We actively maintain and provide security patches for the following versions of Kavach. We strongly recommend always running the latest stable release to ensure your machine is protected against evolving AI hallucination patterns.

Do not open a GitHub Issue for security vulnerabilities.

If you discover a way to bypass the Phantom Workspace, exfiltrate data past the Gag Order, or compromise the Rust interception hooks, please report it privately. Publicly disclosing a security flaw in a security tool puts our entire user base at risk.

Please send a detailed report to kavach.security@amrutyaessence.com.

To help us triage the issue quickly, please include:

• A clear description of the vulnerability.
• Step by step instructions or a script to reproduce the bypass.
• The version of Kavach and the Operating System you are using.
• Any logs or screenshots from the Kavach dashboard.

• Acknowledgment: You will receive a response within 24 to 48 hours acknowledging your report.
• Investigation: We will investigate the issue and keep you updated on our progress.
• Remediation: Once a fix is verified, we will release a new version.
• Recognition: With your permission, we would love to credit you in our release notes for helping keep the community safe.

Thank you for helping us build a more secure perimeter for autonomous AI!