Please do not open public GitHub issues for security vulnerabilities.
Use GitHub private vulnerability reporting for this repository if it is enabled. If it is not available, contact the maintainer privately before disclosing details publicly.
This repository covers:
- local workspace lifecycle
- adapter invocation and event normalization
- cancellation, timeout, and cleanup behavior
- model-provider behavior
- target-repo business logic bugs
- experimental adapter parity claims that are not part of the supported DevAgent path