Do not open a public issue for security vulnerabilities. Use GitHub private vulnerability reporting on adibisoyi/SessionWeave, or contact the maintainer directly.

Please include:

• A clear vulnerability description.
• Steps to reproduce.
• Expected impact.
• A suggested fix, if available.

SessionWeave is a local development tool. It stores runtime memory under .sessionweave/ in the project where it is initialized. The core runtime does not require network access and does not execute code from the project being indexed.

Threat surface and mitigations:

• Runtime storage is project-local under .sessionweave/; generated runtime data is excluded from package artifacts.
• Memory ingestion is strict and structured; SessionWeave only accepts explicit fenced sessionweave-memory JSON blocks for memory mutation.
• Adapter installation writes local instruction files only. It does not modify external account state, browser state, or remote model configuration.
• The npm wrapper delegates to the Python CLI and does not download or execute remote code.
• GitHub Actions release publishing is restricted to tag/manual workflows and uses PyPI trusted publishing plus an optional npm token.
• GitHub Actions runs recurring security checks with Bandit, pip-audit, and npm audit.
• Dependabot monitors GitHub Actions, Python packaging metadata, and npm metadata for update PRs.

Do not store secrets, API keys, credentials, or private customer data in memory nodes unless the repository owner has explicitly accepted that risk.