Skip to content

Security: britus/MCPStudio

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

Please do not open public issues for vulnerabilities. Report security issues privately by emailing EoF Software Lab or using GitHub private vulnerability reporting if it is enabled for the repository.

Include:

  • affected version or commit
  • reproduction steps
  • expected and actual impact
  • any logs or proof of concept that can be shared safely

We will acknowledge reports as soon as possible and coordinate a fix before public disclosure.

Sensitive Data

Do not commit:

  • API keys, auth tokens, or provider credentials
  • .env files
  • signing certificates, .p12/.pfx files, provisioning profiles, or developer profiles
  • Xcode xcuserdata, breakpoints, or UserInterfaceState.xcuserstate
  • generated build outputs, archives, notarization artifacts, or local code signatures

There aren't any published security advisories