Skip to content

Security: andreaborio/dsbox

Security

SECURITY.md

Security policy

Local attack surface

DSBox is designed for a single user on the same Mac:

  • control plane: 127.0.0.1:4242;
  • internal ds4 server: 127.0.0.1:8000 by default;
  • the control plane does not support binding to 0.0.0.0;
  • CORS is not enabled on the runtime;
  • an anti-CSRF header is required for mutating /api/* requests;
  • API-key authentication is optional on the /v1/* gateway.

Do not expose these ports to the Internet. Use an authenticated tunnel for remote access.

Sensitive data

ds4 traces can contain requests, rendered prompts, outputs, and tool calls. KV checkpoints can contain prompt text. Before sharing logs or a support bundle:

  1. disable tracing unless it is required;
  2. inspect the files manually;
  3. remove source code, secrets, personal paths, and conversations;
  4. do not publish ~/.dsbox/config.json if it contains a gateway token that is also used elsewhere.

Reporting a vulnerability

Do not open public issues containing working exploits, tokens, or private data. First share a minimal, reproducible description privately with the maintainer of the repository that hosts DSBox.

There aren't any published security advisories