If you discover a security vulnerability in Prax, please email [email protected].
Do not open a public issue for security vulnerabilities.
We will respond within 48 hours and work with you to understand and fix the issue.
| Version | Supported |
|---|---|
| 0.1.x | ✅ |
When using Prax:
- API Keys: Store in environment variables, never commit to git
- Permission Modes: Use
read-onlyfor untrusted tasks - Sandboxing: Consider Docker isolation for high-risk operations
- Input Validation: Prax validates tool inputs against their declared schemas before execution
- Workspace Boundaries: File-writing tools are blocked from modifying paths outside the active workspace unless
danger-full-accessis explicitly enabled - Shell Review: Schema validation does not make shell commands safe by itself; review destructive commands before allowing them