Please do NOT open a public issue for security vulnerabilities.
If you discover a security vulnerability in edge-agents, please report it responsibly:
- Use GitHub's private vulnerability reporting, or
- Email us at root@foresthub.ai.
We take security reports seriously and will respond as soon as we can.
| Version | Supported |
|---|---|
| Latest release | Yes |
| Older versions | No |
- Security fixes are released as patch versions.
- Advisories are published via GitHub Security Advisories.
edge-agents is a workflow runtime engine plus an LLM proxy. Examples of issues we consider security-relevant:
- Credential leakage — LLM provider keys (OpenAI / Anthropic / Gemini / …) or control-plane credentials exposed through logs, error messages, or serialization.
- Untrusted workflow config — a deployed workflow graph or expression that escapes its intended sandbox (file, network, or host access beyond a node's contract).
- Request forgery (SSRF) — e.g. via the web-fetch or other HTTP-calling nodes.
- Control-plane auth bypass — unauthorized deploy / boot / heartbeat / debug access on the engine's HTTP API.
- Injection — in config parsing, expression evaluation, or request construction.
- Denial of service — unbounded resource consumption in the runner.
Issues in upstream LLM providers (OpenAI, Anthropic, Google, …) should be reported to those providers directly.