SECURITY-CREDITS.md
We thank the following security researchers for their responsible disclosure:
| Researcher | Contact | Vulnerability | Date Reported |
|---|---|---|---|
| Song Binglin (q1uf3ng) | [email protected] | AST sandbox escape via gi_frame.f_back chain (CVSS 9.8) | 2026-03-29 |
| Jeongbean Jeon | [email protected] | File write, SSRF, monitor auth bypass, stored XSS | 2026-04-13 |
| wulonchia | [email protected] | File write via output_path (independent report) | 2026-04-13 |
| by111 (August829) | GitHub: August829 | Hardcoded JWT secret, eval in /config/dump, /execute_js, hook sandbox escape | 2026-04-14 |
| secsys_codex | [email protected] | SSRF via /md, /crawl, /llm endpoints (URL destination validation) | 2026-04-18 |
| Velayutham Selvaraj | SSRF via missing host validation in validate_url_scheme (independent report) | 2026-05-06 | |
| IcySun & Yashon | [email protected], [email protected] | SSRF, file write via output_path, missing auth by default, hook sandbox bypass via asyncio (independent report) | 2026-05-15 |
| Geo (geo-chen) | [email protected] | LLM API key exfiltration via unvalidated base_url (0.8.8) | 2026-06-02 |
| Geo (geo-chen) | [email protected] | SSRF via proxy_config.server bypassing the SSRF check (0.8.9) | 2026-06-04 |
| Y4tacker | [email protected] | Download path traversal -> file write; Chromium launch-arg injection via extra_args (0.9.0) | 2026-06-18 |
| KOH Jun Sheng (seankohjs) | [email protected] | SSRF on the streaming crawl path /crawl/stream (0.9.0) | 2026-06-18 |
| UDU_RisePho | GitHub: hoanggxyuuki | Chromium launch-flag RCE class via extra_args (0.9.0) | 2026-06-18 |