Security fixes are provided only for the latest release on the default branch.

Please do not open a public GitHub issue for security vulnerabilities.

• Preferred: report via GitHub Security Advisories (private).
  • Create a new advisory in this repository’s Security tab.
• Include in your report:
  • A clear description of the issue and impact
  • Reproduction steps or a minimal PoC
  • Any suggested fix/mitigation

This project runs local shell scripts and integrates with Claude Code hooks. Reports related to shell injection, unsafe command execution, or unintended data exfiltration are especially appreciated.