MyConvergio is experimental software provided for research and educational purposes only. It is not intended for production use or handling of sensitive data.

• No Security Guarantees: This software is provided "as-is" without security warranties
• Experimental Nature: Security features may be incomplete or contain vulnerabilities
• Educational Purpose: Designed for learning and research, not production deployment
• No Sensitive Data: Do not use with confidential, proprietary, or sensitive information

If you discover a security vulnerability, please:

1. Email: roberdan@fightthestroke.org
2. Subject: "Security Issue - MyConvergio"
3. Include:
   • Description of the vulnerability
   • Steps to reproduce
   • Potential impact assessment
   • Your contact information

Do not open public issues for security vulnerabilities.

When experimenting with MyConvergio:

• Use in isolated, non-production environments only
• Review all agent code before deployment
• Understand that agents may access files and make web requests
• Keep your Claude Code environment updated
• Use test data only

• Use with sensitive or confidential information
• Deploy in production environments
• Share API keys or credentials with agents
• Assume any security protections exist
• Use for processing personal or proprietary data

• Agents can read/write files within their tool access scope
• Some agents can make web requests
• Agents can execute coordinated workflows
• All activity should be considered logged

• No built-in sandboxing beyond Claude Code's default protections
• No encrypted storage of agent interactions
• No audit logging beyond standard Claude Code logs
• No access controls beyond tool-level restrictions

This security policy may be updated as the project evolves. Check back regularly for changes.

For security-related questions: roberdan@fightthestroke.org

Remember: This is experimental software. Use at your own risk and never with sensitive data.