MCEC can drive a Windows desktop with real keyboard/mouse input and can expose an MCP / localhost-HTTP control surface, so security reports are taken seriously. Please do not open a public issue for a security vulnerability.
Report it privately through GitHub instead: Report a vulnerability (the repository's Security ▸ Advisories ▸ Report a vulnerability). This opens a private advisory visible only to you and the maintainers. You will get an acknowledgement, and we will coordinate a fix and disclosure with you.
Security fixes target the latest 3.0.x release. Please reproduce on the current version
(winget upgrade Kindel.mcec) before reporting, in case the issue is already fixed.
MCEC's agent surface (its computer use capability) is off by default and gated behind explicit, independent opt-ins (see Agent Safety). Reports are especially valuable when they show a way to:
- reach an agent tool or
send_commandwithout the required gates (AgentCommandsEnabled, per-commandEnabled,McpServerEnabled); - cross the localhost/bearer-token boundary of the MCP HTTP floor (a non-loopback bind or a request without a valid token reaching actuation);
- defeat or bypass the emergency stop;
- break the isolation of a provisioned session (act on the installed instance, or tear down a session without its token).