Only the latest published guardex version is supported for security fixes.

Please report security issues privately by opening a GitHub security advisory:

• https://github.com/recodeecom/multiagent-safety/security/advisories/new

If advisories are unavailable, open a private report via GitHub issue contact details and avoid posting exploit details publicly.

• Acknowledgement: within 72 hours
• Initial triage: within 7 days
• Remediation/release target: as fast as possible based on severity

Report issues related to:

• Hook bypasses or branch-protection bypasses
• Unsafe lock ownership behavior
• Command injection, path traversal, or privilege escalation in scripts
• Supply-chain integrity concerns in release/publish flow