Only the latest release receives security updates.
Please do not report security vulnerabilities through public GitHub issues.
Instead, use GitHub Security Advisories to report them privately.
Include:
- Description of the vulnerability
- Steps to reproduce
- Suggested fix (if any)
I'll acknowledge reports within 48 hours and provide an action plan within 7 days.
This is a local-only, read-only dashboard — no server, no auth, no external network requests. Security concerns are limited to:
- Path traversal outside
~/.claude - XSS from crafted session data
- Dependency vulnerabilities