Mayor is local-first software that can process private prompts, code snippets, file paths, credentials accidentally pasted into chats, and customer information. Please treat security reports carefully.
Mayor is currently a developer-preview project. Security fixes target the main branch until versioned releases are established.
Do not open a public issue for vulnerabilities or suspected private-data exposure.
Use GitHub private vulnerability reporting when enabled for this repository. If it is not enabled, contact the maintainer through a private channel and include:
- affected version or commit
- operating system
- impact summary
- minimal reproduction steps using synthetic data
- whether raw artifacts, vault keys, logs, indexes, or backup remotes may be exposed
Avoid attaching real chat artifacts, vault files, local indexes, or customer paths. Redact aggressively.
Mayor is designed so that:
- raw provider artifacts are preserved in an encrypted local vault
- redacted indexes are disposable search projections
- vault keys are local runtime state and are not stored in the backup repository
- MCP and HTTP recall surfaces return redacted projections, not raw decrypted artifacts
- generated handoff files are convenience context files and should stay ignored by workspace Git repositories
- Recovery of lost local vault keys
- Provider-native hidden chat tab import unless a provider exposes a stable API
- Security of third-party agents, IDEs, Git hosts, or user-managed remotes