effGen provides multiple layers of security for running code-executing agents:
- Docker Sandbox: Isolated container execution with resource limits
- Memory Limits: Configurable memory caps
- Network Isolation: Optional network disabling
- Timeout Controls: Automatic termination of long-running code
If you discover a security vulnerability, please report it by:
- Email: gks@vt.edu
- GitHub: Open a private security advisory at GitHub Security
Please do not publicly disclose the vulnerability until we've had a chance to address it.
| Version | Supported |
|---|---|
| 0.0.x | Yes |
- Always run untrusted code in Docker sandbox
- Use API rate limiting
- Validate all external inputs
- Keep dependencies updated