Skip to content

Security: Beunec/agentic-annotation-protocol

Security

SECURITY.md

Security Policy

At Beunec Technologies Inc., we take the security of our open-source research and the Agentic Annotation Protocol (AAP) seriously.

Supported Versions

Currently, the following versions of the AAP are supported with security updates.

Version Supported
1.0.x
< 1.0

Reporting a Vulnerability

If you discover a security vulnerability within the Agentic Annotation Protocol or its CLI runtime, please do not open a public issue. We ask that you responsibly disclose the issue privately to our team so we can address it promptly.

How to Report:

  1. Email us directly at [email protected].
  2. Include comprehensive details:
    • A summary of the vulnerability.
    • Exact steps to reproduce the issue.
    • Any relevant logs, screenshots, or proof-of-concept code.
  3. What to expect:
    • We will acknowledge receipt of your vulnerability report within 48 hours.
    • We will work with you to understand and resolve the issue.
    • Once resolved, we will publish a security patch and credit you for the responsible disclosure (if desired).

Disclaimer

As noted in our main README.md, users and developers are solely responsible for the usage of this framework within their production environments. While we maintain the security of our CLI tooling and prompt constructs, the execution security ultimately depends on the specific LLMs and agent orchestration environments you utilize.

Thank you for helping keep the open-source community safe and secure.

There aren't any published security advisories