Skip to content

Security: joinwell52-AI/CodeFlowMu-open

Security

SECURITY.md

Security Policy

Supported release

Security fixes are applied to the latest CodeFlowMu Open release.

Reporting a vulnerability

Do not disclose credentials, exploit details, or private user data in a public issue. Use GitHub's private vulnerability reporting for joinwell52-AI/CodeFlowMu-open when available, or contact the repository owner privately before publishing details.

Include the affected version, operating system, reproduction steps, impact, and any safe mitigation. Remove tokens, local paths, task ledgers, screenshots containing private data, and Gateway credentials.

Release controls

Open releases must come from a clean source commit, carry SHA-256 checksums, exclude user workspaces and runtime ledgers, and pass the public-boundary verifier before publication.

There aren't any published security advisories