Reporting
Use GitHub Security Advisories to report the vulnerability privately, or email security@augent.app. We will acknowledge your report within 48 hours and aim to release a fix within 7 days for critical issues.Scope
In scope
- MCP server (
augent-mcp) - CLI tools (
augent,audio-downloader) - Web UI (
augent-web) - Installer script (
install.sh) - Python library code
Out of scope
- Third-party dependencies (report to their maintainers directly)
- Issues requiring physical access to the machine
- Social engineering
Supported Versions
| Version | Supported |
|---|---|
| Latest release | Yes |
| Older releases | No |