agent-zsh is a shell plugin that runs local git and filesystem commands. Treat it like any other shell tooling: read scripts before sourcing them and install from a source you trust.

Please report security issues privately to the maintainer before opening a public issue.

Security-sensitive areas include:

• command injection through branch names, file names, or checkpoint notes
• unsafe deletion or reset behavior
• accidental network operations
• leaking local paths or repository metadata beyond explicit output files

The project is local-first. Commands should not contact the network except for explicit git operations such as fetching or pushing origin.