Please do not report security vulnerabilities through public GitHub issues.

Use GitHub's private vulnerability reporting to submit a security advisory directly to the maintainers. This keeps the report private until a fix is available.

Email runzaisongpu95@gmail.com with subject [tab-conductor SECURITY] <brief description>.

Include:

• Description of the vulnerability
• Steps to reproduce
• Affected version(s)
• Potential impact assessment
• (Optional) Suggested fix

tab-conductor follows a 90-day coordinated disclosure policy:

1. You report the vulnerability privately.
2. Maintainers acknowledge receipt within 5 business days.
3. Maintainers investigate and develop a fix.
4. A patched release is published within 90 days of the initial report.
5. After the patch is available (or 90 days, whichever comes first), you are free to disclose publicly.

tab-conductor implements a 4-layer security model:

Full threat model: docs/SECURITY_THREAT_MODEL.md

The following are in scope for security reports:

• Secret leakage through state.json, log files, or bugreport packages
• State tampering enabling cost cap bypass or unauthorized worker spawning
• Prompt injection enabling workers to read or exfiltrate credential files
• Path traversal in secret_filter.py or state.py symlink handling
• HMAC bypass when hmac_signing: true

The following are out of scope:

• Vulnerabilities in the claude CLI itself (report to Anthropic)
• Vulnerabilities in the operating system or Python interpreter
• Social engineering attacks