RepoGrammar is currently in public preview / active development. Security fixes are applied to the main branch and the latest preview release when applicable.
Please report suspected security vulnerabilities privately by opening a GitHub security advisory for this repository.
Do not disclose exploitable details publicly until a fix or mitigation has been prepared.
Security reports are especially relevant for:
- installer behavior
- agent/MCP integration
- path traversal or unsafe file access
- secret leakage
- unsafe telemetry behavior
- release artifact integrity
- repository-local state corruption