Agent file
SECURITY.md (root, not an agent file but the bug-report template's nearest slot).
What's wrong?
The last line of the security policy is the literal text EOFcat SECURITY.md (line 31). It is a heredoc terminator that leaked into the file when PR #410 created it. It renders verbatim on GitHub as the last line of the rendered policy page.
$ tail -1 SECURITY.md
EOFcat SECURITY.md
$ wc -l SECURITY.md
31 SECURITY.md
gh pr diff 410 shows the trailing +EOFcat SECURITY.md was part of the original merge.
Suggested fix
Delete line 31. The policy should end at the existing line 30 (- Report suspicious agent definitions that attempt prompt injection).
Agent file
SECURITY.md (root, not an agent file but the bug-report template's nearest slot).
What's wrong?
The last line of the security policy is the literal text
EOFcat SECURITY.md(line 31). It is a heredoc terminator that leaked into the file when PR #410 created it. It renders verbatim on GitHub as the last line of the rendered policy page.gh pr diff 410shows the trailing+EOFcat SECURITY.mdwas part of the original merge.Suggested fix
Delete line 31. The policy should end at the existing line 30 (
- Report suspicious agent definitions that attempt prompt injection).