Skip to content

Security: fql9/Multi-AI-Agent4OnlineShopping

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

Please do not open public issues for security reports.

Instead, report via one of the following channels:

We will acknowledge receipt within 72 hours and provide a remediation plan if confirmed.

Scope

Security reports are especially valuable for:

  • Tool Gateway authz/authn bugs
  • Idempotency and payment confirmation bypasses
  • PII leakage via logs/evidence snapshots
  • Prompt injection leading to unauthorized tool calls

There aren't any published security advisories