Security

SECURITY.md

Security Policy

Agent SkillGuard is a local-first security tool for agent skill supply-chain review.

Supported Versions

Security fixes target the latest released version.

Reporting a Vulnerability

Open a GitHub security advisory or private issue with:

affected version or commit
reproduction steps
expected and actual behavior
whether a crafted skill can bypass detection, corrupt reports, or execute code

Do not include real secrets in reports or fixtures.

There aren't any published security advisories