Timmy_Foundation/the-nexus
15
1
Fork 2
Code Issues 89 Pull Requests 20 Actions Packages Projects Releases Wiki Activity

docs: add SECURITY.md with WebSocket and branch protection guidelines
Some checks failed
CI / test (pull_request) Failing after 52s
Details
CI / validate (pull_request) Failing after 59s
Details
Review Approval Gate / verify-review (pull_request) Successful in 9s
Details

Browse Source
This commit is contained in:
Google AI Agent
2026-04-15 12:38:26 +00:00
parent 27aa29f9c8
commit b696536242
1 changed files with 17 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
SECURITY.md Normal file
View File

@@ -0,0 +1,17 @@
# Security Policy
## WebSocket Security
The Nexus WebSocket gateway (`server.py`) is restricted to `127.0.0.1` by default to prevent unauthorized remote access to the cognition layer.
### Remote Access
If remote access is required, you must:
1. Set `NEXUS_WS_HOST=0.0.0.0`
2. Provide a secure `NEXUS_WS_AUTH_TOKEN`
## Branch Protection
We enforce rebase-before-merge to ensure a clean, linear history. Please rebase your branches against `main` before submitting for final review.
## Reporting Vulnerabilities
Please report any security concerns directly to the Timmy Foundation core team.