opt-out | Yes |
2. Workspaces — organized around how you work
Workspaces are first-class in the browser shell — a dedicated switcher with tabs stored locally per project, restored after restart. Add custom home shortcuts per workspace. Chrome and Edge offer profiles; Firefox has containers; Safari has tab groups. Lumpini treats project memory as the core experience, not an add-on.
3. Privacy & protection you can see
- Built-in Privacy & Protection panel with per-site controls and a blocked-request log
- Ad and tracker blocking enabled by default, using native WebKit content rules
- DNS-over-HTTPS — encrypted DNS with one toggle, no system changes
- Optional fingerprint blocking
- Malware and phishing blocklists with signed updates — no account required
- Local download scanning via ClamAV when enabled — never blocking the interface
- Readable certificate-error and “not secure” warnings with a deliberate proceed-anyway flow
Chrome and Edge tie enhanced protection to Google Safe Browsing / Microsoft SmartScreen and their telemetry pipelines. Safari’s tracking prevention is strong but opaque. Lumpini pairs blocking with a readable protection UI and a local audit trail as core product surfaces — not buried preferences.
4. Encrypted Vault — built in, not bolted on
- AES-256-GCM encryption per entry; Argon2 key derivation; key held in memory only while unlocked
- Login autofill with form detection — including modern single-page apps (Vue, React admin panels)
- Offer-to-save on login, per-host “never save”, multi-field entries
- Search and sort across your vault
- No cloud dependency — credentials never leave your machine
- Lumpini cannot recover your master password — an honest security model
5. Passkeys — the phishing-proof login (pending Apple approval)
Lumpini handles WebAuthn honestly today — no faking, no blocking, and clean failures instead of hangs. Showing the macOS Touch ID passkey sheet for any website requires Apple’s managed browser entitlement, which is currently in Apple’s review process. Once granted, passkeys work alongside the Vault with no further update needed from you.
6. A real daily driver
- Signed & notarized — Developer ID builds with Apple notarization
- Auto-updates — cryptographically signed update manifests; one click in About
- Default browser — opens links from other apps and local .html files
- Download manager — progress bar, cancel, Open / Reveal in Finder, and a private fallback folder that needs no system permission
- Print & export — print, save as PDF, save as PNG
- OAuth popups & payment flows — Google sign-in, PayPal, Stripe all handled
7. Calm, focus-oriented interface
- 14 built-in themes with custom background art
- Auto-hide toolbar — reveal controls on edge hover
- Flexible tab bar — top, bottom, left, or right; resizable docks
- Dock-style magnification and gentle tab animations
- 18 languages including right-to-left, across the entire interface
- No crypto rewards, engagement feeds, or AI-sidebar upsells
8. Smaller, native shell — Tauri + system WebKit
Built with Tauri 2 (Rust shell + React UI) and native WebKit on macOS: smaller footprint than shipping another Chromium, security-sensitive code in Rust, and a watchdog that keeps every trust check and scan off the interface thread so the browser never freezes on you.
Trade-off, stated openly: WebKit is not Chromium. Extension compatibility and site parity are evaluated honestly; a Chromium path is on the roadmap if required. Safari shares the WebKit-native advantage — Lumpini adds workspaces, a local vault, transparent protection, and a cross-cutting local-first architecture on top of that native stack.
9. Built-in tools — fewer extensions, less attack surface
| Tool | Lumpini | Others |
|---|---|---|
| Privacy & Protection dashboard | Built-in | Scattered settings |
| Password vault + autofill | Built-in, local, encrypted | Cloud or OS keychain |
| DNS-over-HTTPS toggle | Built-in | Buried or system-level |
| Download manager with progress | Built-in | Built-in (varies) |
| Network tools / view source | Built-in | DevTools / extensions |
| Print / Save as PDF / PNG | Built-in | Built-in (varies) |
| Malware blocklist management | Built-in, signed updates | OS / cloud services |
| Diagnostics (local log, no telemetry) | Built-in | Cloud crash reporting |
10. Honest product philosophy
| Principle | Lumpini | Typical incumbent |
|---|---|---|
| Optimize for | User attention & trust | Platform, ads, engagement |
| Data default | Local SQLite | Cloud sync & profiles |
| Security claims | Measurable blocks & logs | Marketing “AI protection” |
| Diagnostics | Local log file you can read | Telemetry pipelines |
| Documentation | Open in-repo architecture | Opaque or marketing-only |
Comparison at a glance
| Dimension | Lumpini | Chrome | Edge | Safari | Firefox | Opera |
|---|---|---|---|---|---|---|
| Local-first core data | ★★★★★ | ★★☆☆☆ | ★★☆☆☆ | ★★★☆☆ | ★★★☆☆ | ★★☆☆☆ |
| No account pressure | ★★★★★ | ★★☆☆☆ | ★★☆☆☆ | ★★★☆☆ | ★★★★☆ | ★★★☆☆ |
| Workspace / project model | ★★★★★ | ★★★☆☆ | ★★★☆☆ | ★★★☆☆ | ★★★☆☆ | ★★☆☆☆ |
| Transparent protection UI | ★★★★★ | ★★★☆☆ | ★★★☆☆ | ★★☆☆☆ | ★★★★☆ | ★★★☆☆ |
| Built-in encrypted vault | ★★★★★ | ★★☆☆☆ | ★★☆☆☆ | ★★★★☆ | ★★★☆☆ | ★★☆☆☆ |
| Calm / low-noise UI | ★★★★★ | ★★☆☆☆ | ★★☆☆☆ | ★★★★☆ | ★★★☆☆ | ★★☆☆☆ |
| Resource footprint (macOS) | ★★★★☆ | ★★☆☆☆ | ★★☆☆☆ | ★★★★★ | ★★★☆☆ | ★★★☆☆ |
| Extension ecosystem | ★★☆☆☆ | ★★★★★ | ★★★★★ | ★★★☆☆ | ★★★★★ | ★★★★☆ |
| Cross-platform today | ★★☆☆☆ | ★★★★★ | ★★★★★ | ★★★☆☆ | ★★★★★ | ★★★★★ |
| Cross-device sync | ★☆☆☆☆ | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★☆ | ★★★★☆ |
★ = relative strength in that dimension for typical users. Lumpini leads where it chooses to compete; incumbents lead where they have years of platform investment.
Who Lumpini is for
Choose Lumpini when you want:
- A browser that does not require an account or cloud to be useful
- Project-based workspaces instead of one endless tab list
- Passwords stored locally in an encrypted vault — passkeys coming pending Apple approval
- Visible, per-site privacy controls, encrypted DNS, and blocked-request transparency
- A calm interface in your language — without engagement features or upsells
- A lighter native app on macOS with Rust-backed security code
Stay with the incumbents when you need:
- The full Chrome extension ecosystem or enterprise policy tooling today
- Cross-platform and cross-device sync out of the box
- Maximum site compatibility and mature developer tools
Named for Lumpini Park in Bangkok — a place to breathe and reset in the middle of a busy city — Lumpini aims to be calm infrastructure in a noisy digital world.