Thoth follows semantic versioning. Security fixes land on the current major version line.
| Version | Supported |
|---|---|
| 0.x (current) | Yes |
Please do not report security vulnerabilities through public GitHub issues.
If you believe you have found a security vulnerability, please report it privately using GitHub Private Vulnerability Reporting:
- Open the Security tab of this repository.
- Click Advisories → Report a vulnerability.
- Fill in the form with the details below.
- A descriptive summary of the vulnerability.
- Steps to reproduce (including proof-of-concept scripts or specific inputs).
- Affected version(s) and platform(s).
- Potential impact and severity.
- We aim to acknowledge receipt within 48 hours.
- We will triage the issue and keep you updated on progress toward a patch.
- Once resolved, we will publish a security advisory and credit you (if you wish).
Security-relevant areas in Thoth include:
- MCP server (
thoth-mcp) — handles untrusted input from LLM tool calls. - Markdown store — parses user-editable files; injection through crafted headings/tags.
- Gate binary (
thoth-gate) — enforcement decisions that block/allow tool calls. - Query pipeline — prompt injection through
thoth_recallquery strings. - Domain adapters (Notion/Asana/NotebookLM) — ingest external data with PII redaction.