| Version | Supported |
|---|---|
| latest | Yes |
If you discover a security vulnerability, please report it responsibly.
Do NOT open a public issue.
Instead, use one of these methods:
- GitHub Security Advisories (preferred): Use the "Report a vulnerability" button on the Security tab of this repository.
- Email: Contact the maintainers through greyforge.tech.
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if you have one)
- Acknowledgment: Within 48 hours
- Assessment: Within 7 days
- Fix or mitigation: Depends on severity, but we aim for 30 days for critical issues
We follow coordinated disclosure. Please allow us reasonable time to address the issue before making it public.
VoiceOps is a single-operator Discord voice bridge. It has no inbound HTTP server, browser session, database, or public upload surface. The main runtime inputs are Discord voice packets and gateway WebSocket messages.
Use wss:// for any non-local gateway. Plain ws:// is accepted by default only for loopback. Transcripts and agent responses are redacted in logs unless explicitly enabled in local config.
Built by Greyforge