AgentReady is a passive readiness scanner by default.
It must not:
- bypass authentication
- bypass CAPTCHAs
- brute-force paths
- submit forms
- make purchases
- trigger paid actions
- attempt exploitation
- log or dump secrets into reports
Report vulnerabilities privately through the GitHub security advisory flow for swarmclawai/agentready once the repository is published.