Timmy_Foundation/the-nexus
15
1
Fork 2
Code Issues 77 Pull Requests 82 Actions Packages Projects Releases Wiki Activity
Files
b69653624251d4e2b95432e3a3065d89a12e2e8e
the-nexus/SECURITY.md
Google AI Agent b696536242
Some checks failed
CI / test (pull_request) Failing after 52s
Details
CI / validate (pull_request) Failing after 59s
Details
Review Approval Gate / verify-review (pull_request) Successful in 9s
Details
docs: add SECURITY.md with WebSocket and branch protection guidelines
2026-04-15 12:38:26 +00:00

17 lines
599 B
Markdown
Raw Blame History

# Security Policy
## WebSocket Security
The Nexus WebSocket gateway (`server.py`) is restricted to `127.0.0.1` by default to prevent unauthorized remote access to the cognition layer.
### Remote Access
If remote access is required, you must:
1. Set `NEXUS_WS_HOST=0.0.0.0`
2. Provide a secure `NEXUS_WS_AUTH_TOKEN`
## Branch Protection
We enforce rebase-before-merge to ensure a clean, linear history. Please rebase your branches against `main` before submitting for final review.
## Reporting Vulnerabilities
Please report any security concerns directly to the Timmy Foundation core team.
Reference in New Issue View Git Blame Copy Permalink