Report security vulnerabilities using GitHub's private vulnerability reporting:
Do not open a public issue. We will acknowledge your report within 3 business days and work with you to assess and address the issue before any public disclosure.
The following are in scope for security reports:
- The
clagentic-directorydaemon process and its HTTP API - The
inspectsubcommand and MCP client connection handling - Self-build mechanisms — any path where proposed change files could escape
the
proposed_changes/boundary into the live registry - Configuration parsing — specifically any path where malformed config could allow path traversal, credential leakage, or denial of service
- Git source backend — SSH key handling and fetch behaviour
The following are out of scope:
- Vulnerabilities in the upstream git hosting platform
- Issues requiring physical access to the host
- Agent YAML content that an operator has deliberately placed in the registry
Please provide:
- Version — output of
clagentic-directory --version - Reproduction steps — minimal config and request sequence that triggers the issue
- Impact — what an attacker can achieve
- Suggested fix (optional but appreciated)
| Stage | Target |
|---|---|
| Acknowledgement | 3 business days |
| Initial assessment | 7 business days |
| Fix or workaround | Dependent on severity; critical issues prioritised |
| Public disclosure | Coordinated with reporter after fix is available |