Security context

What an agent needs to avoid regressing past fixes and find the next vuln in this repo.

westonbrown/Cyber-AutoAgent
main @ 54897ff
1
Fixes
0
CVEs
HIGH
Peak severity
Highlights
Arbitrary Code Execution: 1 prior fix. Scrutinize any change in this area.
.github/workflows/swe-agent.yml: most-fixed (1 issue). Treat as high-risk during review.
1 high-severity fix in this history; regressions here are high-impact.
Recurring patterns

The bug types that recur here, drawn from past fixes, not open vulnerabilities.

Arbitrary Code Execution: The workflow was vulnerable to arbitrary code execution when executing commands via the swe-agent Bash tool. Unrestricted execution allows malicious actors to run arbitrary system commands in the runner environment if inputs or tool configurations are manipulated.