| Version | Supported |
|---|---|
| 11.x | ✅ |
| 10.x | ✅ |
| < 10.0 | ❌ |
If you discover a security vulnerability in ACOS, please report it responsibly.
- Email security concerns to the maintainer directly
- Provide detailed steps to reproduce
- Allow reasonable time for a fix before public disclosure
- Include the ACOS version affected
- Open a public GitHub issue for security vulnerabilities
- Share exploit details publicly before a fix is available
- Test vulnerabilities on production systems you don't own
ACOS implements role-based access control via .claude/agent-iam.json:
- 6 permission profiles with per-tool, per-directory scoping
- Global deny rules for secrets (
.env*,*.pem,*.key,*credentials*) - Circuit breaker that triggers after repeated violations
- Circuit Breaker — Tracks failures per file, blocks after threshold
- Self-Modify Gate — Snapshots config, auto-reverts if intelligence drops
- Audit Trail — Append-only JSONL logging of significant actions
ACOS agents are prevented from accessing sensitive files:
{
"global_deny": {
"paths": [".env*", "*.pem", "*.key", "*credentials*", "*secret*"]
}
}- Review agent-iam.json — Understand what permissions each profile has
- Don't commit secrets — Use environment variables, not config files
- Monitor audit logs — Check for unusual agent behavior
- Keep updated — Security improvements ship with each version
We appreciate responsible disclosure and will acknowledge security researchers who help improve ACOS security.