Please do not open a public issue for security vulnerabilities.
Instead, report it privately through GitHub's private vulnerability reporting:
- Go to the Security tab of this repository.
- Click Report a vulnerability.
- Describe the issue, including steps to reproduce and the potential impact.
You can also reach the maintainers via the contact form at qualitymax.io.
We aim to acknowledge reports within a few business days and will keep you updated as we investigate and ship a fix.
This project runs untrusted, model-generated commands inside isolated cloud sandboxes. When reviewing or reporting, the most security-sensitive areas are:
- SSRF / URL validation — the live-preview guard (
assertSafeHttpUrlinlib/preview.ts), which gates user/agent-supplied preview URLs. - Command construction —
shellQuoteand the agent tool definitions inlib/tools.ts. - Sandbox lifecycle — session-scoped sandbox creation and teardown in
lib/sandbox.tsandlib/preview.ts. - MCP connections — server URL validation and token handling in
lib/mcp.ts.
These paths have unit coverage; please include a failing test or a clear reproduction with any report that touches them.
This is an actively developed showcase project; security fixes are applied to
the master branch. There is no separate long-term support branch.