Skip to content

Security: warpdotdev/poc-agent-oss

SECURITY.md

Security Policy

Reporting a Vulnerability

Please do not open a public GitHub issue for security vulnerabilities.

Report security issues by emailing security@warp.dev. Include:

  • A description of the vulnerability and its potential impact
  • Steps to reproduce or a proof-of-concept
  • Any suggested remediation

We will acknowledge receipt within 2 business days and aim to provide a fix or mitigation within 14 days for critical issues.

Scope

This project is a local automation tool that reads from HubSpot and Metabase and posts to Slack. It does not expose any network services or HTTP endpoints.

All credentials are supplied via environment variables and are never committed to source control.

There aren't any published security advisories