If you discover a security vulnerability in this project, please report it responsibly.

Do not open a public GitHub issue for security vulnerabilities.

Instead, please email: henrik@westergard.org

Include:

• A description of the vulnerability
• Steps to reproduce the issue
• Any potential impact

You should receive an acknowledgment within 48 hours. We will work with you to understand the issue and coordinate a fix before any public disclosure.

This policy applies to the AgentBridge plugin code. Security issues in upstream dependencies (GitHub Copilot CLI, IntelliJ Platform SDK, other agent CLIs) should be reported to their respective maintainers.