geckon01/anything-llm
1
0
Fork 0
mirror of https://github.com/Mintplex-Labs/anything-llm.git synced 2026-06-10 20:25:43 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
anything-llm/SECURITY.md
Timothy Carambat d01c2a20f5 update security to stop low-effort AI spam CVE reports
2026-06-02 07:41:57 -07:00

2.9 KiB
Raw Permalink Blame History

Security Policy

Supported Versions

Use this section to tell people about which versions of your project are currently being supported with security updates.

Version Supported
0.1.x

Reporting a Vulnerability

If a security concern is found that you would like to disclose you can create a PR for it or if you would like to clear this issue before posting you can email Core Mintplex Labs Team.

Invalid Report Types

Below are some common types of invalid reports that we will not accept and should not be submitted as they will be closed immediately without action.

SSRF Reports

If you are about to report a SSRF about being able to call web-scraping or document collector against an internal host, this is not a valid report. This is a feature of the system and is intended to be used in this way given that AnythingLLM is designed to be used in this way so that it can leverage internal services for scraping and collecting content when deployed inside a VPC.

XXS Reports where user must right-click and paste in the URL

If you are about to report a XXS about being able to right-click on an image (like user profile picture) and paste in the URL, this is not a valid report. User profile pictures must be uploaded by the user and cannot be set by the administrator. In fact, nobody can even see them aside from the user themselves. The same goes for any other image that is uploaded by the user or even produced by the system. If the user must right-click and paste in the URL to their browser, this is not a valid report.

Valid XXS Reports must be zero-action - like on loading a page or a image instantly.

Any "Unauthenticated" actions

If the basis of your report relies on the system not setting up a password or multi-user mode, this is not a valid report. AnythingLLM is designed to be used in this way so that it can be used in trusted and fully isolated environments for single user or internal user. There are three options for authentication:

  1. No authentication - this would have no endpoint authentication and would be accessible to anyone who knows the URL.
  2. Password - this would require a password to access the system.
  3. Multi-user mode - this would require a user to be logged in to the system with username and password and be given explicit access to the system by administrator.

During onboarding, the system will prompt the user to set up a password or multi-user mode. If the user does not opt to set up a password or multi-user mode, the system will be accessible to anyone who knows the URL. This is an intentional design choice and is not a vulnerability.

If your report is about being able to access the system via bypassing the authentication or lackthereof, that is a valid report and will be investigated and fixed.

Reference in New Issue View Git Blame Copy Permalink